Zentyal Forum, Linux Small Business Server
Zentyal Server => Installation and Upgrades => Topic started by: jelleb on March 01, 2014, 08:26:57 pm
-
Hello,
Just installed the 3.4 daily build and it's working good sofar, i'm testing the Openchange functionality and get the message: "Cannot use RPC Proxy because we cannot find this host name: Cannot find this host in DNS domain", the hostname is present in the dns, i tried adding 127.0.0.1 with the hostname to the dns but that does not seem to have the right effect.
The openchange webmail is working ok and i can send mail and add contacts etc.
Will the RPC Proxy make it possible to use mobile phones with the exchange client to connect to openchange?
Is there something in the settings i have to change to get rid of the RPC Proxy message?
Thanks in advance
Jelle
-
I got the same message, cannot use outlook anywhere if you can't get off this message. anyone can give some advise ?
-
At the weekend I ran up the daily 3.4 version.
So I had more or less the latest ISO and all the new module updates and Ubuntu security patches.
I am not saying the error doesn't exist for some but would you kindly provide modules versions.
Apart from really needing to change that test email.
I managed to join the domain with a client and outlook connects no problem at all.
-
OpenChange Server 3.4~135
OpenChange Web Mail 3.4~130
-
Don't know as your updates are more recent than mine but as you will see I am working with no probs?
I just updated to your current version.
I know its a dumb question but you have a client logged onto the domain with a current user?
Guess there is the other thing of what version of outlook are you using 2010 here.
-
I can connect with outlook just fine if i'm in the local lan, outlook anywhere will give you the ability to connect from outside the local lan to your server by using https through the RPC proxy.
I guess we will have to wait for active sync support for the mobile clients as they seem to use active sync through the RPC Proxy.
Can you connect from outside your local lan with outlook?
Do you see the RPC Proxy message?
Would be nice to see this resolved one way or the other.
Jelle
-
You mean this message in openchange. I also have it since i test 3.4.
i am not really sure if my name i choose for openchange is ok. what should we use there? dantor.de dantor.local or only dantor? Whats correct?
-
Have no idea what that message means.
As I got that myself.
Thought you lie I know its there and there is a mail domain.
I ignored it.
-
That message is to be able to enable outlook anywhere (so you can connect to openchange outside your internal network).
Check you have on dns module something like this (see attachments).
Basically you need:
- To have the outgoing mail domain defined in your dns module
- To have a hostname defined on that domain
-
Well to be honest blaxter I am not sure.
I have Openchange / SOGo and outlook working. It wouldn't work if there wasn't the DNS entries as my dns entries where created when applying the virtual mail domain and virtual domain.
So basically I have what you say but still the error. As I say I ignored it. Also I ignored it as quite frankly Http RPC doesn't make a lot of sense to me.
Its a legacy thing which is definately pre HTML5
Would anyone check there DNS hostname. For some reason I have two hostnames. I set myself up as zent1.zentyal.lan for the test. My DNS hostname has two entries.
zent1 with two ip's (internal and external) I have absolutely no idea why Zentyal creates a DNS entry on my external IP.
Anyway also I have zentyal.lan ? dunno and it has no IP set.
Must be when I added a virtual domain. In fact I wish when you add a virtual domain it wouldn't add DNS entries. Because of .co.uk rather than a .com tld the virtual domain dns entries get screwed everytime you add them. It actually makes it harder as you have to work out which entries and fix them.
domains can not be two characters long. when they are two characters they are a tld. You can tell that it irritates me that Zentyal thinks domain.co.uk is in a hostname.domain.tld format. :)
-
That message is to be able to enable outlook anywhere (so you can connect to openchange outside your internal network).
Check you have on dns module something like this (see attachments).
Basically you need:
- To have the outgoing mail domain defined in your dns module
- To have a hostname defined on that domain
There is a difference in our settings. I have in virtual domains not only example.lan , i also have for outgoing mails example.de defined and my outgoing mail domain is example.de not like in your example it should be example.lan.
If i understood it correctly, i need to put in there my external domain name example.de, because otherwise i cant send mails external, just only internal. Am i wrong?
The rest of me is similar to yours.
edit: not really, i see you didn´t change the organisation name of openchange "first organisation" whereas i have "example"
-
@Torsten73
I see in a previous screenshot you have dantor.de as outgoing mail, so afaik you need to handle that domain in zentyal dns module and to have one host on that domain with an external ip. Then clients (outside your internal network) should be able to use that domain name (something.dantor.de) to connect through https (or http) to openchange.
For testing purposes you can fake the domain in windows editing c:\windows\system32\drivers\etc\hosts
Btw, after doing this you have to open the port on the firewall.
-
I think everybody gets a little worried by mail for no reason really.
Basically and I think this is true though have never tried. As long as you have an external DNS and MX record set you don't need anything else.
This just points to an external IP that is hopefully static over time. If your mail server is a single DNS then you don't even need an MX.
You don't even have to go near the internal DNS module. Here is a screen shot of my providers DNS control panel.
Also they have quite a good simple guide which I included, I should be a reseller!
I know its not exactly correct to say you don't need internal DNS, but for simplicity its relatively true. Internal DNS sets up DNS for internal domain structures.
Externally you need to set the DNS with the domain name registrar.
I don't get the current Bind9 implementation as I am never going to open it up externally as its a huge security hole.
I have never done anything more than added a domain name and host name with corresponding internal and external IP's.
I am sort of confused as to why with the rest of the functionality and just feel it adds confusion than anything really useful.
-
i think i don´t understand enough from it. :-[
I don´t want to modify my external mx record. i want to send mails over my provider, wich is normally the securest way and is working. So in this case i will ever get the rpc proxy error, because it only works when using my zentyal ans an mta and send mails directly?
-
I got the same message, cannot use outlook anywhere if you can't get off this message. anyone can give some advise ?
same issue, it is not clear what hostname is missing, in my configuration is same outgoing domain, same somain in dns settings, host is present, mx set, no idea how to get RPC proxy to work
-
@Peter Pugh, i don't think you understand what we are trying to do with the RPC Proxy: it is for connecting Outlook from the internet to your internal server, no need to open any ports besides 443 for https which is what will be used to connect through the RPC Proxy, it is for connecting clients not receiving mail!
I saw today on the SoGo website that they have Active sync running to, can we expect to see that support in Zentyal also so that we can connect our mobile clients from anywhere? (again this is why the RPC proxy exists to connect clients to your server from anywhere)
Jelle
-
I presume I honestly know nothing. But M$ being M$ the RPC proxy is some sort of SOAP protocol over http?
I don't know why it should get a DNS error unless this is some sort of service record that is required.
If it is an you need to present external DNS I am afraid I am not going to do it with the current Bind implementation.
If someone can post some details about how the RPC proxy is supposed to work then someone on here will be able to give a clear picture.
Externally I am going to use SOGo and if clients require it Outlook via VPN or LAN.
Apols as I say I saw the error and just skipped it as its one of those "Somebody elses problem field"
-
Well i'm not trying to piss you off or something ;)
The error we are getting means the RPC Proxy is not starting because it cannot find the domain name in the local DNS, but i have checked that again and again and everything seems to be ok.
And it does seem to work, look at the screenshots from Blaxter, the RPC Proxy is running as he gets the setup page for the proxy.
Jelle
-
Don't worry about pissing me off. Call me to high heaven, I deserve it. I porked my VM with the user corner.
This made me think at this stage I will just run through again to see if the VPN stuff is in order.
I will give it a go and post. Apols just not all that interested in Outlook anywhere.
I will try though :)
PS dunno but there seems to be options to enable it either over http or and https which just didn't seem to be ticked?
-
it is for connecting Outlook from the internet to your internal server, no need to open any ports besides 443 for https which is what will be used to connect through the RPC Proxy, it is for connecting clients not receiving mail!
That's right.
-
Zentyal via samba sets up an internal samba domain which I use domain.lan with .lan meaning this is my internal domain.
Then I have a registered domain which for example is domain.co.uk which my dsn records points to the ip of my external nic.
So Openchange sets up on domain.lan but wants and external domain so that it can rewrite the email address so they come back to you of @domain.co.uk.
So I have my first domain domain.lan and my external domain domain.co.uk
I should read the documentation but I think thats it.
-
@blaxter, it seems to be, that you are the only one who hasn't the error. I tried to find out what is different, but i found nothing real.
My setting uses only one NIC but peterpuh seems to use 2 NICs like you.
Did you defined an external domain? Do you send Mails over a relay host or directly?
At the moment i also have other problems which maybe have the same reason?
- Rpc proxy error
- Outlook 2010 will work only for the first connection, but then i got after certification message which i agree and store no connection anymore
- Outlook anywhere, i See no benefit for it. Active sync is much moore needed!!!
Blaxter, can you give us moore infos about your config and maybe a setup backup?
-
Solved,
in case of ONE NIC, you have to set this interface as WAN, and before you do, make sure you have updated firewall rules !
-
Marked NIC to External WAN still not solving the problem, the RPC proxy error message still there.
The worst thing is I did not configure firewall, so now my client unable to access to this server, but my server still can ping to client. how to bring it back ?
