Re: [IMail Forum] Upgrade to 2006.21 -Install error messsage/file - popup window " Domain Registry check error"

Fri, 20 Jul 2007 19:56:54 -0700 

Matt:
A good design is to have a NAS on a private network for doing backups, and to prohibit devices on that private network from talking to each 


If you want to keep all backup traffic on a separate network and isolate 
the bandwidth usage then I can agree with this.



other (aside from the NAS of course).  All other activities should go 
over the public NIC.



Personally, I do not believe there is any reason to leave a mailbox 
server open on public IPs - why not just keep everything, including the 
server protected on the private side (this can still be accomplished in 
a dual NIC enviroment using dual private subnets)?



This way you can limit servers and services that can attack your server 
via the firewall. Very helpful when you are under an attack - software 
based firewalls on the server will not adequately protect you.



Also, placing a NAS off of the public NIC will absolutely destroy any 
traffic graphing on that port, and it is rare that one actually owns a



Yes it would through off your graphs for your purpose however it would 
be acurately showing the traffic. The dual NIC does allow for this 
separation on the graphs.



firewall capable of the gigabit speeds necessary to do backups and 
restores of large amounts of data in a timely manner.



The firewall would not need to be capable of gigabit speeds since the 
backup would remain on the local network and not need to be routed 
through the firewall.



As for as the speeds required - that depends on the size of the data and 
the method of backup - but that is a different discussion.



Like I mentioned above, keeping this backup traffic off on a separate 
LAN can't hurt.



Matt



Kevin Coveney wrote:



I think perhaps the biggest concern here would be that should the 
server get compromised on the public NIC it

could potentially expose the interior network via the private NIC.


Why not keep the entire server within the private address space and 
NAT only the required access ports back
to it via your firewall? If you need full access to the server that 
could be accommodated via a VPN session that

is authenticated at the firewall.

-Kevin Coveney


Matt wrote:

I've never had an issue with this and have run or administrated 
active dual NIC's on about 10 servers.



I believe that at one time there was some bug with some NIC 
configuration, but it is not proper to assume that this issue still 
exists nor was it ever widespread.


Matt



Chuck Schick wrote:

John:

Isn't the Dual NIC issue mostly an IMAIL problem? Most Servers today 
come with multiple NICs and we usually configure a private network 
on a second NIC for backups and DNS lookups. We have had issues with 
IMail and multiple NICs.


Chuck Schick
Warp 8, Inc.
(303)-421-5140
www.warp8.com



------------------------------------------------------------------------ 

*From:* [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] *On Behalf Of *John T 
(lists)

*Sent:* Thursday, July 19, 2007 1:28 PM
*To:* [email protected]

*Subject:* RE: [IMail Forum] Upgrade to 2006.21 -Install error 
messsage/file - popup window " Domain Registry check error"



Well, then I guess you can ignore the registry check the Ipswitch 
has now included to help catch problems since it has been working 
fine for you for years.



However, other people would have the opinion that having 2 NICS on a 
server, one for internal and one for external, is not recommended 
and can lead to problems.


*John T*


*From:* [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] *On Behalf Of *Howard 
Smith (N.O.R.A.D.)

*Sent:* Thursday, July 19, 2007 12:16 PM
*To:* [email protected]

*Subject:* RE: [IMail Forum] Upgrade to 2006.21 -Install error 
messsage/file - popup window " Domain Registry check error"



The public nic is for internet traffic , the private nic is for 
nightly backups and a path to our internal dns server. I have had 
this network config since version 7.xx


destroy all copies of the original message/. /


------------------------------------------------------------------------ 




*From:* [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] *On Behalf Of *John T 
(lists)

*Sent:* Thursday, July 19, 2007 3:07 PM
*To:* [email protected]

*Subject:* RE: [IMail Forum] Upgrade to 2006.21 -Install error 
messsage/file - popup window " Domain Registry check error"


OK, that begets another question, why?

Yes, this is leading to why are you seeing that error.

*John T*


*From:* [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] *On Behalf Of *Howard 
Smith (N.O.R.A.D.)

