IBM Traveler and nginx - "mail has not been downloaded"

hcl-bot · November 18, 2015, 12:24pm

Hello,

I am planning to use nginx in front of our Traveler server.

I have installed a test envoirnment most recent nginx+CentOS6 & most recent IBM Domino/Traveler(different machine). Internet & proxy communicating on port 443. Proxy and Traveler on port 80.

The sync of mobile data accessing the Traveler directly works fine.

As soon as I switch on the proxy I can’t open mails with attachments/embedded objects on the mobile devices “mail has not been downloaded” (my translation of the german error message).

Plaintext mails still work.

Do you have an idea what could cause this error ? Or do I need to set a specific mime-type conversion/configuration on the proxy ?

Regards,
Jan

hcl-bot · November 26, 2015, 1:01pm

Subject: Nginx

proxy_pass http://my.host.com/ http://my.host.com/; - remove last slash.

I dont see override settings in nginx configuration.

Do you have this on domino?

Next, 1.0.5 is so old. One more, proxy_redirect off; - set this if you dont want to be proxy for all

My example:

in nginx.conf - client_max_body_size 0;

in vhost:

location / {
proxy_pass http://traveler http://traveler;

Set headers

proxy_set_header Accept-Encoding “”;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

Most PHP, Python, Rails, Java App can use this header

#proxy_set_header X-Forwarded-Proto https;##
#This is better##
proxy_set_header X-Forwarded-Proto $scheme;
add_header Front-End-Https on;

By default we don’t want to redirect it

proxy_redirect off; - Disable proxy for all!
proxy_connect_timeout 120;
proxy_send_timeout 120;
proxy_read_timeout 180;
proxy_set_header “User-Agent” $ua; - This is for outlook
}

P.S. If you want use outlook you need setting some tricks. Of course this is not official support) But some clients want outlook.

hcl-bot · November 19, 2015, 2:37pm

Subject: nginx

can you post your nginx config?
I use nginx as front server without any problem

hcl-bot · November 25, 2015, 5:08am

Subject: config

https.my.host.com.conf

server {
listen 443;
server_name my.host.com;

ssl on;
ssl_certificate my.host.com.crt;
ssl_certificate_key my.host.com.key;
ssl_dhparam /etc/nginx/certs/dhparam.pem;

ssl_session_timeout 5m;

keepalive_timeout 360;

ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_session_cache builtin:1000 shared:SSL:10m;
ssl_ciphers HIGH:!aNULL:!eNULL:!EXPORT:!CAMELLIA:!DES:!MD5:!PSK:!RC4;
ssl_prefer_server_ciphers on;

access_log /var/log/nginx/https.my.host.com.access.log;

location / {

proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;

Fix the It appears that your reverse proxy set up is broken" error.

proxy_pass http://my.host.com/ http://my.host.com/;
proxy_read_timeout 180;

}
}

We are using nginx 1.0.15 running on CentOS6.