1,574
edits
Changes
Jump to navigation
Jump to search
Line 1:
Line 1: + Line 5:
Line 6: − + Line 12:
Line 13: − + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + − A dynamic DNS service can be a great solution when used with a dedicated connection. With a typical dialup connection, your IP address changes much more frequently (possibly every time your server connects) and, because the server only connects intermittently, there is a delay in informing the dynamic DNS service of the change. This means that the risk of misdirected information is much greater with a dialup connection. For this reason, we recommend and support the use of dynamic DNS services only for dedicated connections.+ + + + + − Contribs.org has tested four dynamic DNS services, of which two are free services and two are commercial services: yi.org (free), dyndns.com (commercial), tzo.com (commercial) and dyndns.org (free). For simplicity, we have preprogrammed the server to work with these services (including pre-installing their client software). If you have arranged dynamic IP address assignment from your ISP and you wish to use one of these services, all you need to do is visit the appropriate web site to sign up for service, and enable that particular function in the server console. In pre-configuring the server for this particular service, we in no way interfere with nor prevent you from using another dynamic DNS service if you wish. To do so, however, would require some customized configuration on your part.+ − Contribs.org has tested the functionality of these services with our software. However, we accept no liability for any breach of service on their part. A failure on the part of your dynamic DNS service can result in your network becoming temporarily unreachable from the Internet. During these times, your e-mail may be undeliverable.+ − + − {| cellspacing="0" border="1"+ − |'''Note'''+ − |Dynamic DNS services are not perfect. They merely point hostnames to IP addresses. If your system receives an IP address via DHCP or PPPoE, it will automatically update the dynamic DNS service each time it comes online. However, when your server disconnects from the Internet, with most dynamic DNS services your server does not indicate that it is offline in any way to the dynamic DNS service. If your system is offline for a period of time, it is possible that someone else will be assigned your IP address by your ISP. If this occurs, with most dynamic DNS services this other system will now start receiving your e-mail and web page requests until your server comes back online and updates the service with your new IP address. There is not much you can do about this, but you should be aware of this fact if there is any chance your system will be offline for a long period of time.||+ − |}+ + + + + Line 40:
Line 169: − + − − Developers may wish to note that additional documentation, including HOWTO documents and a FAQ, can be found on our development web site - http://wiki.contribs.org/. There are also links there to other web sites relating to the server. − − ====Appendix E. Glossary==== − Below are some useful terms and their definitions as used in this guide. − − ADSL − Asymmetric Digital Subscriber Line. ADSL is a technology to transmit digital information at high bandwidths across existing copper phone lines. Download speeds are typically much faster than upload speeds (hence the term "asymmetric"). − Domain Name − This refers to theunique name attached to your organization on the Internet. For example, "tofu-dog.com" or "contribs.org". If you don't have a domain name, your ISP can help you select one, ensure it is available, and register it. − DNS − Domain Name Service. Refers to the software and protocols involved in translating domain names to IP addresses. Your server provides DNS lookup services for your local network, and your ISP typically also provides you with the IP addresses of DNS servers. These servers do not need to be configured into your server as the DNS server that is provided with your server will correctly resolve all local and Internet names. − ETRN − ETRN is a command used for dialup solutions in order to retrieve e-mail temporarily stored at your ISP − Gateway IP Address − A gateway is the device on your network that forwards packets to and from the Internet. The gateway IP address is the IP address for that device. − i-bay − Information Bay. A mechanism for creating intranets, extranets, shared directories and other resources − ISDN − Integrated Services Digital Network. Digital modem line. Provides higher speeds than K56/V90. Single channel ISDN provides speeds of 56K to 64K. Dual channel ISDN provides speeds of 110K to 128K. − ISO − 1. International Organization for Standardization. Relevant link: www.iso.org - ISO Home Page − 2. ISO followed by a number is used to identify one of the published ISO standards. Relevant link: www.standardsglossary.com - ISO Standards Glossary, lists all the international standards published by ISO and provides a quick reference for looking up the topic of an ISO standard. − ISP − Internet Service Provider − LDAP − Lightweight Directory Access Protocol − PPTP − Point-to-Point Tunneling Protocol (see VPN) − RAID1 − Disk mirroring − SCSI − Small Computer Systems Interface − SME − Small and Medium Enterprise − SSH − Secure shell. A secure, encrypted way to log in to a remote machine across a network, or to copy