[SOLVED] Problem when access webmail using ZCS on Centos 5.3

[cappuccino]

Hi all,
I dont know if I leave this post on right forum, or not. If not, someone please move to right place, thanks.
I installed ZCS successful on centos 5.3 64 bit and everything seems to be working well. Services started successful, I can access Zimbra administration page from LAN and internet, I can create account, send and receive email perfectly, but I cannot access webmail from Internet using: _http://mail.mydomain.com or _http://mydomain.com
netstat -ntl shows httpd is listening on port 80
I'm using vigorpro 5500 router, already open port 80 and nat to my mail server.
In LAN, when I type _http://privateipofmailserver, I can connect to webmail, login and do everything I want, but Internet.

is there any thing related to this problem, or someone please give me some suggestion about it?

one more question: when I edit httpd.conf in /opt/zimbra/httpd-2-2-xx/ and restart httpd server, I can access this httpd server from internet thru port 8080 (I changed listen port to 8080), but all I get is "It works" (default httpd page). why?

PS: activation mail from zimbra forum send to my yahoo mail went to spam folder.

[borngunners]

you don't need to have to play with the httpd. As a zimbra user, type the following command "zmtlsctl http" only if you want it to use http. You can use the same command with https if you want to access is securedly. Please don't use the quote "" in the command

Thanks,
Al

[cappuccino]

hello borngunners,
Thank for your reply, now I know I was wrong on httpd with zimbra, but, when I start http and https:

Code:

zmtlsctl http
Setting tls mode to http
Updating /opt/zimbra/mailboxd/etc/jetty.xml.in...done.
Updating /opt/zimbra/jetty/etc/zimbra.web.xml.in...done.
Updating /opt/zimbra/jetty/etc/zimbraAdmin.web.xml.in...done.
Updating PROTOCOL MODE in /opt/zimbra/mailboxd/etc/zimbra.web.xml.in...done.
Rewriting config files for webxml and mailboxd...done.
Updating /opt/zimbra/cyrus-sasl/etc/saslauthd.conf.in...done.
Rewriting config files for cyrus-sasl...done.
Setting ldap config zimbraMailMode http for mail.domain.com...done.
[zimbra@mail ~]$ zmtlsctl https
Setting tls mode to https
Updating /opt/zimbra/mailboxd/etc/jetty.xml.in...done.
Updating /opt/zimbra/jetty/etc/zimbra.web.xml.in...done.
Updating /opt/zimbra/jetty/etc/zimbraAdmin.web.xml.in...done.
Updating PROTOCOL MODE in /opt/zimbra/mailboxd/etc/zimbra.web.xml.in...done.
Rewriting config files for webxml and mailboxd...done.
Updating /opt/zimbra/cyrus-sasl/etc/saslauthd.conf.in...done.
Rewriting config files for cyrus-sasl...done.
Setting ldap config zimbraMailMode https for mail.domain.com...done.

I still cannot access webmail from internet, but with _http://privateipofserver, webmail worked well.

Is this zimbra's problem or just because of my router?
I use VigorPro 5500.

Thank you!

[borngunners]

Please show me the configurations of your hosts, resolv.conf, named.conf.local, named.conf.options, and your zone configuration via private message

[cappuccino]

Hi borngunners,
I solved that problem :-D
My router (Vigorpro 5500) is listening on default port 80 for remote management, so if I open port 80, there will be 2 servers listen on 1 port. that is my problem.

I dont use named? is named needed?

Thanks!

[uxbod]

Code:

cat /etc/hosts
cat /etc/resolv.conf
dig yourdomain mx
dig yourdomain any
host `hostname` <- note backticks and not single quotes

[cappuccino]

Code:

[root@mail ~]# cat /etc/hosts
# Do not remove the following line, or various programs
# that require network functionality will fail.
127.0.0.1		localhost.localdomain localhost
#::1		localhost6.localdomain6 localhost6
192.168.1.10		mail.mydomain.com mail

Code:

[root@mail ~]# cat /etc/resolv.conf 
search mydomain.com
nameserver 192.168.1.1 #this is my router

Code:

[cappuccino@home ~]$ dig mydomain.com mx

; <<>> DiG 9.6.1-P1-RedHat-9.6.1-4.P1.fc11 <<>> 
mydomain.com mx
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 7176
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;mydomain.com.		IN	MX

;; ANSWER SECTION:
mydomain.com.	3600	IN	MX	10 mail.mydomain.com.

;; Query time: 1444 msec
;; SERVER: 192.168.0.1#53(192.168.0.1)
;; WHEN: Fri Jul 31 13:48:08 2009
;; MSG SIZE  rcvd: 58

Code:

dig mydomain.com any

; <<>> DiG 9.6.1-P1-RedHat-9.6.1-4.P1.fc11 <<>> mydomain.com any
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 61776
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;mydomain.com.		IN	ANY

;; ANSWER SECTION:
mydomain.com.	3474	IN	MX	10 mail.mydomain.com.

;; Query time: 304 msec
;; SERVER: 192.168.0.1#53(192.168.0.1)
;; WHEN: Fri Jul 31 13:50:15 2009
;; MSG SIZE  rcvd: 58

Code:

[root@mail ~]# host `hostname`
mail.mydomain.com has address x.x.x.x
;; reply from unexpected source: 208.67.222.222#53, expected 192.168.1.1#53
;; reply from unexpected source: 208.67.222.222#53, expected 192.168.1.1#53
;; connection timed out; no servers could be reached
;; reply from unexpected source: 208.67.222.222#53, expected 192.168.1.1#53
;; reply from unexpected source: 208.67.222.222#53, expected 192.168.1.1#53
;; connection timed out; no servers could be reached

192.168.1.1 is my router
Thank for help.

[uxbod]

As you are on a private IP behind a router/firewall you will need to setup a Split DNS - Zimbra :: Wiki architecture.

[cappuccino]

in this case, I use opendns for my gateway (router, firewall), do I need to change something or keep the original?
Current dns in named.conf is 192.168.1.1?

Thank uxbod!

[cappuccino]

Solved
Thank you everyone