-
Marked NIC to External WAN still not solving the problem, the RPC proxy error message still there.
The worst thing is I did not configure firewall, so now my client unable to access to this server, but my server still can ping to client. how to bring it back ?
I can reproduce RPC error message by disabling external checkbox, with external, it is enabled, outlook is asking for password but it dosnt accept anynthing, NTLM right?
you have to log to machine, flush iptables, or add some iptables rule, it is up to you, then connect to webadmin and add firewall rules for external table to fit your previous internal.
-
Thanks for the help, managed to flush the Iptables and add the firewall rules from external connection.
but proxy error still persist.
-
Thanks for the help, managed to flush the Iptables and add the firewall rules from external connection.
but proxy error still persist.
then double check your outgoing doimain name in opechnage setup, then your hostname in main configuration and finaly in DNS this outgoing domain contains your hostname.
(i use filesharing in AD DC mode,users having openchange account automaticaly, openchange webmail installed...)
facing new problem that outlook is asking for password from remote location, i can see process in samba log (even if i try to change auth mode from ntlm, errors about parsing are shown as dump of unecrypted password, it seems like outlook reach samba and comunicate, but failing to authenticate
-
Ok, found the issue! actually I changed hostname (Zentyal) to DNW after provision the domain name and openchange. After checking the LDAP setting, the Root DN still pointing to cn=zentyal, by adding the previous hostname (zentyal) into the DNS module the message disappeared and new config page shown allow u to set "Access with/without SSL"
Great! now l can try my outlook anywhere. some people say this is useless function, but it still benefit to those carrying laptop to check their email. also looking forward for Zentyal 3.5 for active sync, which already have in SOGo 2.2.
I think this also disclose the issue that changing the hostname in zentyal will not apply the setting to ldap or openchange ??
Anyway, will mark this post as SOLVED if no any other issue related to RPC proxy.
-
the outlook keep prompting me for the authentication when I connect through outlook anywhere. even I key in the user's ID and password still cannot go through, i'm very confirm the id and password is correct.
-
I can confirm that checking the external WAN checkbox gets rid of the error and shows the RPC Proxy setup page.
It would be nice though to have it working with one NIC too as i have a different firewall and Zentyal is not directly connected to the internet.
Jelle
-
Presumption often results in failure :) So I am hoping there will be a veritable raft of updates and features as the 15th is very soon.
I guess at some point tonight the download will be 3.4 and we will not be running a Beta but a release.
I will be at this and posting in track. The Beta section isn't relevant I guess now.
Prob will be seeing if any of you are in #zentyal on IRC to confirm any bugs.
-
I can also agree, activation WAN in single NIC configurations will solve this error message. Unfortunatly i can´t test outlook anywhere because i don´t knwo how to use it with outlook2010.
I opend a ticket: https://tracker.zentyal.org/issues/328 (https://tracker.zentyal.org/issues/328)
-
I see in a previous screenshot you have dantor.de as outgoing mail, so afaik you need to handle that domain in zentyal dns module and to have one host on that domain with an external ip. Then clients (outside your internal network) should be able to use that domain name (something.dantor.de) to connect through https (or http) to openchange.
For testing purposes you can fake the domain in windows editing c:\windows\system32\drivers\etc\hosts
Btw, after doing this you have to open the port on the firewall.
@Blaxter
I'm still trying to get my head around this, and I can't find a lot of examples.
Can you give me some color on what the setup in zentyal would look like if I were using a dynamicDNS like zentyal.me?
-
I got the same problem, but fixed by adding Ip of eth1(external) to DNS-Config.
I have checked DNS-Domain i use by openchange->setup->OutgoingMailDomain->"exampledomain.lan"
So i go to DNS-Module, search the right domain, because i have more than one. "example domain.lan".
In this line click on Hosts-Configuration-Button, where i get a list of all my hosts in my domain.
There i search for my openchange server name: in my case: "exchange".
I click on Ip-Adrress-Configuration-Button and then add the IP-Address of my Nic which has "External-Option" activated.
My problem was, i have added the second device after setup dns. So it was not auto-configured.
Hope that helps some people with that problem.
P.S: To activate ActiveSync to get in sync with your mobile Devices: sudo apt-get install sogo-activesync.
Then you get a checkbox for active sync in Openchange-Setup section :-)
-
I am having the same issue too. I went in circles for the last 2 days trying figure out a work around. still no success.
"Cannot use RPC Proxy because we cannot find this host name: System needs at least one external interface"
This almost tells me the "RPC Proxy" is looking for and NIC with external flag on...
Any help is greatly appreciated.
Thanks,
ZMK7