I have earlier posted in Spiceworks but after 5 or so hours, still no answer. Perhaps ML has some pointers.

We have Windows 2008 (not R2...I know its quite old, I may get a lot of spanking here..hehehe...but I already asked the management to upgrade to 2012/2016) with Windows 7 clients.

I have configured a network folder to be offline through GPO, worked wonderful. However, when I changed the ACL (removing a group's access access to it) of a sub-folder, it is still accessible via offline. To troubleshoot further, I accessed the sub-folder while online and gotten an access error, which is expected. Now, disabled network again--to be offline, the sub-folder was not accessed (as it should).

So, I would like to ask, if this is a default behaviour of offline files (you'll need to force it to recognize the ACL change) before it update the access? Shouldn't the propagation of access be automatic? Or I have some mis-configuration somewhere?

Its just earlier that I noticed that there's this topic for introduction.

I'm from Philippines and was also from Spiceworks community. @DustinB3403 and SAM led me here whilst researching about XenServer and HA Lizard a while back. Then just recently, regarding MD RAID in XS, I think.

As much as getting some info and help, I do hope I can chime in something valuable, atleast to anyone, in return someday.

@scottalanmiller
In version 7, you can enable it. However, in my version 8 test, I previously installed successfully the Zextras trial which includes the chat module. It did not expire when the trial does.

Zextras Suite Brochure

Page 24
The Zextras Chat module is included in Zextras Suite 100% free of charge!

Zextras Suite Chat

Chat and Videochat: 100% Free of charge
The Zextras Chat module is included in Zextras Suite 100% free of charge! The Zextras Chat Zimlet allows your users to communicate within the Zimbra Web Client, while desktop and mobile clients can connect via XMPP.

ZxChat

Is this free?

Yes, it is and it will always be! ZeXtras Chat is a free module of ZeXtras Suite, and will be functional even if your ZeXtras Suite trial is expired or if you don't have a valid ZeXtras Suite License installed.

ZxChat FAQ

Is ZeXtras Chat free?
Yes!

I've also previously setup OpenFire/Spark bundle in my previous employer. Though it never saw the light of approval.

Regarding AD integration, I'm not sure I understand it though. I have successfully provisioned a server which can look-up the account password in AD, though its a separate account (manual creation of account--separate from AD), the password is the same as Zimbra looks it up. Lock the account up and the user can not log into Zimbra as well.

@DustinB3403 Thanks! Already applying via GPO

Other configuration would be the same as the original post except the external1.com which should have been smtp.domain1.com and external2.com which should be smtp.domain2.com.

Again, thanks in advance.

Hi,

Guys, I'll be out and will be back on Monday. Tomorrow is a holiday here in Philippines, work resumes on Monday. Hope you can help me out :smiling_face_with_open_mouth:

Thanks!

Hi,

Previously, I was eager to use the following MS Server features on my proposed server upgrade but it may not be advisable or economical so I am soliciting advice from you guys, ‘coz I might have been mistaken:
• Roaming Profiles
• Folder Redirection
• Offline Files
• Access-Based Enumeration
• Data Deduplication
• DFS-Namespace
• DFS-Replication
• Storage Spaces – software RAID?
• Storage Spaces Direct – LAN RAID or VSAN?

We will soon be upgrading/refreshing our infra and sooner, our server (Windows 2008—not the R2) but for the reason of this discussion, let’s just focus on the Windows Server. We will be migrating it and if at some time, I will need to upgrade it to 2012 R2 or 2016 (our Director is against going directly to 2016 as it may have bugs….I am for using the latest and greatest but then again, its her call—anyways, server 2018 is just around the corner )

The 1st phase is virtualizing our physical servers to whichever supports it including the Windows Server 2008. I understand that and I still wanted to use the 1st 3 items in our server (Roaming Profiles, Folder redirection and Offline files) and still thinking over the ABE.

