Hi Tom,

I'm not familiar with Netscaler, but I run my Mailman 3 behind a reverse proxy (Apache Traffic Server, which somehow I ended up as a package maintainer for also). I assume that Netscaler can operate in a transparent reverse proxy mode (e.g. including Host headers to the origin server), which is what I would recommend for best results.

I also did a migration from Mailman 2 about a year ago, and may have notes on managing that migration. But the first step for you is to have a fully functional Mailman 3 install. Since this supports multiple domains *far* better than 2 did, a good place to start may be to do an install under an entirely separate test domain until you are comfortable with the software, and then add your primary domain and migrate lists. This has the least opportunity for disruption.

If you have many, many lists, I recommend having your inbound MX be able to select transport between the old and new servers on a per-list basis so you can migrate one at a time. (This is easily done with Postfix and I'm sure other MTAs as well.) The web interface will have to point at one or the other through the process, unfortunately, but at least the SMTP interfaces will continue to operate as normal.

Some starting questions I have are what OS you are running, and by what mechanism have you installed Mailman 3?

I found the documentation to be generally very helpful, and ended up containerizing things to make tweaking things repeatable. I admit that the whole process took a good 2-3 days to complete.

Regards, --Jered

----- On Nov 28, 2023, at 6:27 PM, Lieuallen, Thomas Otis Tom.Lieuallen@oregonstate.edu wrote:

I’m obviously new to MM3, so overwhelmed by all the various pieces.

In rereading some documentation and playing with the admin interface, I see that one can specify a web host. I made that change, but it didn’t seem to make any difference.

I’m very tempted to scrap my installation and start over again.

I had also removed the example.com site, which I thought I saw in passing one shouldn’t do.

If I start over, I should be able to have hostname, email domain, and web site all be distinct?

Thank you

Tom Lieuallen

From: Lieuallen, Thomas Otis <Tom.Lieuallen@oregonstate.edu> Date: Tuesday, November 28, 2023 at 13:14 To: mailman-users@mailman3.org <mailman-users@mailman3.org> Subject: [MM3-users] Putting mailman3 server behind a netscaler (I sent this a week ago, but apparently it got lost, trying to resend.)

We’ve been using MM2 for eons and are working on a migration to MM3. So, bear with me as I’m still coming up to speed. I’m running MM 3.3.8 and Postorious 1.3.8.

Our mailing lists include members within our organization as well as a number outside. We don’t want to expose our MM3 server directly to the open internet, so wish to hide the web portion behind our netscaler and our regular pool of web servers. Those web servers will proxy MM3 web pages on over to our MM3 machine to handle. This seems to work. Email will meander in via MX and mail relay servers.

I found and followed directions in this email regarding changing URL paths: https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.mailman3.org%2Farchives%2Flist%2Fmailman-users%40mailman3.org%2Fthread%2FVGXKEAP3YBHNKDRQM76UVD7IRXSLWDDK%2F%23P46QFKN6MPDXKVEZPV7YEMSX3AMAIN7N&data=05%7C01%7CTom.Lieuallen%40oregonstate.edu%7C419eccaacc0f47d3577608dbf056f0e5%7Cce6d05e13c5e4d6287a84c4a2713c113%7C0%7C0%7C638368028422141126%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=XsCvjVUxHojAxBbgz2UWCm4ftBzIlVIUpChCgRAkqMs%3D&reserved=0<https://lists.mailman3.org/archives/list/mailman-users@mailman3.org/thread/VGXKEAP3YBHNKDRQM76UVD7IRXSLWDDK/#P46QFKN6MPDXKVEZPV7YEMSX3AMAIN7N>

