Zimbra Ku

Zimbra Administration
By
Siwat Siwarborvorn
X-Sidekick Co.,Ltd.
(siwat@xsidekick.com)
Copyright (c) 2012 X-Sidekick Co.,Ltd. 1

Topics
● Introduction – COS
● Installation – Domain
– Server Settings
● Process Control
– Zimlets
● Administration – Monitoring
– Account ● Zimbra log
– Alias
● Misc topics
– Distribution List
– Resource
Introduction to Zimbra

What is Zimbra ?
● VMWare Zimbra Colloboration Server (ZCS)

– Web Mail
– Mail Server
● Support standard mail clients
– Address book
– Calendar
– Task
● Zimbra Desktop (Another Product)

Zimbra History
● Initially, is Yahoo product

● Bought by VMware

Zimbra Versions
● ZCS Open Source Edition

● ZCS Network Edition
– Not free
● Pay per account basis
– More features, such as
● Cluster
● Hierarchical storage management
● Delegated Administration

Features
● Web base
– Mail client
– Server Admin Console
● External Accounts
– Pop3/Imap client
● SMTP/Pop3(s)/Imap(s) Server
● Spam/Virus scan software include

Components (1)
● Jetty (web server)
● PostFix (MTA)
● OpenLdap
● MySql
● Virus scan/ spam filter
– SpamAssassin
– ClamAV
– Amavisd (interface MTA ↔ Spam/virus scan)
Components (2)
● Lucene (Full text search engine)

● James/Sieve filtering (mail filter)

Installation Requirements
● Running on Linux
● DNS ready
● All components packed to Zimbra package
– No need to install separately
– If already installed, remove or turn off

Server Requirement
● CPU 32/64Bit CPU 2GHZ (ZCS v6)

– Now, only 64 bit version
● 2GB RAM (Recommend 4GB)
● 10Gb Disk
– Software & log
– mail store space not include
● Raid 5 not recommend if > 100 users

Linux Requirement
● OS (Server Version)
– Redhat / Fedora / CentOS
– SUSE
– Ubuntu
– Max Os X
● ZCS 7.2 has only 64bit for latest OS

Linux (Hidden) Requirement
● Need “file” command

– A linux utility
● As of zimbra 7.2
– Not complain if missing
– Install successfully
– Cannot deliver mail
● Install “file” command
– yum install file
Error if no “file”
● /var/log/zimbra.log
– Will show the line as example below
Aug 28 08:22:20 sampledomain postfix/smtp[23917]: 78DF362ACC:
to=<siwat@sampledomain.com>, orig_to=<all@sampledomain.com>,
relay=127.0.0.1[127.0.0.1]:10024, delay=429, delays=423/0.11/4.3/2.5,
dsn=4.5.0, status=deferred (host 127.0.0.1[127.0.0.1] said: 451 4.5.0 Error in
processing, id=02469-01, parts_decode_ext FAILED: Unix utility file(1) not
available, but is needed at (eval 102) line 110. (in reply to end of DATA
command))

Checking “file” command
● Use “which file” command

[root@zimbra-class log]# which file
/usr/bin/file
● If no file command
[root@zimbra-class log]# which file
/usr/bin/which: no file in
(/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin:/root/bin)

Zimbra Installation

Installation Prerequisite
● Disable/Remove duplicate packages
● Disable SElinux
● Setup
– /etc/hosts
– /etc/resolv.conf
● Setup DNS
● Install require packages
● Setup /Disable iptables
Disable/Remove packages
● Disable / remove this packages

– Sendmail
– Postfix
– Mysql
– Web server (Apache/httpd, ...)
– OpenLDAP
● Disable Autostart (Redhat family)
chkconfig package_name off
Disable SELinux
● Edit /etc/selinux.conf/config
– Need to be root
– Change line
SELINUX=disabled
● Then... reboot

Setup hostname
● Edit /etc/sysconfig/network
● Edit Line
HOSTNAME=your_hostname

Setup /etc/hosts
● Edit
127.0.0.1 localhost.localdomain localhost

your_server_ip_address your_domain your_hostname
your_FQDN
● FQDN = Fully qualify domain name

