Koozali.org: home of the SME Server
Obsolete Releases => SME Server 7.x => Topic started by: mcp_dk on June 21, 2006, 09:34:35 PM
-
I have a SME6 running roughly 30 websites for friends and relatives and other. Its running in "server only" mode behind a normal router.
If i make a new SME7 box and use it "Server+gateway" mode can i then make som kind of forward rules that when someone tries to access domain1.com it is forwarded to my SME6 box and when someone tries to access Domain40.com it gets directed to the proper ibay on my SME7?
I would then over a period of time move my domains and users to the SME7 box and then shut down the SME6 box.
The reason i don't want to do an upgrade of the SME6 is that there is soo much customisation and dead users and domains and i just don't have the energy to clean it up. It would be so much easier to do a clean sme7 and move the relevant users and domains over one by one.
I hope you understand my question.
-
is there really no one who can give me a simple Yes og No to this question ?
-
Should be able to just set it up and forward port 80, 443, 22, 25, 110, etc....
And it should be fine.
Just forward the same ports that are forwarded on your router.
:-D
-
okay.. but wouldn't that do it for ALL domains? I only want to do it for some domains and leave some domains on SME6 server
So it is like this
internet-->[SME6-Server] --> [SME7-Server]
.................Domain 1...............Domain 4
.................Domain 2...............Domain 6
.................Domain 3...............Domain 7...
.................Domain 5...
-
Good Evening,
Ok, I've tried to port forward everything in the world that I can think of that deals with email to the internal SME v6.x email server-only box with no luck. I'm port forwarding from an SME v7.x RC3. I have the following on my email settings on the SME v7.x RC3:
E-mail settings
POP3 server access Disabled
IMAP server access Disabled
Webmail access Disabled
Change e-mail access settings
--------------------------------------------------------------------------------
Virus scanning Enabled
Spam filtering Enabled
Executable content blocking Disabled
Change e-mail filtering settings
--------------------------------------------------------------------------------
E-mail retrieval mode Standard (SMTP)
SMTP authentication Allow SSMTP (secure)
Change e-mail reception settings
--------------------------------------------------------------------------------
Forwarding address for administrative notices admin@domain.name
E-mail to unknown users Return to sender
Address of internal mail server x.x.x.x
Address of Internet provider's mail server
Change e-mail delivery settings
NOTE: I hid the actual email and IP addresses for security.
Here are the ports I have forwarded from the SME v7 RC3 box:
TCP 22 x.x.x.x 22 Remove
TCP 25 x.x.x.x 25 Remove
TCP 21 x.x.x.x 21 Remove
TCP 443 x.x.x.x 443 Remove
TCP 80 x.x.x.x 80 Remove
TCP 110 x.x.x.x 110 Remove
NOTE: I hid the actual IP addresses for security.
I have ASSP installed on the SME v6.x box and would also like to use SpamAssassin that is installed on the SME v7 RC3 box together. I want SpamAssassin to filter stuff and then forward to ASSP so it can filter again. That is the utopia that I would like to reach. If I can't reach that, I would like to at least use ASSP only.
I can send email out from the SME v6.x box just fine but cannot receive any.
-
Good Evening,
One more thing to add, on the SME v7 RC3 box, I've also modified the hostnames section:
contentfilter.domain.name Self x.x.x.1
ftp.domain.name Self x.x.x.1 Modify Remove
mail.domain.name Remote x.x.x.2 Modify Remove
proxy.domain.name Self x.x.x.1 Modify Remove
wpad.domain.name Self x.x.x.1 Modify Remove
www.domain.name Remote x.x.x.2 Modify Remove
NOTE: I hid the actual IP and domain name for security. All the x.x.x is local IP addressing.
-
Good Evening,
Still scratching my head here. One more thing:
The server's transparent SMTP proxy works to reduce virus traffic from infected client hosts by forcing all outgoing SMTP traffic through this server. If you wish to use an alternate SMTP server, and this server is your gateway to it, disable this proxy.
SMTP proxy status Disabled
I'm assuming that I need to set this to Disabled if I'm forwarding everything to an internal email server?
-
wallyrp
> Still scratching my head here.
Better stop that or you'll get a bald spot !
Search instead !
I think the simple answer is to create ProxyPass entries for each domain, one by one as required.
There is a contrib for sme6 too.
http://www.tech-geeks.org/contrib/loveless/proxypass/dmc-mitel-proxypass-0.0.1-3.noarch.rpm
or sme7
http://forums.contribs.org/index.php?topic=32041.msg135291#msg135291
-
it seems that my thread got hijacked.... any chance of an answer to my question ?
-
mcp_dk
> it seems that my thread got hijacked.... any chance of an answer to my question ?