*Sent:* Thursday, July 19, 2007 11:57 AM
*To:* [email protected]

*Subject:* RE: [IMail Forum] Upgrade to 2006.21 -Install error 
messsage/file - popup window " Domain Registry check error"


They are on separate internal nics , I outlined it wrong in the email.


------------------------------------------------------------------------ 




*From:* [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] *On Behalf Of *John T 
(lists)

*Sent:* Thursday, July 19, 2007 2:23 PM
*To:* [email protected]

*Subject:* RE: [IMail Forum] Upgrade to 2006.21 -Install error 
messsage/file - popup window " Domain Registry check error"


Why do you have both public and private IPs on the same NIC?

*John T*


*From:* [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] *On Behalf Of *Howard 
Smith (N.O.R.A.D.)

*Sent:* Thursday, July 19, 2007 10:34 AM
*To:* [email protected]
*Cc:* [EMAIL PROTECTED]

*Subject:* RE: [IMail Forum] Upgrade to 2006.21 -Install error 
messsage/file - popup window " Domain Registry check error"



We are an ISP with 30 virtual domains and 1 primary domain 
“norad.com” for company use.


NIC card settings PUBLIC:65.240.224.170 PRIVATE:172.16.4.170


I got the following error upgrading from Imail premium 2006.2 to 
premium 2006.21


*Starting Domain Registry check*

*System IP found - 172.16.4.170*

*System IP found - 65.240.224.170*

*Primary Host norad17.norad.com address is 65.240.224.170*


*Domain / official mismatch: official - norad17.norad.com Address - 
65.240.224.170*



*Dup Official norad17.norad.com Official 65.240.224.170 and 
172.16.4.170*


*Domain registry check complete*

I have the following settings on my systems setting config page

Domain Name (OHN): norad17.norad.com

Default Host: norad17.norad.com


------------------------------------------------------------------------ 




*From:* [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] *On Behalf Of *Kurt 
Stocker

*Sent:* Thursday, July 19, 2007 1:11 PM
*To:* [email protected]
*Subject:* RE: [IMail Forum] Upgrade to 2006.21

*Great conversations*


*We also are having troubles with upgrade and our tech people are 
looking at other options.*


* *

* *


*From:* [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] *On Behalf Of *Heimir 
Eidskrem

*Sent:* Thursday, July 19, 2007 11:44 AM
*To:* [email protected]
*Subject:* Re: [IMail Forum] Upgrade to 2006.21

tnichols wrote:

I know that part but I can't call for support.

I basically paid for a product 20 months ago that has not been ready 
for prime time before now.
So, why dont Ipswitch step up and extend the support plan so we can 
actually get some usage out of it.



If your service agreement was valid when 2006 first came out, you 
are entitled to 2006.21.


Go here: http://www.ipswitch.com/apps/download_center/


It will ask for serial number and registered email address. You will 
then be able to get both the download and the license key.


Ted Nichols

Ipswitch Messaging QA


------------------------------------------------------------------------ 




*From:* [EMAIL PROTECTED] 
<mailto:[EMAIL PROTECTED]> 
[mailto:[EMAIL PROTECTED] *On Behalf Of *Heimir 
Eidskrem

*Sent:* Thursday, July 19, 2007 11:20 AM

*To:* [email protected] 
<mailto:[email protected]>

*Subject:* Re: [IMail Forum] Upgrade to 2006.21

Mark Reimer wrote:


How are the upgrades going? I’m thinking about upgrading today and 
just wanted to know if the overall consensus is good or bad for 
those that have upgraded.


Mark Reimer

IT System Admin

American CareSource

972-308-6887

I am considering it too.

But I think my support contract did expire and I have never 
installed any 2006 version since they where not ready for usage.



If Ipswitch would kindly extend my contract so I can install this 
version and still have some support that would nice. I will not pay 
another dime to Ipswitch before they have the product I paid for 
working.


So pretty please?




To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html

List Archive: 
http://www.mail-archive.com/imail_forum%40list.ipswitch.com/

Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/



To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/


--
Kevin Coveney
Connetrix
516.576.3300 x13

To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html
List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/





























					Reply via email to