Category Archives: Servers

Posts relating to the various servers I have worked on.

Astaro SG “Joining domain failed”

Posted on by
Reply

Astaro LogoI just spent the last 2 business days working on trying to get my Astaro SG 120 v7.507 to re-join the domain, after I deleted the “computer” entry from our Windows 2003 SBS AD. After deleting the computer entry, I rebooted the Astaro box and attempted to join it to the domain (with the same flawless effort I experienced during the initial setup). No luck.

I ran across several Astaro User Forum posts telling people the same things over and over about what to check, and none of it was helping.

I’ll try and give a run through of some error message appearances from the Fallback error log, and what you should do to fix them. If you have more, leave them in the comments below, and I’ll add them.

ads_get_dnshostname: No dNSHostName attribute!

You need to make sure you have a Host Name specified in the FQDN style in the Management > System Settings > Hostname tab

ads_keytab_add_entry: unable to determine machine account’s dns name in AD

  • You need to make sure your Astaro box doesn’t show up as a Computer listed in Active Directory anywhere there are computers listed, then you need to make sure there is a DNS Host (A) entry for your hostname, and also you need to reboot your Active Directory and/or DNS server. (For me, they were the same Windows SBS Box, but a reboot fixed this error message.)

»clock skew too great«

  • You need to make sure the Time & Date on both the Astaro box and the Active Directory server are no more than 5 minutes apart.

»pre-authentication failed«

Make sure the Username/Password you're using to join the domain are correct. They should look like the image above.

Below is the fix that finally worked for me, but I never saw anything in the User Forums (or anywhere else, for that matter) related to these error codes and the Astaro box (only to Samba and Linux Servers).

 

libsmb/clientgen.c:cli_receive_smb

rpc_client/cli_pipe.c:rpc_api_pipe

pipe \lsarpc fnum

  • This means that the Intrusion Prevention System is preventing the Active Directory server from approving the Active Directory join. You need to create an Exception like this:

Go to Network Security > Intrusion Prevention > Exceptions and create a new Exception that Skips "Intrusion Prevention" and list the Active Directory Server in the Source Network area.

I’m sure there are probably more items in the Fallback error logs that folks have encountered. Surprisingly, I didn’t even come across this PDF document detailing a lot of them during my searches until I was researching the error codes for this post. Check that document out and see if your answer is in there.

 

The main rebuttals from most of the “suggestions” you’ll find on the User Forums are:

  1. You don’t need to create a Pre-Win2000 Computer in Active Directory for this to work.
  2. You can’t have an existing computer entry in Active Directory for the hostname you’ve given your Astaro box.
  3. You should create a DNS Host (A) entry for the Astaro box, if you run a DNS server outside of the Astaro box
  4. The Time & Date on both the Server and Astaro Box need to be within 5 minutes of each other.
  5. You don’t have to be able to ping the Astaro box from the server for this to work.
  6. You do have to be able to ping the Active Directory server from the Astaro box’s Support > Tools area
  7. Domains ending in .local will work.
  8. You don’t have to use all CAPS when filling in the hostname  & domain name, but it’s suggested by the Astaro people. It won’t make a difference to DNS – CAPS or lowercase both resolve the same.

As I mentioned above, if you have any other error messages or tips or suggestions, etc., related to getting the Astaro box on the domain, please post them in the comments. Too many people have spent too long trying to get things to work simply because the information wasn’t out there when they were searching.

Technorati Tags: , , , , , , , , , , , , , , , , , , ,

How To: Setup a UT3 Internet Server

Posted on by
42

Surprisingly there are no complete blog postings or forum topics that tell you how to set up a UT3 Internet Server from start to finish…so here we go: Continue reading

Technorati Tags: , , , , , , , , , , , , , , , , , , , , , , , , , ,

[[Oracle]] upgrade

Posted on by
1

I upgraded [[Oracle]] this weekend to have a 500gb hard drive in it. I got the drive, a Seagate SATA II 500gb drive for $107 at Frys. The sale ends today, 10/2, so I decided not to pass it up. Now I store all my music on that drive, and am using the 450gb RAID of 120s to store my movies that I haven’t, or can’t, burn to DVDs. That frees up a drive I can dedicate to just Game ISOs and get it off my Downloads drive that I store OS installations, and other software installation files that I don’t want to go find. Continue reading

Technorati Tags: , , , , , , , , , , , , , , , , , , , , , , , , , ,

[[Link]] & [[Trinity]], MySpot

Posted on by
Reply

Updates are hard to come by these days – especially when in order to have an update, you have to build a new computer, learn a new operating system, and install/learn/configure a new software service.

I’ll start with [[Trinity]]. When [[Oracle]] crashed, in early October, I was left without any kind of service on a server that I ran. So, no email, web, ftp, vpn, and file search…among others. So, with haste, I put together a small linux box running Fedora Core 5 – for it was as good a time as any to learn linux – so that I could reinstate at least an email server and DNS server. As I use my network more and more, I am realizing that with a router as powerful as the hacked Linksys routers with the DD-WRT linux distro on them, there is really no need for a dns server, except internally…and even that is not needed.

At any rate, I built up [[Trinity]] to complete the set of three computers, with an appropriate name. [[Trinity]] runs Qmail and also a Wildfire jabber server. Once those were back up and running, I decided to return my attention to my next plan that required linux in the first place…Asterisk.

