Page 2 of 3 FirstFirst 123 LastLast
Results 11 to 20 of 25

Thread: [SOLVED] "Public service host name" in domain creation

  1. #11
    iway is offline Partner (VAR/HSP)
    Join Date
    May 2008
    Posts
    432
    Rep Power
    7

    Default

    I modified the default domain as stated (did that before, actually), but it still generates URLs in the defaultdomain.com way, not the webmaildomain.com.

    Any ideas?

  2. #12
    iway is offline Partner (VAR/HSP)
    Join Date
    May 2008
    Posts
    432
    Rep Power
    7

    Default

    We use redirect mode for https only.

  3. #13
    iway is offline Partner (VAR/HSP)
    Join Date
    May 2008
    Posts
    432
    Rep Power
    7

    Default

    OK, got it working. I set all domains via the Admin interface to the public service hostname.

    Thanks

    Chris

  4. #14
    Ian Forbes is offline Intermediate Member
    Join Date
    Apr 2008
    Location
    Toronto
    Posts
    16
    Rep Power
    7

    Default

    Quote Originally Posted by mmorse View Post
    The server uses zimbraPublicServiceHostname to generate REST URLs, ie: briefcase, document, calendar sharing etc.

    Say it's generating a URL like http:// server1.domain.com and you'd rather have it http:// mail.domain.com:
    (As long as 'mail' has a proper DNS entry to point at 'server1' both internally and externally.)
    Why does mail.domain.com have to resolve internally as well? I ask because my problem is that I have Zimbra installed on an internal domain called server1.corp.domain.com. I have a public DNS name of mail.domain.com that resolves to my Zimbra server. If I set the Public Service Hostname to mail.domain.com then my REST url's are generated as http://mail.domain.com. If a user clicks on that link won't that work?

    I don't have an internal zone of domain.com, so I can't resolve server1.domain.com internally. Will this cause me problems?

  5. #15
    ArcaneMagus's Avatar
    ArcaneMagus is offline Moderator
    Join Date
    Feb 2007
    Location
    Portland, OR
    Posts
    1,147
    Rep Power
    10

    Default

    The only way that will work is if two things are true:
    • Your mail server is accessible via it's public IP address from your client machines.
    • The DNS server that the client machines use point mail.domain.com to the Zimbra server's public IP.

    In most cases your client machines are on the same subnet/intranetwork as the mail server in which case they will need to have their DNS server point mail.domain.com to the internal IP address of the mail server.

    The reason it doesn't just work is because your client machines will have no idea where mail.domain.com points to if you have domain.com on an internal DNS server. If you don't run an internal DNS server then your clients will get the public IP address for mail.domain.com....which will be inaccessible from inside the local network.

  6. #16
    Ian Forbes is offline Intermediate Member
    Join Date
    Apr 2008
    Location
    Toronto
    Posts
    16
    Rep Power
    7

    Default

    Thanks for the reply. So, BIND is running on the Zimbra server. The zone configured is for corp.domain.com. The external MX resolves to mail.domain.com (the firewall which forwards to the Zimbra server). My internal users wouldn't know how to resolve mail.domain.com without going out and coming back in. I'm not even sure the firewall wouldn't drop those packets because the source address would be an internal IP.
    Obviuosly, split DNS is needed. Would I have to create a new internal zone for domain.com and add a host (A) record for mail.domain.com so my internal users know how to get there?

  7. #17
    ArcaneMagus's Avatar
    ArcaneMagus is offline Moderator
    Join Date
    Feb 2007
    Location
    Portland, OR
    Posts
    1,147
    Rep Power
    10

    Default

    Yes that is what you would need to do. Don't forget that things like www. domain.com will also need to be in that internal record as well as any other records you want your internal users to see for domain.com.

    Although if you have not had to deal with this issue with your other servers I am guessing that Zimbra is your first internal server as any server, regardless of the type, would have the same issues here of needing internal/external clients to have different IP addresses returned for them...

  8. #18
    Ian Forbes is offline Intermediate Member
    Join Date
    Apr 2008
    Location
    Toronto
    Posts
    16
    Rep Power
    7

    Default

    Quote Originally Posted by ArcaneMagus View Post
    Yes that is what you would need to do. Don't forget that things like www. domain.com will also need to be in that internal record as well as any other records you want your internal users to see for domain.com.

    Although if you have not had to deal with this issue with your other servers I am guessing that Zimbra is your first internal server as any server, regardless of the type, would have the same issues here of needing internal/external clients to have different IP addresses returned for them...
    No. Not at all. I've dealt with infrastructure for a long time. The difference with Zimbra is that they publish these REST features such as shared calendars and documents which external AND internal people need to get to. There are many really good reasons for not having the same internal domain name as your external name. When you do need to do that then split DNS is the way to go...not new to me. I had just installed Zimbra under a different domain name then my outside domain and was wondering how the REST url's would be published and accessed. So, now I know I have to create another DNS zone so my internal users can resolve mail.domain.com. All other servers will continue to live on corp.domain.com.

  9. #19
    MACscr is offline Special Member
    Join Date
    Jun 2010
    Posts
    126
    Rep Power
    5

    Default

    Quote Originally Posted by iway View Post
    OK, got it working. I set all domains via the Admin interface to the public service hostname.

    Thanks

    Chris
    Is there not a per server or global option instead of having to always set this per domain?

    Also, i have zmtlsctl mode set to https, yet its still giving out urls to shared contacts for example in http form. Why is that?
    Last edited by MACscr; 07-21-2010 at 09:40 PM.

  10. #20
    dik23 is offline Advanced Member
    Join Date
    Dec 2010
    Location
    UK
    Posts
    233
    Rep Power
    4

    Default

    Quote Originally Posted by MACscr View Post
    Also, i have zmtlsctl mode set to https, yet its still giving out urls to shared contacts for example in http form. Why is that?
    Same here - did you find out why ?

Page 2 of 3 FirstFirst 123 LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Replies: 7
    Last Post: 04-27-2009, 02:49 AM
  2. zmclamdctl is not running after upgrade
    By Darren in forum Installation
    Replies: 24
    Last Post: 10-10-2008, 09:10 AM
  3. Suddenly loads of errors in my daily report
    By BarefootPanda in forum Administrators
    Replies: 1
    Last Post: 07-21-2008, 04:09 AM
  4. Replies: 20
    Last Post: 03-18-2008, 05:37 AM
  5. GAL not working with Active Directory
    By ardiederich in forum Installation
    Replies: 13
    Last Post: 02-12-2008, 08:01 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •