HopeCollege
Level 1 (0 points)

Q: How can I use Apple Caching Service on a Network with Multiple Public IPs?

Hello!

 

I help manage a network of ~4000 clients for a small liberal arts college in Michigan. I'm looking into the possibility of implimenting Apple Caching Server for our network.

 

We have one 400mbit pipe out to the internet, and all of our clients are given public-facing IPs to the internet. A caching server would be great, especially on update days. All wireless clients are on the same subnet, which is where I'd like the server to be serving the cached copies.

 

I have installed Mavericks on a fresh machine, downloaded OS X Server 3.0.3, and attempted to start the caching service. This is what I get.

 

Screen Shot 2014-02-04 at 3.14.55 PM.png

 

Unable to start service.

Caching cannot be run on a public network. Consult documentation.

 

How can I get this up and running?

iMac, OS X Server

Posted on Feb 4, 2014 12:45 PM

Close
HopeCollege

Q: How can I use Apple Caching Service on a Network with Multiple Public IPs?

  • All replies
  • Helpful answers

Previous Page 2

  • by John Lockwood,

    John Lockwood John Lockwood Jul 24, 2014 3:50 AM in response to sguox
    Level 6 (9,309 points)
    Servers Enterprise
    Jul 24, 2014 3:50 AM in response to sguox

    As long as all the networks and the caching server are all using the same Internet link, even if they are on different networks you will be fine. If the clients use a different Internet link to the caching server then they will not match.

     

    To test they are using the same Internet link you need to check they all use the same single public IP address i.e. the Internet router address. To do this go to the following webpage on various clients and the caching server. If they are reporting the same IP address it should work.

     

    http://www.whatsmyip.org

     

    With regards to Apple's IP address, they have multiple servers in groups and therefore there is no single IP address, Apple have the entire 17.x.x.x block and any firewall rules have to allow access to that entire block if you want to be able to reach Apple servers. A single host name used by Apple might and usually does point to an entire group of Apple servers and therefore lots of different IP addresses all in the 17.x.x.x block. The subnet mask for that block would be 255.0.0.0

  • by Leopardus,

    Leopardus Leopardus May 5, 2016 7:55 PM in response to HopeCollege
    Level 4 (1,122 points)
    Desktops
    May 5, 2016 7:55 PM in response to HopeCollege

    HopeCollege wrote:

     

    No such luck! I added:

     

    <key>ListenRanges</key>

       <array>

         <dict>

           <key>type</key>

           <string>IPv4</string>

           <key>first</key>

           <string>XXX.XXX.XXX.XXX</string>

           <key>last</key>

           <string>XXX.XXX.XXX.XXX</string>

         </dict>

       </array>

       <key>ListenRangesOnly</key>

       <true/>

     

    with our whole IP Min and Max. No dice, same "can't be run on public network" message. It's not a public network, Apple!

    Caching service can now be run on a public network, as you probably will find out. The restrictions to be behind a NAT have been relaxed. You should now be able to change the Config.plist to suit your requirement.

     

    Leo

Previous Page 2