Now the questions are if the rest of the items are still useful in virtualized environment of 3 hosts and VSAN (Hypervisor is VMWare with VSAN).
• Is data de-dupe working in virtualized environment? Does it present any cons or data corruption in terms of backup and restore?
• If there is an ability for a virtual server to be restarted to another host server (even if manual restart is required), is DFS (namespace and/or replication) still useful in a single site (though we have multiple sites but everything is just in a single site (HQ)?
• Now I think that the last 2 will not necessarily be needed as VMWare VSA will take care of it (also, if we upgrade, still to Pro version not Data Center), but what’s your take?

Thanks in advance for your inputs.

Hope I'm not too late at the party!

Happy Birthday Scott!

Cheers!

Thanks @olivier

Just finished reading your blog with response to comment referring to January for beta...I think it's too early in January. Getting excited here just by reading. Nice idea/product, btw.

More power!

Thanks SAM and Tim!

Seems that there is really nothing I could have done better than manually accessing the folder.

@Tim_G , I'll take note work folder, have not heard of it 'till now (I'm really out-dated...hehehe).

@PenguinWrangler said in Simple NethServer 7 ISO Installation:

Has anyone ever used SME Sever? http://wiki.contribs.org? Looks similar to NethServer, not as up to date of an interface it appears but I have used it at locations and it works well. It is based on CentOS.

Actually, NethServer is based off SME Server:
http://www.nethserver.org/nethserver_smeserver/
https://forums.contribs.org/index.php?topic=49865.0

That's the reason for the similarity.

@dbeato
Yes, you got it. The one in zimbra is my first try. It seemed well but I'm unsure if domain2.com really routes to smtp.external2.com. I was pretty impressed by myself having set it up the way I wanted and I have not tried to check the header. :persevering_face:

When it broke, I tried to set it up again. This time, I have checked the header and external email is not routing as expected, it instead routes to mtp.external2.com.

After several months, I'd opened the topic in SW.

Seemed like I had given the wrong information, sorry for the confusion. Just occurred to me that I may have provided the wrong info. Domain1.com is also external1.com (same domain name as our external provider). I think it may have no effect but it may have otherwise.

Lets I’ll step back and start my installation procedure. Most of the steps I made are taken from https://ubuntuforums.org/showthread.php?t=1866784 specially those pre-Zimbra installation – preparation and DNS. I think it is the same guide my predecessor has made to create our present server.

Just to make it clear, I have removed the extenal1.com (it is confusing, I think):
Internal network/domain name: domain.local
Server name: postoffice.domain1.com (192.168.0.1)
Zimbra domain1: domain1.com
Zimbra domain2: domain2.com
External server1: smtp.domain1.com (119.93.x.x)
External server2: smtp.domain2.com (119.93.x.y)

============

/etc/hostname:
postoffice.domain1

============

/etc/network/interfaces
iface eth0 inet static
address 192.168.0.1
netmask 255.255.255.0
network 192.168.1.0
broadcast 192.168.1.255
gateway 192.168.1.5
# dns-* options are implemented by the resolvconf package, if installed
dns-nameservers 192.168.0.1 8.8.8.8
dns-search domain1.com

============

/etc/resolv.conf
nameserver 192.168.0.1
nameserver 8.8.8.8
search domain1.com

============

/etc/bind/named.conf.local
zone "domain1.com" {
type master;
file "/etc/bind/db.domain1.com";
allow-transfer {"none";};
forwarders {8.8.8.8;};
};

zone "domain2.com" {
type master;
file "/etc/bind/db.domain2.com";
allow-transfer {"none";};
forwarders {8.8.8.8;};
};

============

/etc/bind/db.domain1.com
; domain1.com
$TTL 604800
@ IN SOA ns.domain1.com. root.domain1.com. (
20180124 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ); Negative Cache TTL
;
@ IN NS ns
IN MX 10 postoffice
IN MX 10 smtp
IN A 192.168.0.1
ns IN A 192.168.0.1
postoffice IN A 192.168.0.1
smtp IN A 119.93.x.x
www IN A 192.168.0.1