files from a local machine to a server − VPN − Virtual Private Network (see PPTP) − − − (comments) − ====Appendix F. Quick Start Guide==== − =====Installation===== − * Select a PC to dedicate as a server, minimum 450mhz 128mb ram, but double this is better, and plug into your network. See|Chapter 4 for details about selectng server hardware. − * Insert the SMEserver CD and reboot, answer the initial questions to install the software, then answer the questions from the install wizard to suit your circumstances. See|Chapter 5.4 for more details. − * Restart a Client PC after the server has finished, this allows the client to pickup a new DHCP address. Further configure your server with a browser at yourservername/server-manager, see next section. − − =====Access===== − '''Server-manager''' (See|Chapter 8) − * The server manager is a series of web forms called panels that enable a client PC to configure the server. Access to the server-manager is via a browser using one of the following addresses: − http://servername/server-manager − http://server.domain/server-manager − http://serverIPaddress/server-manager − User is Admin, with the server Admin password − − '''Command Line''' (See|Chapter 6.2) − * Local access. − Keep a monitor attached to the server and press [alt]-[f2] to access a login prompt. − * Remote access. − Preferably the server is placed in an out of the way location and it's monitor is removed. − Access to the command line is obtained with a ssh client (Secure SHell). We reccommend using a free windows client --suhc-- such as putty or terratermSSH. − Before you can access the server with ssh you need to allow it at server-manager >> remote access − Secure shell access: Private OR Public − Allow administrative command line access over secure shell: Yes − Allow secure shell access using standard passwords : Yes − * Admin or Root? − When you ssh to the server or use it's own monitor and keyboard − login as root to access the command line − or − login as admin to access the console wizard. − =====Configuration=====+ − '''Windows LAN (Local Area Network)''' − * Further configuration if the SMEserver will be your file server on you local LAN. − * All windows PC's on a LAN need to be in the same workgroup (see chapter 13.2). − * Set the server to be in the local workgroup via the server-manager >> workgroup. − * Also in the workgroup panel set your server to be the domain controller, this lets the server create one set of users for authorisation. − * Add users via the server-manager >> user accounts panel and set a password for them (see chapter 9.1 Users). − * Add a network drive via the server-manager >> information bay (see chapter 14) − * You may need to logoff and logon again to access these new resources, you should see the network drive and a personal drive for the user in your network neighbourhood. − * To map these drives either use windows explorer >> tools >> map network drive − select a letter then enter \\servername\homes or \\server\ibayname − Or − configure your client to use netlogon.bat, and edit /home/e-smith/files/samba/netlogon/netlogon.bat − * you must use a dos editor, one way to do this is copy or link to a windows visable area, chown yourUserName netlogon.bat, make your changes, then copy back − * If you use the "Home" version of Windows XP, it can't use the servers netlogon.bat, you can use it by placing a copy in your PC's startup folder.
SME Server:Documentation:Administration Manual:Appendix (view source)
Revision as of 06:57, 2 May 2021
, 06:57, 2 May 2021→DNS Service Providers
<noinclude>{{Languages}}</noinclude>
===SME Manual Appendix===
===SME Manual Appendix===
The following Appendix pages are included for your information.
The following Appendix pages are included for your information.
A local area network (LAN) is the system of wires and other hardware that connects the computers within your office and allows them to communicate with one another. An ethernet LAN is the most common type. Ethernet refers both to a kind of connection and to a protocol for how Internet data packets travel around your network.
A local area network (LAN) is the system of wires and other hardware that connects the computers within your office and allows them to communicate with one another. An ethernet LAN is the most common type. Ethernet refers both to a kind of connection and to a protocol for how Internet data packets travel around your network.
The hub, a common component of an ethernet, serves as a point of interface between computers on the network. Each computer on your network is connected to the hub using an ethernet network cable. Different hubs operate at different speeds: slower hubs, operating at 10 MB/sec, are suitable for small networks; faster hubs, operating at 100 MB/sec, are suitable for larger networks. Switching 10/100 MB hubs can operate at either speed, and provide a good way to upgrade your network gradually.
The hub, a common component of an ethernet, serves as a point of interface between computers on the network. Each computer on your network is connected to the hub using an ethernet network cable. Different hubs operate at different speeds: slower hubs, operating at 100 Mb/sec, are suitable for small networks; faster hubs, operating at 1 Gb/sec, are suitable for larger networks. Switching 100Mb/1 Gb hubs can operate at either speed, and provide a good way to upgrade your network gradually.
