|
Re: Cannot start HTTPS services on OS X Lion Server [message #101620 is a reply to message #101605] |
Wed, 17 April 2013 15:25   |
fishtech
Messages: 609 Registered: September 2010
|
|
|
|
Hi,
I am still using Connect 7.4.3... this may be different if you are using v8.
In Connect > Configuration > Services > Secure HTTP... you can add or change the ports used by Connect for secure connections.
I assume the conflict is port 443. Change that to something else (or delete and just use 9900) and you should be fine.
To make thisngs easy for my users (so they don't have to remember to remember https:mail.mycompany.com:9900 as the webmail address) I use the following javascript in an index file at http://www.mycompany.com/webmail to redirect users to Kerio Connect port 9900.
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1" />
<title>Untitled Document</title>
<!-- Begin ReDirect Command -->
<meta http-equiv="refresh" content="1;url=https://mail.mycompany.com:9900/webmail/login/">
<!-- End ReDirect Command -->
</head>
<body>
</body>
</html>
hth,
ft.
[Updated on: Wed, 17 April 2013 15:28] Report message to a moderator
|
|
|
Re: Cannot start HTTPS services on OS X Lion Server [message #101622 is a reply to message #101620] |
Wed, 17 April 2013 17:25   |
BeeOnLion
Messages: 39 Registered: May 2012 Location: Ireland
|
|
|
|
Hi fishtech
Thanks for the reply.
I was wondering have you run into any issue with mobile devices having issue connecting on this different port?
Speaking to Kerio earlier & they mentioned that there could be an issue with syncing as 443 is a industry standard for a lot of phones & we would need to recreate the accounts......
I presume that if I was to go into connect --> configuration --> Services --> Secure HTTP in Kerio admin & change this to port 9900 or something simular all i would need to do then is go to my firewall & set up a rule to forward traffic here to 9900
The user could then enter https://mail.domain.com & automatically be directed to webmail as long as I have a MX & A/AAAA records for this created?
Thanks again for your feedback its much appreciated
|
|
|
Re: Cannot start HTTPS services on OS X Lion Server [message #101623 is a reply to message #101605] |
Wed, 17 April 2013 18:13   |
fishtech
Messages: 609 Registered: September 2010
|
|
|
|
Quote:there could be an issue with syncing as 443 is a industry standard for a lot of phones
Hmmm that may be a valid point. i was thinking in the context of webmail only.
I suggest you check the ports yours mobile devices already use.
I just checked mine on iOS and I have by default:
incoming mail... 993
outgoing mail... 465
calendars... 9900
contacts... not possible to view
Incidentally, I usually have port 443 open (I run on OSX client and have had no reason to deactivate it).
When I set up an iOS device I use the 'integration' setup from the webmail login page.
To test I just deactivated service on 443, and was still able to send receive email and sync calendars on my iPhone.
However, Contacts/Addresses breaks. I checked in OSX desktop. Contacts there uses 443. I changed 443 to 9900 and it works again on OSX desktop. It's does not appear possible to change in iOS after an integrated configuration.
So, I can't edit the port number for Contact directly on iOS but i assume if I re-run an integrated install port 9900 will be set for Contacts.
Bottom line (at least with my setup) is that I can turn off 443 and Mail Calendars will not be affected. Addresses/Contacts will require attention.
hth,
ft.
[Updated on: Wed, 17 April 2013 18:14] Report message to a moderator
|
|
|
|
|
Re: Cannot start HTTPS services on OS X Lion Server [message #101652 is a reply to message #101642] |
Thu, 18 April 2013 12:53   |
j.a.duke
Messages: 239 Registered: October 2006
|
|
|
|
BeeOnLion wrote on Thu, 18 April 2013 04:18Hi all
Thanks again for all your feedback & support on this.
In relation to the server that we will be running Kerio on it is the MAC Mini
Can you be a wee bit more specific, please? Which model mini? Or at least what the More Info... section of About this Mac reports (mine reports "MacBook Pro 15-inch, Early 2011").
Thanks.
Cheers,
Jon
|
|
|
|
Re: Cannot start HTTPS services on OS X Lion Server [message #101670 is a reply to message #101654] |
Thu, 18 April 2013 15:24   |
j.a.duke
Messages: 239 Registered: October 2006
|
|
|
|
BeeOnLion wrote on Thu, 18 April 2013 07:06Hi j.a.duke
MAC mini Server OS X 10.8.3
Processer: 2.3GHz Interl Core i7
Memory: 4GB 1600Mhz
1TB HD
Late 2012
Hope this helps for any work around....