============

/etc/bind/db.domain2.com
; domain2
$TTL 604800
@ IN SOA ns.domain2.com. root.domain2.com. (
20180125 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ); Negative Cache TTL
;
@ IN NS ns
IN MX 10 postoffice
IN MX 10 smtp
IN A 192.168.0.1
ns IN A 192.168.0.1
postoffice IN A 192.168.0.1
smtp IN A 119.93.x.y
www IN A 192.168.0.1

============

admin@postoffice:~$ nslookup domain1.com
Server: 192.168.0.1
Address: 192.168.0.1#53

Name: domain1.com
Address: 192.168.0.1

============

admin@postoffice:~$ nslookup smtp.domain1.com
Server: 192.168.0.1
Address: 192.168.0.1#53

Name: smtp.domain1.com
Address: 119.93.x.x

============

admin@postoffice:~$ nslookup domain2.com
Server: 192.168.0.1
Address: 192.168.0.1#53

Name: domain2.com
Address: 192.168.0.1

============

admin@postoffice:~$ nslookup smtp.domain2.com
Server: 192.168.0.1
Address: 192.168.0.1#53

Name: smtp.domain2.com
Address: 119.93.x.y

============

admin@postoffice:~$ dig domain1.com

; <<>> DiG 9.10.3-P4-Ubuntu <<>> domain1.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 28427
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 2

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;domain1.com. IN A

;; ANSWER SECTION:
domain1.com. 604800 IN A 192.168.0.1

;; AUTHORITY SECTION:
domain1.com. 604800 IN NS ns.domain1.com.

;; ADDITIONAL SECTION:
ns.domain1.com. 604800 IN A 192.168.0.1

;; Query time: 0 msec
;; SERVER: 192.168.0.1#53(192.168.0.1)
;; WHEN: Tue Feb 06 16:42:01 +08 2018
;; MSG SIZE rcvd: 91

============

admin@postoffice:~$ dig domain1.com mx

; <<>> DiG 9.10.3-P4-Ubuntu <<>> domain1.com mx
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 11646
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 1, ADDITIONAL: 4

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;domain1.com. IN MX

;; ANSWER SECTION:
domain1.com. 604800 IN MX 10 smtp.domain1.com.
domain1.com. 604800 IN MX 10 postoffice.domain1.com.

;; AUTHORITY SECTION:
domain1.com. 604800 IN NS ns.domain1.com.

;; ADDITIONAL SECTION:
smtp.domain1.com. 604800 IN A 119.93.x.x
postoffice.domain1.com. 604800 IN A 192.168.0.1
ns.domain1.com. 604800 IN A 192.168.0.1

;; Query time: 0 msec
;; SERVER: 192.168.0.1#53(192.168.0.1)
;; WHEN: Tue Feb 06 16:42:20 +08 2018
;; MSG SIZE rcvd: 155

============

admin@postoffice:~$ dig domain2.com mx

; <<>> DiG 9.10.3-P4-Ubuntu <<>> domain2.com mx
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10800
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 1, ADDITIONAL: 4

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;domain2.com. IN MX

;; ANSWER SECTION:
domain2.com. 604800 IN MX 10 postoffice.domain2.com.
domain2.com. 604800 IN MX 10 smtp.domain2.com.

;; AUTHORITY SECTION:
domain2.com. 604800 IN NS ns.domain2.com.

;; ADDITIONAL SECTION:
smtp.domain2.com. 604800 IN A 119.93.x.y
postoffice.domain2.com. 604800 IN A 192.168.0.1
ns.domain2.com. 604800 IN A 192.168.0.1

;; Query time: 0 msec
;; SERVER: 192.168.0.1#53(192.168.0.1)
;; WHEN: Tue Feb 06 16:42:27 +08 2018
;; MSG SIZE rcvd: 166

@dbeato said in Zimbra help..multi-domain each with own external relay:

P of the Server as NAT through the firewall while the other two domains are sending through a relay server as belo

Thanks @dbeato, great! Same as what I'm trying to achieve!