An ethernet adapter, also called an ethernet card or network interface card (NIC), connects each computer to the ethernet LAN. An server with a dedicated Internet connection requires two ethernet adapters; one connects it to your LAN and the other connects it to the external network that leads to your ISP. If your server connects to your ISP using a modem or ISDN adapter, it only requires one ethernet adapter.
An ethernet adapter, also called an ethernet card or network interface card (NIC), connects each computer to the ethernet LAN. An server with a dedicated Internet connection requires two ethernet adapters; one connects it to your LAN and the other connects it to the external network that leads to your ISP. If your server connects to your ISP using a modem or ISDN adapter, it only requires one ethernet adapter.
Allowing a third party, such as a systems integrator or networking company, to install your ethernet can be a good idea. It can help you select, procure and install the appropriate ethernet adapters, hub and cables. There are also various how-to guides available in bookstores if you are committed to installing it on your own.
Allowing a third party, such as a systems integrator or networking company, to install your ethernet can be a good idea. It can help you select, procure and install the appropriate ethernet adapters, hub and cables. There are also various how-to guides available in bookstores if you are committed to installing it on your own.
====Appendix B. Dynamic DNS Services====
<!--
The original title of this article was 'Appendix B. Dynamic DNS Services'
The following pages link to that address:
http://wiki.contribs.org/SME_Server:Documentation:Administration_Manual:Chapter3
http://wiki.contribs.org/SME_Server:Documentation:Administration_Manual:Chapter5
http://wiki.contribs.org/SME_Server:Documentation:Administration_Manual:Booklet
http://wiki.contribs.org/SME_Server:Documentation:Administration_Manual:Chapter3/de
http://wiki.contribs.org/SME_Server:Documentation:Administration_Manual:Appendix/de
-->====Appendix B. DNS====
DNS or the Domain Name Service is a distributed system of servers designed to translate human-readable names into computer routable IP addresses.
=====DNS Basics=====
SME, by design, does not respond to DNS queries from outside your local network, and ''cannot'' be used as a public DNS server for anyone outside your location.
If you want your SME server to be available to users outside your office using a ''name'' instead of your IP address, you MUST:
* Register your domain name with a Registrar
* Configure your host names on a publicly accessible DNS Server
Note: you can avoid 'Registering' your domain name if you use [[#Dynamic DNS Services]]
Imagine the following scenario:
Root_DNS
| Registrar
| / DNS Server
| / / Other_DNS
| | / /
Internet---Other_ISP---Remote_User
|
Your_ISP---Your_ISPs_DNS
|
SME
|
Local_User
Let's assume that
* SME has IP Address a.b.c.d
* SME has domain name mysmeserver.com
* '''Remote_User''' is configured to use '''Other_DNS''' for DNS lookups
If Remote_User tries to browse to http://mysmeserver.com, his computer asks '''Other_DNS''' how to find 'mysmeserver.com'. '''Other_DNS''' server then
* asks the '''Root_DNS''' servers for the '''Registrar''' in charge of 'mysmeserver.com'
* asks the '''Registrar''' for the '''DNS_Server''' that will answer queries about 'mysmeserver.com'
* asks the '''DNS_Server''' for the IP address of 'mysmeserver.com'
* saves the answer in its local cache for the amount of time specified by the administrator of the DNS record at '''DNS_Server'''.
If, on the other hand, '''Remote_User''' asks for information about your IP address (a.b.c.d), his DNS server
* asks the '''Root_DNS''' servers where d.c.b.a.in-addr.arpa is registered.
* asks the '''Registrar''' where to get more info about d.c.b.a.in-addr.arpa. This is probably but not necessarily '''Your_ISPs_DNS'''.
* asks the host indicated by the '''Registrar''' (probably '''Your_ISPs_DNS''') what name belongs to 'd.c.b.a.in-addr.arpa'. The return value is almost always a generic filler based on your IP address unless you contact your ISP and ask them to change the PTR data for your IP address.
Basically, PTR records are managed by the organization that controls the IP address (which makes sense, if you think about it).
If Local_User tries to open http://mysmeserver.com (assuming a default SME installation with DHCP and therefore DNS provided by the SME server):
* If mysmeserver.com is configured for Local resolution, the SME server returns the data that has been configured locally.
