Join Sean Colins for an in-depth discussion in this video Setting up a gateway server, part of Mac OS X Server 10.6 Snow Leopard New Features.
We have just finished installing Snow Leopard Server and we've been dropped into the Server Setup Assistant. We are going to set up a gateway server this time and the gateway server is going to be automatically queued in the Server Setup Assistant because we have got two active ethernet ports on this server. It's going to ask us if we want to set up a gateway right here. So we are going to show you how that works and we are going to start right now by clicking Continue. I am going to click the U.S. keyboard and continue and we are going to put in our serial number. There we are.
Because this particular serial number does not have any program name tied to it or any type of serialization where we would need to register it to an organization, we don't need to put Registered to or Organization here. This was a box copy serial number and those don't require this information. We are going to click Continue and the Server Setup Assistant will now validate the serial number. Now when it does this, it goes out over the Local Area Network and checks to see if there are other servers that have this serial number. If you get a validation error here, you might have mistyped your serial number or you may have a conflicting serial number installed on another server on your local network.
So just check that out. Now here it's asking us if we are going to do a transfer of an existing server's information into this new server. We're not doing that in this case. So we are going to click Set up a new server and we are going to click Continue. We're going to click through this registration form just for the purposes of this class. I would encourage you to enter your registration, however, and send it into Apple. But we are going to click Continue and get past this and we are not going to fill out our demographic information either. We are just going to just click Continue and get past it. Now something that is very important is we need to set our time zone.
It's important that our computer know what time zone it's in, so that time information and date information can be correct. So we are going to tell it where we are accurately and click Continue. Next, we are going to put in an administrator account. I'm going to use the name, Server Admin just for simplicity's sake here, but I encourage you to create a unique and creative name for your local administrator. I am going to use a password that I can remember easily here for the purpose of this class, but I also recommend that you use a password of eight characters or more.
Alphanumeric is always a good idea. And a password hint is recommended by Apple. I am not going to put one in here but if you can come up with a password hint that doesn't give away the password, probably a good idea to put something in here to give you an idea of what your password is on this particular server, especially if you are someone that administers a lot of these things. New feature here in Snow Leopard Server, we have the ability to turn on SSH and Apple Remote Desktop for your administrator group right here in the Administrator Account setup. This allows us to get a remote access into this server as soon as we are through with the setup process.
It makes our ability to access this remotely after the server setup process is completed much cleaner. So we are going to go and click Continue and here we are. This is our Internet gateway setup. Now you won't get this screen if you don't have both of those ethernet ports active. The Server Setup Assistant knows what it's doing here. We are going to click the checkbox that says we're going to configure this server as an Internet gateway. So the interface is asking us to dictate here what ethernet port we want to be public and which one we want to be local. Now the public one is going to be the one going upstream towards the Internet and local is going to be the one that faces our private Intranet, all of our client machines.
And that's pretty well explained here in the graphic that they're giving you. The part that is you is the Mac OS X Server setting up here on the corner of this diagram and over here we have the Internet and your DSL or cable modem that gives you your Internet access. And down here, you've got your private network. Now you notice here it's telling us that 192.168.0.1 is going to be the address of the server on this interface. If you use the Internet Gateway Setup Assistant, that's going to be your IP address no matter what you do. It's set up for you automatically as part of this process.
So if you want to set up a different non-routable IP address scheme, I would recommend you not using the Internet Gateway Setup Assistant at this point. You'd probably be better off to just turn this off, continue and set it up all manually. But because this is a new feature here in Snow Leopard Server, we are going to go ahead and use the automated tool and we are going to show you how that works. I am going to click Continue here, and it's going to take us to the Network setup pane, which looks an awful lot like Network Preferences in your Mac. And what we are going to do here is we have told it that our Ethernet is going to be our public and our USB Ethernet going to be our private.
And you can see that it's already configured itself with an IP address, subnet mask, and it's not allowing us to change the information. It wants that to be static. It wants to know what it needs to do there, but it is letting us change this one. And so this is going to be our public address, which we can put in now, and our subnet mask, our router address. This is a public address. All of this information would be the information that you're getting from your Internet Service Provider. If you have one static address, for example, coming into your office or your home, the Internet Service Provider would have provided you with this IP address, subnet mask and router address, and they probably will have also provided you with a list of DNS servers they want you to use.
So go ahead and put those pieces of information in here. All right, I'm going to leave everything else here alone except IPv6, which I am going to turn off. There are few services that are IPv6- aware in Snow Leopard Server, but there aren't too many and IPv6 being off does seem to increase the stability of the system. So I am just turning that off. And now that that's turned off, I'm also going to disable the AirPort. If you have it, I would recommend disabling that interface if it's not going to be used. And we are going to disable FireWire for networking because we're really not going to use it for networking on this server.
One more thing, after the AirPort and FireWire are deactivated, I am going to go back here and make sure that I have got IPv6 turned off on both interfaces. So I am going to go here and check my work and there we are. That one is off, click Continue and here is USB. And that one is still configured for Automatic. So we are going to click off here. Click OK. It's a good idea to check your work on everything before you click to the next screen. I think we are in good shape. We are going to click Continue. We have our DNS and it's passing through and everything is working.
We are getting our name resolution. Now this is really important. If you don't get you DNS Name resolution here, you really might as well not go forward, because you're going to have failures, especially during an automated setup. During the automated setup, it depends on this information to set up your Open Directory environment. Make sure that's there. If it is, we are going to click Continue. If not, go back and start over. Click Continue here and I am going to configure here manually. We could do the Create Users and Groups here in an automated fashion but I'm not going to, because we did it in a previous setup and we haven't looked at configuring this manually.
I really want to do this here. So I am going to click Configure Manually and I will click the Continue button. So here, we are not going to connect to a directory server. We are just going to leave that unchecked because we don't have a directory server on our network yet. We are going to click Continue. But we are going to set up an Open Directory master. In previous versions of the operating system, I would've told you not to do this here. But in this case, we know we have a solid forward and reverse DNS resolution, because of the name resolution from that DNS pane that we had where it showed up with our name. So we know that this is good and in testing, this actually proves to be a pretty good way to set this up.
You get the username and the password is going to be the same as the one you set up for your local administrator. This check box at the bottom of this interface is telling you that you can basically either turn on or turn off the service access control lists for users and groups to services. If you turn this on, it is going to restrict those users' and groups' access. That going to turn on ACLs, and this will not. I am going to leave it off and click Continue. Now because we are setting up a gateway, what we are not going to do is we are not going to enable any of these services.
I am going to leave all of this for configuration later. I will just turn all of these off, and I am going to click Continue. Now I can also click on this Details button here which will give me a complete rundown of everything that I've just configured and it will give me the ability to save a summary of this information out as a text file or to save the setup profile for future use on this server or other servers, if I am setting this up generically. I am not going to save either of those right now. So I am just going to click OK and I am going to click the Set Up button. When we get kicked out of the end of this setup process, we will have a fully functional server.
This takes a while though, so we are not going to run through all of that at this time, but when we come back out of this, we will have a fully configured gateway server.
- Setting up a gateway server Introducing Podcast Composer Building connections with collaboration services Setting up push services for multi-way collaboration Building a wiki and a mobile access server