I have below as my settings

bysender:
@domain1.com [ smtp.domain1.com]:587
@domain2.com [ smtp.domain2.com]:587

relay_password:
[smtp.domain1.com]:587 [email protected]:Password1
[smtp.domain2.com]:587 [email protected]:Password2

@dbeato said in Zimbra help..multi-domain each with own external relay:

Also are you SMTP Servers also on the MTA Trusted networks?

No. Does it need to be?

Below are mynetworks (edited the line '# name postoffice.domain1.com as it formats large):
zimbra@postoffice:~$ postconf mynetworks
mynetworks = 127.0.0.0/8 [::1]/128 192.168.0.0/24
zimbra@postoffice:~$ zmprov gs postoffice.domain1.com zimbraMtaMyNetworks
'# name postoffice.domain1.com
zimbraMtaMyNetworks: 127.0.0.0/8 [::1]/128 192.168.0.0/24

Honestly, I do not understand the MTA Trusted networks. Our present servers (physical and one domain on one server..this is not the one I opened in this thread) only have the loopback (127.0.0.1/8) and its network (192.168.0.0/24) but our other VLANs, other offices (via IPSEC) and outside access (NATted) works.

What I was thinking is that the since our users are accessing the (zimbra) webmail, it is using the server's own IP address. However, this is also true if I set up POP/IMAP through a client, it connects and sends via the server's IP. Pls. correct me if I'm understanding it wrong.

@scottalanmiller Thanks! I did enjoy it with family and friends!

@BBigford yeah, that's it. And no fault of any other. I just can't figure this thing out...luckily, its just a test server (planning for an upgrade...thus the test).

@dbeato, I can not stress my gratitude on this. Thanks!

I think what they are implying above is that emails sent to non-existent address/account should be dropped rather than generating a non-delivery receipt/response to the sender.

There's a pros and cons in the implementation. Ofcourse, it would be nice if the sender will be receiving a response that the mailbox is non-existent on the email server (being courteous). It might totally be non-existent or entered incorrectly, however, it will also get the idea that the domain exist, and that the sender with malicious intention will try to guess another recipient (instead of waiting forever for a response). Especially true for those with companies using generic addresses like cio, coo, sales01, sales02, etc.

@scottalanmiller said in Windows file server query:

designer bandaid with puppy designs on it, then you can wear it anytime.

:smiling_face_with_open_mouth_smiling_eyes:

Thanks everyone! I know now on what I should do to my file server.

Great day ahead!

Hi guys,

This is just getting your opinions.

Our Director is asking me to check possibility of using AWS (perhaps Lightsail for easier billing) for our infrastructure. He said that it might help out in future-proofing our infra--just another option to an infra request I made which is focused on virtualization.

Several questions pops out of my mind:

• Will it be possible to spin-up Microsoft DC and have clients connect to it?

• Another thing will be security, how will we limit that only certain locations (IPs) or road-warrior units will be able to connect to it? Same question but this time on Windows file server instance.

• Will it be easy to make it redundant to another region. Not a requirement but may be an option for business continuity should a region be unreacheable.

• is it right that Windows server licenses including CALs are also included in the pricing.

• still torn if to migrate our AD (where it is still 2008..and still on the .local) or create a new one. How to go about these steps.

Note that I am new to this and have no idea on what service to subscribe to. I may have missed something but I know you guys will point me to the right direction. I may be able to do some testing personally but creditcard is what I do not have...at the moment.

I'm also aware (not knowledgeable) of the Azure and Google Compute Platform but I wanted to focus this moment on AWS.

Thanks and regards,

VhinzSanchez