Thanks for posting this info.
I think you should look at this: Thunderbolt to Gigabit Ethernet Adaptor.
Even if you aren't running gig, the performance of the Thunderbolt adapter will be so much better than the USB adapter.
I have used this on a 2012 Air and the performance is as good as built-in ethernet.
And it will give you that second port/IP on which to run Connect.
Alternatively, and why I didn't think of this before, you can add a second IP address to the existing ethernet interface-just click the plus button at the bottom of the list in the Network preferences pane, select the interface, name it appropriately, the perform the network setup as normal for a static IP on your network. And this costs nothing to try. And you should be able to designate where Mountain Lion Server routes its traffic.
If the second IP on the existing ethernet doesn't work, then try the Thunderbolt adapter.
And, I'll put in a plug for the Pegasus arrays-the raw disk performance is phenomenal! Better than even several eSATA RAID 5 arrays that I've benchmarked. Also, I've got an Areca ARC-8050 that I'm currently setting up, certifying the disks (via SoftRAID), then qualifying the whole unit. Once I've got it setup I'll try to remember to post performance numbers.
And, please post what you finally end up working with-I'd, as well as others, like to know what worked for a particular solution.
Thanks.
Cheers,
Jon
[Updated on: Thu, 18 April 2013 15:26] Report message to a moderator
|
|
|
|
Re: Cannot start HTTPS services on OS X Lion Server [message #101680 is a reply to message #101671] |
Thu, 18 April 2013 16:47   |
BeeOnLion
Messages: 39 Registered: May 2012 Location: Ireland
|
|
|
|
Thanks for getting back with the suggestion of the Thunderbolt connection a much better option than the USB 
I presume that to add the second IP address to the existing ethernet interface I would just need to go to
Server --> Services --> DNS & hit the + here to add the additional ip?
I will definitely post back as soon as we figure the best option out
|
|
|
Re: Cannot start HTTPS services on OS X Lion Server [message #101685 is a reply to message #101680] |
Thu, 18 April 2013 18:12   |
j.a.duke
Messages: 239 Registered: October 2006
|
|
|
|
BeeOnLion wrote on Thu, 18 April 2013 10:47Thanks for getting back with the suggestion of the Thunderbolt connection a much better option than the USB 
I presume that to add the second IP address to the existing ethernet interface I would just need to go to
Server --> Services --> DNS & hit the + here to add the additional ip?
I will definitely post back as soon as we figure the best option out
The way I'd go about it is to use System Preferences-Network and add it there. I don't think you need to do anything in the Server app.
From what I can find and test at the moment, it looks like the initial (default?) address will be used for the Mac OS X Server services, leaving the new static IP available for Connect.
Cheers,
Jon
|
|
|
Re: Cannot start HTTPS services on OS X Lion Server [message #101689 is a reply to message #101685] |
Thu, 18 April 2013 22:01   |
fishtech
Messages: 609 Registered: September 2010
|
|
|
|
it looks like the initial (default?) address will be used for the Mac OS X Server services, leaving the new static IP available for Connect
i don't think you can have Kerio Connect only on 1 IP address and not another.
i think all services will be presented on all addresses.
i think the OP will still have the same problem if he goes the route of a 2nd ethernet adapter. I use USB <> ethernet adapters on several of my servers (not Kerio Connect).
ft.
|
|
|
Re: Cannot start HTTPS services on OS X Lion Server [message #101691 is a reply to message #101689] |
Thu, 18 April 2013 22:17   |
j.a.duke
Messages: 239 Registered: October 2006
|
|
|
|
fishtech wrote on Thu, 18 April 2013 16:01it looks like the initial (default?) address will be used for the Mac OS X Server services, leaving the new static IP available for Connect
i don't think you can have Kerio Connect only on 1 IP address and not another.
i think all services will be presented on all addresses.
i think the OP will still have the same problem if he goes the route of a 2nd ethernet adapter. I use USB <> ethernet adapters on several of my servers (not Kerio Connect).
ft.
In the Services "tab" you can define on which IP Connect "listens" for a given service.
Also, there is an option in the Advanced tab of the domain settings to bind to a specific IP. Please read this thread for details on how to set this up correctly.
Cheers,
Jon
|
|
|
|