Roadmap for Q1 2016

Multi-site means one server hold all users, other server uses the master server for authentication.
For example: a firewall uses the users from mail server to configure profiles for the content filter.

Probably, the multi-site feature will also include Samba 4.


I’m a bit confused now. Assuming having Samba4, all (DC)servers will be able to add/change/delete user accounts… right?

What I am more interested in is to be able to have multiple servers that can have the same module so load for, for instance, fileserver can be taken by multiple servers.

In multi site there’s the PDC, the Primary Domaine Controller and SDC, Secondary(ries) Domaine Controller.

If I’m well remember, all Windows Clients sollicitations to the DC are limited to the subnet…I mean can go through switches, but not go thought route.
I can’t remember if it’s a WINS limitation or a Netbios limitation… :smirk:

What about the multi-office support for mail server configuration? Is it going to be delivered with multi-site?

Good Job guys

We must!

I was just thinking in this feature and I would like to aks few things:

  • what about resilience?
    For exemple, the mailserver fonction is critical, to have the absolute certainty to not loose a mail,
    It’s recommended to have a Primary MX connector and a Secondary MX connector.

How this fonction will work?
On one Nethserver: @siteone with the Primary MX connector and @sitetwo the secondary Mx Connector.
On a second Nethserver @siteone with the secondary MX connector and @sitetwo with the primary site connector.
Like this, one Nethserver is the MX connector backup of the second Netserver.

It’s a way to make a good mailserver system with resilience.

I prefer to have a single MX with two uplinks.
Nowadays, email are treated as instant messages (but they’re not) and if a single mx is down and a sender receives a delayed delivery notifications is better than make him think that the email as been delivered to a secondary mx where it can’t be read.
The burden of not loosing emails is on the sender.

The primary function of multi-site is to share a list of user for different services on different servers.


I agree on this. The main aim should be on spreading the load so you can have multiple instances to host users. In larger environments and/or mutli sites (with WAN connections) this feature is absolutely a must.

You are thinking to duplicate the link but not the server! :cold_sweat:

The email is not a trivial fonctiom, it’s steel important.
For me, it’s the way I make the facturation for client.
It the way my enterprise comunicate with advogates, with administrations, to send bills…
It 's for work.

For home, the MX backup is the main dificulty to self-host the email…when the server is down for few days when the owner is in hollidays.

Think in countries where there’s lot of electrical failures, lot of electrical outages, and where it’s better to have already a backup server ready to work in bad event…

It’s crazy to me to think to backup the link and not backup ( phisicaly ) the server.

Edit: I was an admin of a company wich have two sites with 1 km of distance.
It was in the strategy to take advantage of the multi-site to backup one site on the over in case of disaster ( main fire disaster ).
For these reasons, I made proposal about OSPF, infrastucture resilience, MX backup, and so on

MX backup is nowadays almost useless or deprecated, see Filippo’s comment…

I self host my emails since epoch, just like my customers… I had a small office (2 pcs) with a virtual machine in one of them… MX record pointed to that VM… in 5 years, email service was down maibe for… 10 hours…

MX backup is not a solution, it’s likely part of the problem

so, you don’t need a mx backup but a cluster or an HA solution… in any case, good hw, a good UPS, ands a rock solid backup strategy is what you really need, nothing more, nothing less

We must know better our members, and what they use.
The Roadmap for Q1 2016 is Nethserver7 and Samba4.

Samba4 for AD directory. It’s good, I think an enterprise need this feature. But what kind of Enterprise?
For me, such feature is for a medium or big enterprise, not for a small enterprise.
And for an entreprise already equiped with Windows station.

What for small enterprise, which don’t need AD? What for MAc users ( Apple is the best computer seller in the world ? And What for others *nix users ( lot of small enterprise, small activities, use Linux on a small number of station.

I subscribed this past week on a mailinglist about Self-Hosting, I talk a lot about Nethserver because I think NS can do perfectly the job.

We must take advantages with the NS modularity to discover what type of application NS is already acting, and what NS could act ( I thinking about NS at school ), about Ns in a small shop ( any kind of shop… Photography, Bakery…who know :grinning:)
And of course NethServer at home, self-hosting, simply a firewall/gateway, and so on…

Where Nethserver could interact with an Linux ecosystem, an IOS ecosystem and an Android ecosystem.

Not only Enterprises need AD. Schools also need a platform independent user management solution. And AD (through Samba4) is a decent option for this. And the more user accounts, the more you need it. I would start using this from 15 users and more, or something like that.

Samba4 is perfectly capable to add any (linux, windows and OSX) platform. Have a look at the implementation at Karoshi Linux ( Through a bash script Samba gets pre provisioned. For a school this is a very nice feature but also can be left out. Maybe NS can copy some of the provisioning scripts from Karoshi Linux.

Sure, I agree Samba and AD could deal with Mac Os and Linux.
But for a Small business (i smaller than 10 computers ) is it worth to implement It.

Or the “traditional” way is simpler and better?

If the implementation is like 1 mouseclick away, then it should not be a problem. It can have a lot of advantages even in small environments.

In Samba4 and Windows AD there is no primairy domain controller. All DC’s can add and change useraccounts. With the old (WinNT and Samba3) accounting system, accounts can only added and changed on the PDC.

But it’s one solution between other. It can be a stategy.

It’s another possibility…

nobody has THE solution… Each enterprise, each activity has it’s own need and it’s own solution.
Don’t restrict the way to use, offer a backup link, it’s only ONE way to do… There others ways, others possibility to offer :wink:

Jim: MX is a DNS record, usally managed by your ISP, so NS is not involved…

now, is it clear that talking about MX backup is quite useless?
then, almost all mail servers (mta) are able to store in the queue mails that can’t be delivered because of issues on recipient’s side… that said, you’re just looking for complications :wink:

1 Like

Most registrars offer a backup MX solution out of the box. It stores mail when your own mailserver is down. There for the backup MX has a lower priority to handle delivery of new mail and will all mail always be delivered at your mailserver and not the backup MX of the registrar.