* If mysmeserver.com is configured to use Internet DNS Servers, the SME proceeds just as the first example from Root_DNS to Registrar to DNS_Server to local cache (actually, it checks the local cache first...)
So, for you to host a public web server at your own location you need:
* An ISP to provide connectivity
* A DNS Registrar where you can 'register' your domain name and publish the addresses of your DNS servers.
* A DNS service provider who will respond to queries about your domain
Some ISP's provide registration and DNS hosting capabilities as part of the connectivity package.
Some ISP's provide DNS hosting but not Registration as part of the connectivity package.
Some Registrars provide DNS hosting as part of the registration.
Sometimes you will need 3 separate vendors for these separate services.
If you have already registered your domain name, find out if your Registrar provides DNS hosting services, and if so, how to configure them. They'll provide you with a web address where you can configure your DNS.
If they do NOT provide DNS hosting services, your ISP might. Ask them. If so, configure your DNS on their servers, then edit the Registrar page to point to the DNS servers indicated by your ISP.
If neither your Registrar nor your ISP provides DNS hosting, you'll need to find a 3rd party vendor to do this. See [[#DNS_Service_Providers]] below.
If you have not yet registered your domain name, try to find a Registrar who provides free DNS services.
=====PTR Records=====
PTR Records (or Pointer records, or Reverse DNS records) are used by internet hosts to convert an IP address into a name - sometimes for information only, sometimes for identity verification.
PTR records are constructed by ''reversing'' your IP address and appending the special suffix 'in-addr.arpa'. For example, the PTR record for ''a.b.c.d'' is ''d.c.b.a.in-addr.arpa''.
A DNS lookup for a PTR record looks just like a DNS lookup for a domain name at this point - Root_DNS, Registrar, DNS_Server, except that the return value will be a host name instead of an IP address.
With very few exceptions all PTR records are registered to the ISP that controls the IP block in question, so frequently the ONLY way to change your PTR records is to contact your ISP and request that they be changed.
PTR records are only rarely used for their original purpose of verifying the identity of a particular computer - this is now done with SSL certificates and Trust Authorities.
The PTR record for your SME Server only becomes important if you plan to deliver email directly from your SME to recipient email servers (without using your ISP's mail server as a relay). Some email providers will not accept your email if the name returned by the 'reverse lookup' of your IP address does not in its turn result in your IP address when it, itself is looked up. It doesn't necessarily need to match your configured domain name, but it has to work both ways.
For example, if the ''nslookup d.c.b.a.in-addr.arpa'' (the reverse lookup for your IP) returns ''dsl-a-b-c-d.mycity.myispsname.com'' then before trying to send email directly from your SME to the Internet at large you want to make sure that ''nslookup dsl-a-b-c-d.mycity.myispsname.com'' returns your ''a.b.c.d'' and not an error or some other address.
=====SPF Records=====
SPF (Sender Policy Framework) records are added to the DNS zone record for domain names. Many receiving mail servers now require sending mail servers to have properly configured SPF records for the domain(s) being sent from. Failure to have SPF records can result in mail being rejected by mail servers eg Hotmail servers will reject mail that comes from mail servers without SPF records.
The SPF entries are added to your external DNS records which are hosted by your connectivity ISP. They are not configured on the sme server.
See [http://www.open-spf.org/ here].
Here is a [https://mxtoolbox.com/spf.aspx test site] where you can check if SPF records are configured for your domain.
Different providers have different mail acceptance policies.
Look for tech support pages for the provider.
References:
http://forums.contribs.org/index.php/topic,21631.0.html
http://forums.contribs.org/index.php/topic,31726.0.html
http://forums.contribs.org/index.php/topic,34664.0.html
http://forums.contribs.org/index.php/topic,40009.0.html
http://forums.contribs.org/index.php/topic,42373.0.html
=====Dynamic DNS Services=====
If your IP address is assigned dynamically, you may find it helpful to use a dynamic DNS service. A dynamic DNS service provides you with an automated way to notify them whenever your IP address changes so that they can immediately publish new DNS records for your domain. Without dynamic DNS, you would have to contact your ISP to have them change your DNS records, and your web site and other services would be unavailable for several days until the change was processed. You can easily enable the usage of a dynamic DNS service by selecting it on your server console.
