Hopefully someone can help with this, I have Scrollout (latest version) sitting in front of a few mailservers running fine. I configured it to protect a remote SBS2011 box which worked fine in a quick test.
I wanted LDAP lookup which I configured fine on the default port 389, I then PAT this on the SonicWALL to 30389 and LDAP lookups continued to work fine, even tied to only one allowable IP address.
The last phase of the setup was then to use LDAPS, as the server is a .local domain, I was never going to get a commercial cert, and the split DNS trick wont work for LDAPS. So i exported the inetrnal .local cert, and imported to Scrollout Box. I then added a HOST entry on the Scrollout box 84.43.xxx.xxx server.domain.local.
At this point it refused to connect giving a -1 error, althouth LDAPs-UTILS would connect SSL to it fine from the scrollout box.
I finally looked in /etc/postfix/ldaps and edited the .cf file for the domain in question the first three lines look like this :-
everything then works perfectly, however when I apply any changes in the GUI to that or any other domain, it reformats it to server_host = ldaps://server.domain.local and I have to re-edit again to get it working.
Is this a bug in Scrollout F1 or am I missing something here?
Thanks
Matt
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
View and moderate all "Get Help" comments posted by this user
Mark all as spam, and block user from posting to "Discussion"
Hi
Hopefully someone can help with this, I have Scrollout (latest version) sitting in front of a few mailservers running fine. I configured it to protect a remote SBS2011 box which worked fine in a quick test.
I wanted LDAP lookup which I configured fine on the default port 389, I then PAT this on the SonicWALL to 30389 and LDAP lookups continued to work fine, even tied to only one allowable IP address.
The last phase of the setup was then to use LDAPS, as the server is a .local domain, I was never going to get a commercial cert, and the split DNS trick wont work for LDAPS. So i exported the inetrnal .local cert, and imported to Scrollout Box. I then added a HOST entry on the Scrollout box 84.43.xxx.xxx server.domain.local.
At this point it refused to connect giving a -1 error, althouth LDAPs-UTILS would connect SSL to it fine from the scrollout box.
I finally looked in /etc/postfix/ldaps and edited the .cf file for the domain in question the first three lines look like this :-
domain = domain.com
server_host = ldaps://server.domain.local
server_port = 30389
if I edit line two to look like this :-
server_host = ldaps://server.domain.local:30389
everything then works perfectly, however when I apply any changes in the GUI to that or any other domain, it reformats it to server_host = ldaps://server.domain.local and I have to re-edit again to get it working.
Is this a bug in Scrollout F1 or am I missing something here?
Thanks
Matt
In console -> chattr +i conf file.