The answer was for you. I quoted the wrong poster.
I think the simple answer is to create ProxyPass entries for each domain, one by one as required.
There is a contrib for sme6 too.
http://www.tech-geeks.org/contrib/loveless/proxypass/dmc-mitel-proxypass-0.0.1-3.noarch.rpm
or sme7
http://forums.contribs.org/index.php?topic=32041.msg135291#msg135291
-
mcp_dk
> It would be so much easier to do a clean sme7 and move the relevant users and domains over one by one.
I tend to agree with that approach on a heavily modified server.
It will probably save you a lot of headaches and a lot of time.
-
mcp_dk
Could you set up your new server with a different Public IP address, then copy your websites across to the new server, and update your public DNS entries with the new IP address.
this way you wouldn't have to set up proxypass, and you can move your domains one by one at your leisure.
Of course, the is dependant upon you having multiple Public IP's, which you may not have. :-)
-
Good Morning,
OK, well, I'm trying to get this resolved before I leave today or else I'll have to put the old server back online. I thought that I'd post in this thread because of the title is directly related to my issue.
Do ya'll have any idea'rs or suggestions?
-
Wally, someone has already told you to RTFM..
I'm tempted to do the same, but I'm feeling charitable.
You are REALLY mixed up by the look of things.
All you have to do is Fresh install your SME7 (local ip of say 192.168.0.1) and in Server-Manager -> e-mail -> 'change e-mail delivery settings'
Put the ip address of your SME6 box you want to do the email.. (e.g. 192.168.0.2)
Thats it.
-
Could you set up your new server with a different Public IP address, then copy your websites across to the new server, and update your public DNS entries with the new IP address.
Nick, just what the doctor ordered, thanks!
-
By the way, in your hostnames you're using 'Remote' where you shoudl be using 'local'
Self = Self
Local = LAN
Remote = Internet
And in future create your own thread ;-)
-
Could you set up your new server with a different Public IP address, then copy your websites across to the new server, and update your public DNS entries with the new IP address.
Nick, just what the doctor ordered, thanks!
No probs, glad to help.
-
Good Morning,
I apologize, I guess I missed the "RTFM" portion of this thread. By the way, I love your tact and political skills. It makes me just want to continue to be a part of this community.
BTW, it didn't work. I've found a workaround.
-
Glad to hear it
BTW, "Search" & RTFM are interchangable as far as I'm concerned.
-
mcp_dk
Could you set up your new server with a different Public IP address, then copy your websites across to the new server, and update your public DNS entries with the new IP address.
this way you wouldn't have to set up proxypass, and you can move your domains one by one at your leisure.
Of course, the is dependant upon you having multiple Public IP's, which you may not have. :-)
I have actually tried that but it is impossible for me to get multiple public IP's. That would by far have been the easiest solution.
-
mcp_dk
>....to get multiple public IP's. That would by far have been the easiest solution.
Did you create proxypass entries ? It very easy to do.
-
I agree with Ray,
In the absense of Multiple IP's, Proxypass is the way to go.
-
Did you create proxypass entries ? It very easy to do.
Ray, I do not understand the concept of proxypass, have you got time to explain
Many thanks. chris
-
burnat
> I do not understand the concept of proxypass, have you got time to explain
From the sme6 contrib panel
ProxyPass configuration
The ProxyPass module allows Apache to be configured to pass requests for specified URLs or entire virtual domains, through to other internal or external web sites.
The sme 6 contrib allows you to create ProxyPass URL entries (you can allow http & https requests)
or ProxyPass virtual domain entries
eg Target is the URL of an internal or external web site.
Example: http://192.168.1.10/ or http://domain.com/
I have not used the sme7 proxypass contrib as yet so am not sure of it's capabilities.
-
burnat
As Charlie says, Google is your friend
http://www.google.com.au/search?hl=en&sa=X&oi=spell&resnum=0&ct=result&cd=1&q=proxypass&spell=1
http://httpd.apache.org/docs/1.3/mod/mod_proxy.html#proxypass
-
Many thanks Ray.
chris
-
mcp_dk
>....to get multiple public IP's. That would by far have been the easiest solution.
Did you create proxypass entries ? It very easy to do.
no i haven't tried that yet.
my server is running in Server-only mode. Is that okay or does it need to be server-gateway ?
-
mcp_dk
>....to get multiple public IP's. That would by far have been the easiest solution.
Did you create proxypass entries ? It very easy to do.
no i haven't tried that yet.
my server is running in Server-only mode. Is that okay or does it need to be server-gateway ?
You would use proxypass on your gateway server, which you said earlier was an SME7 box running in server-gateway mode...
If both boxes are running in Server-only mode behind a router, it should still work though.