So, say our MM3 server is: mm3.fqdn I am trying to publish and use urls like https://nam04.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.fqdn%2Fmailman3-admin&data=05%7C01%7CTom.Lieuallen%40oregonstate.edu%7C419eccaacc0f47d3577608dbf056f0e5%7Cce6d05e13c5e4d6287a84c4a2713c113%7C0%7C0%7C638368028422149033%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=p90NbxFtX8Rsh7T%2BiGM%2FQSfFGd65fz7wsegp83xOIR8%3D&reserved=0<https://nam04.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.fqdn%2Fmailman3-admin&data=05%7C01%7CTom.Lieuallen%40oregonstate.edu%7C419eccaacc0f47d3577608dbf056f0e5%7Cce6d05e13c5e4d6287a84c4a2713c113%7C0%7C0%7C638368028422156458%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=zHQ%2B8XKru%2BZwiTGcQT%2FW07xWfNNq8NcIYfYfnF6gbe0%3D&reserved=0><http://www.fqdn/mailman3-admin>, https://nam04.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.fqdn%2Fmailman3%2Flists&data=05%7C01%7CTom.Lieuallen%40oregonstate.edu%7C419eccaacc0f47d3577608dbf056f0e5%7Cce6d05e13c5e4d6287a84c4a2713c113%7C0%7C0%7C638368028422161585%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=nj8IbmRIGHtggzwi2lEerSA2V9EV2rNFdQGmE1ibigo%3D&reserved=0<https://nam04.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.fqdn%2Fmailman3%2Flists&data=05%7C01%7CTom.Lieuallen%40oregonstate.edu%7C419eccaacc0f47d3577608dbf056f0e5%7Cce6d05e13c5e4d6287a84c4a2713c113%7C0%7C0%7C638368028422165468%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=ZcILmSfXEVXd0Ai%2FF%2F8pGg%2FN%2BuBeRGEAnUKL5NYf4as%3D&reserved=0><http://www.fqdn/mailman3/lists>. Again, that works for me.

However, MM3 still has its concept of what URLs should be. I hoped I could fix that by way of templates, but I’m not sure there’s a template for everything. I added some templates, but have not replaced all. I was wondering and hoping that some central change could fix any default templates en-mass.

Most recently, I changed the mailman admin email yesterday and the confirmation email directed me to mm3.fqdn/…/confirm-email/…. I looked at the stock templates and nothing there had that wording.

I just looked at postorious docs and nothing jumps out at me there.

1. Have I gone down a bad rabbit hole?
2. Is there a way to change the advertised web server address?
3. Should I just continue rolling out my own templates and hope and assume that will take care of this issue?

Thank you

Tom Lieuallen Oregon State University

---

Mailman-users mailing list -- mailman-users@mailman3.org To unsubscribe send an email to mailman-users-leave@mailman3.org https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.mailman3.org%2Fmailman3%2Flists%2Fmailman-users.mailman3.org%2F&data=05%7C01%7CTom.Lieuallen%40oregonstate.edu%7C419eccaacc0f47d3577608dbf056f0e5%7Cce6d05e13c5e4d6287a84c4a2713c113%7C0%7C0%7C638368028422169321%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=cdaZzV15ATylQYof%2FP0SRMc8lGK3fhXJeIPMzgdK58U%3D&reserved=0<https://lists.mailman3.org/mailman3/lists/mailman-users.mailman3.org/> Archived at: https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.mailman3.org%2Farchives%2Flist%2Fmailman-users%40mailman3.org%2Fmessage%2F7CK465BFVCNXXXBKH4KBXA2W4FCXQTM7%2F&data=05%7C01%7CTom.Lieuallen%40oregonstate.edu%7C419eccaacc0f47d3577608dbf056f0e5%7Cce6d05e13c5e4d6287a84c4a2713c113%7C0%7C0%7C638368028422173314%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=fytBAcu1Kkxko0DQ%2FCNG%2ByrkFphbJCTBX7uGv6gX5pY%3D&reserved=0<https://lists.mailman3.org/archives/list/mailman-users@mailman3.org/message/7CK465BFVCNXXXBKH4KBXA2W4FCXQTM7/>

This message sent to lieualth@oregonstate.edu

---

Mailman-users mailing list -- mailman-users@mailman3.org To unsubscribe send an email to mailman-users-leave@mailman3.org https://lists.mailman3.org/mailman3/lists/mailman-users.mailman3.org/ Archived at: https://lists.mailman3.org/archives/list/mailman-users@mailman3.org/message/...

This message sent to jered@convivian.com