If your IP address is assigned dynamically, you may find it helpful to use a dynamic DNS service. A dynamic DNS service provides you with an automated way to notify them whenever your IP address changes so that they can immediately publish new DNS records for your domain. Without dynamic DNS, you would have to contact your ISP to have them change your DNS records, and your web site and other services would be unavailable for several days until the change was processed. You can easily enable the usage of a dynamic DNS service by selecting it on your server console.
{{warning box|Pre-configured Dynamic DNS Service is no longer integrated into SME Server core functionality due to its rapidly changing providers. If you need this service, please refer to the "smeserver-dyndns" contrib.}}
<!--Contribs.org has tested four dynamic DNS services, of which two are free services and two are commercial services: yi.org (free), dyndns.com (commercial), tzo.com (commercial) and dyndns.org (free). For simplicity, we have preprogrammed the server to work with these services (including pre-installing their client software). If you have arranged dynamic IP address assignment from your ISP and you wish to use one of these services, all you need to do is visit the appropriate web site to sign up for service, and enable that particular function in the server console. In pre-configuring the server for this particular service, we in no way interfere with nor prevent you from using another dynamic DNS service if you wish. To do so, however, would require some customized configuration on your part.
Contribs.org has tested the functionality of these services with our software. However, we accept no liability for any breach of service on their part. A failure on the part of your dynamic DNS service can result in your network becoming temporarily unreachable from the Internet. During these times, your e-mail may be undeliverable.-->
If your IP address is assigned dynamically and you intend to receive all your e-mail directly (rather than having it stored at an ISP and retrieving it via POP or IMAP), but you decide not to use a dynamic DNS service, you should implement multidrop e-mail as your e-mail solution as this will ensure that no e-mail is misdirected to another IP address (See Some important notes on Service list D (multidrop mail) in|[[SME_Server:Documentation:Administration_Manual:Chapter3#Service_List_D | Chapter 3]].)
{{Note box|Dynamic DNS services are not perfect. They merely point hostnames to IP addresses. If your system receives an IP address via DHCP or PPPoE, it will automatically update the dynamic DNS service each time it comes online. However, when your server disconnects from the Internet, with most dynamic DNS services your server does not indicate that it is offline in any way to the dynamic DNS service. If your system is offline for a period of time, it is possible that someone else will be assigned your IP address by your ISP. If this occurs, with most dynamic DNS services this other system will now start receiving your e-mail and web page requests until your server comes back online and updates the service with your new IP address. There is not much you can do about this, but you should be aware of this fact if there is any chance your system will be offline for a long period of time.}}
If your IP address is assigned dynamically and you intend to receive all your e-mail directly (rather than having it stored at an ISP and retrieving it via POP or IMAP), but you decide not to use a dynamic DNS service, you should implement multidrop e-mail as your e-mail solution as this will ensure that no e-mail is misdirected to another IP address (See Some important notes on Service list D (multidrop mail) in|Chapter 3.)
{{Note box|If you are using an IP address whether dynamically allocated or fixed, but located within a DSL block assigned to a provider of home connectivity services it may very well be blocked by mainline ISPs, so that you are not able to send email from it. The solution is to use a '''smarthost''' to relay your email, this being provided by your connectivity provider, check their documentation. The smarthost settings can be configured in the Server Manager email settings. This issue as noted applies to both fixed and dynamic IP addresses.}}
=====DNS Service Providers=====
Here is a brief list of vendors who provide DNS service hosting. The inclusion of a vendor here does not constitute endorsement by the SME developers.
*Dyndns.com http://www.dyndns.com $$$ (for 'Custom DNS' services)
*DuckDNS https://www.duckdns.org/ $free
*Zoneedit http://www.zoneedit.com $free
*FreeDNS http://freedns.afraid.org $free
*EasyDNS http://www.easydns.com $19.95USD per year
====Appendix C. Proxy Servers====
====Appendix C. Proxy Servers====
If you are having difficulty configuring another vendor's hardware or software, we recommend you refer to the manual or contact the vendor for that product.
If you are having difficulty configuring another vendor's hardware or software, we recommend you refer to the manual or contact the vendor for that product.
The SME Server is open source software, Contribs.org encourages users to freely share copies of our software.
The SME Server is open source software, Koozali.org encourages users to freely share copies of our software.
Developers may wish to note that additional documentation, including HOWTO documents and a FAQ, can be found on our development web site - http://wiki.koozali.org/. There are also links there to other web sites relating to the server.