After doing some reading, and watching a podcast done by SYSTM with Kevin Rose, I put together another linux box with Fedora Core 6. Only to find that there were networking issues still with the software. Samba wouldn’t create a dns name associated with the ip address of the computer. Basically (incase those weren’t the right words), I couldn’t type the name of the computer to get to it, like I could my others. And this happened both at home and on the one I created at the office. So I moved my home computer to CentOS, and the office computer to Fedora Core 5…both of which were called [[Link]], to represent the communications link on the network.

But having recently been released from my job, I will focus on [[Link]] at my home. I have it set up and running successfully for several weeks now…and have purchased an ATA hardware device that I am still trying to get to work with the system. But the SIP softphones work for voip pc to pc phone calls with other people on my network. However, I only recently released the request for beta testers on this project.

I am using X-Lite as was suggested in the Asterisk Handbook. However, with my first beta tester, their Mac client does not work, crashed several times, and would not actually connect to the network – where as I have been able to connect to it from home, work, and starbucks without the use of a vpn. So I am looking for other clients that actually work with all the OS systems.

One of the things I’m also trying to figure out is the connection between Asterisk and Jabber. There is a plugin for Wildfire to use Asterisk-IM capabilities. I have the [[Trinity]], the jabber server, connected to [[Link]], the asterisk server, but I cannot get anywhere beyond that. And the documentation on such things is few and far between.

For those that are trying to get your Wildfire Asterisk-IM plugin to connect, you need to create an entry in your /etc/asterisk/manager.conf file for the jabber server’s computer. For example, something like mine:

[trinity]
secret=g00dp455w3rdz
permit=192.168.1.50/255.255.255.0

That puts an entry for “trinity” in there as a manager with a password, and the ip of the computer. Then you can fill out the form on the Wilidfire Webadmin page:

* Enabled: Yes
* Server: <insert your server ip/domain name, either local or remote>
* Port: 5038
* Username: <username in [ ], in my case, trinity>
* Password: <your password for [username], you put for “secret”>

You don’t really need to concern yourself with the rest of the settings, unless you’re trying to do something more advanced. And up to that point, that’s all I’ve got. I’ll post what to do in order to make things work, as a follow-up to this article.

I also started work on the MySpot page a while back. I finally had the revelation about how to code it efficiently to get the best working result for putting a page out there. I intend to run three iterations over it before it’s finished.

First: to get a working page that is modular for it’s features.
Second: to get AJAX features working on it, to do some auto refreshing, and modular loading, as well as same-page authentication for the login script.
Third: to go back and edit out the code that is not needed in the pages.

Motivation to finish it up has been lacking though. Every time I come close to getting started something crashes, or breaks, or comes up that I have to turn my attention to….like finding a job, or fixing my sink, or getting food for the next meal…or even reinstalling Java because a server is being a retard. But I intend to work on it some more tomorrow.

So that’s all for this update.

Technorati Tags: , , , , , , , , , , , , , , , , ,

[[Oracle]] and tsnlocal.net

Posted on by
Reply

I’ve spent the last two weeks working on getting [[Oracle]] into the role she was designed to play…but have found it to be a bit more involved than I realized.

Originally, I set up the server to be a web server with php and sql capabilities. Then I realized I needed to FTP files to the web server, so I installed FileZilla Server. Once that was done, I started working on the webpage for tsnlocal.net. I got it up, and then wanted to play around with some other type of server, and decided on a Jabber server for instant messaging. I installed Wildfire.

Wildfire is extremely easy to setup and install – so once I finished that, I looked for a Jabber client. My first choice was a VoIP client called Jabbin, but I couldn’t get it to connect to the server – probably because I don’t have a VoIP Protocol on the server to support it. So I went with what we use at work, Exodus. It’s a fairly functional Jabber client – with chat rooms, IM rosters, subscriptions, and file transfer…and a bunch of other stuff, including plugins.

Once the Jabber service was set up, and I figured out how to connect to it, I realized that telling people to use my dyndns domain name was not going to work. So I had to figure out how to get my Godaddy.com domain name to link directly to my IP address. But, come to find out, I have to have a Top Level Domain for an IP address, or my dyndns must be a nameserver registered with the NS Registry, in order to use it as a nameserver. I spent 2 days setting up BIND on Windows XP (because there was very little help on the internet for how to do it). Then I jacked around with the Total DNS control settings on godaddy, and got the webserver to work like it should – almost.

So now you can join the jabber server with yourname@jabber.tsnlocal.net. Now that I had that working, I noticed that there were email settings like pop.tsnlocal.net and smtp.tsnlocal.net that could be set up, so I decided to look into running my own email server. I got in #bloodshotgamer on irc.gamesurge.net and asked some of the tecky people I talk to in there what they’d recommend. Duck-Lap recommended qmail for linux, but mentined MailEnable for Windows. I was hoping for an IMAP service so I could run the webpage side of it, but that was not included with this. I might upgrade the service to something new later on, but for now, this was easy to install, and has easy administration, which is what I’m looking for since most of these other services aren’t critical to the function of the server. BIND was about the only thing that was hell to configure…everything else was easily figured out once I had the info and a general grasp of what it does and how it does it.

So now, [[Oracle]] does these things:
- Web Server (Apache, PHP, MySQL)
- FTP Server
- DNS Server
- Email Server
- Jabber Server
- TeamSpeak Voicechat Server
- Hamachi server
- Google Desktop distributed indexing server for the hamachi shares (the essence of tsnlocal)
- and a keep-alive for the dyndns service linking my IP to the dynamic domain

That’s a lot for a little box…but I’m not done yet – I need to put ssh on it so I can telnet into it. I’m sure there are other things that I will find to do with it as time goes on too.

Technorati Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,