– your_hostname.your_domain.com
● use '#' as comment in /etc/hosts

Example of /etc/host
# cat /etc/hosts
127.0.0.1 localhost localhost.localdomain
192.168.52.2 sampledomain.com zimbra-class.sampledomain.com
zimbra-class

/etc/resolv.conf
● Add / Modify line
nameserver your_name_server_ip
● Use “;” as comment

Setting Name Server
● These host names point to your IP address
– your_hostname.your_domain.com
– your_domain.com
● MX record point to you hostname

– What is mail server of your_domain.com
● External name server is OK

Checking Name Server
● Use 'dig' or 'nslookup' command

● Install 'bind-utils' package (Redhat family)
● Run
dig your_domain.com mx
● Output
– Look at lines not begining with “;;”

Checking NS Example
[zimbra@zimbra-class ~]$ dig sampledomain.com mx
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6_3.2 <<>> sampledomain.com mx
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 34084
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 1, ADDITIONAL: 2
;; QUESTION SECTION:
;sampledomain.com. IN MX
;; ANSWER SECTION:
sampledomain.com. 604800 IN MX 5 sampledomain.com.
sampledomain.com. 604800 IN MX 10 sampledomain.com.

Require packages
● Prerequisite packages
– NPTL
– sudo
– libidn
– gmp
– /usr/lib/libstdc++.so.6
– Sysstat
– perl
– sqlite
Install Require Packages
● Use yum to install

– Auto install require packages

Setup IPtables
● Iptables = Linux firewall

● Disable (not recommend)
# chkconfig iptables off

# service iptables stop

Setup Iptables (2)
● Require TCP/IP ports to open
– 80 web
– 7071 Zimbra admin console
– 25 smtp
● Optional
– 110 pop3
– 995 pop3s
– 143 imap
– 993 imaps
Setup Iptables (3)
● Edit /etc/sysconfig/iptables
– Add lines to allow other hosts to connect
– Format (as of CentOS5/6)
-A INPUT -m state --state NEW -m tcp -p tcp --dport port_no -j ACCEPT
– Append to others “-A INPUT -m state” lines
● Before “-A INPUT -j reject” line

Setup Iptables (3)
● Restart iptables
# service iptables restart
● Check iptables
# iptables -L -n -v
- or -
# service iptables status

Installation
● Download
– ZCS open source version
– http://www.zimbra.com/downloads/os-downloads.htm
– Select file to match your Linux distribution
– For CentOS, download Redhat version
● Extrace file
# tar -xvf zcs_install_package_name.tgz
– Directory as install package name will be create

Installation (2)
● Continue installing with commands

# cd install_package_name
# ./install.sh --platform-override
● Need “--platform-override” for CentOS

Installation (3)
● Mostly , accept all default , except
...
Do you agree with the terms of the software license agreement? [N] y
...
Using packages for a platform in which they were not designed for
may result in an installation that is NOT usable. Your support
options may be limited if you choose to continue.
Install anyway? [N] y
The system will be modified. Continue? [N] y

Installation (4)
● If everything is OK, Install script will show menu

– Set admin password
– From main menu,
● select 3 then 4,
● Enter admin password
● Press r , return to main menu

Installation (5)
After return to main menu
*** CONFIGURATION COMPLETE - press 'a' to apply

Select from menu, or press 'a' to apply config (? - help) a
Save configuration data to a file? [Yes] <enter>
Save config in file: [/opt/zimbra/config.21170] <enter>
Saving config in /opt/zimbra/config.21170...done.
The system will be modified - continue? [No] yes
Operations logged to /tmp/zmsetup.08232012-082018.log

Installation (end)
● This message will show if installation succeeds.

Configuration complete - press return to exit
● Otherwise, the error will show
● Need to google to find the way to fix

Example Error message
Initializing ldap...failed. (28160)
ERROR
Configuration failed
Please address the error and re-run /opt/zimbra/libexec/zmsetup.pl to

complete the configuration.
Errors have been logged to /tmp/zmsetup.08232012-075430.log

Installation Notes
● CentOS < 6.2
– libstdc++.so.6 not found, although exists
– Fix by
# ln -s /usr/lib64/libstdc++.so.6 /usr/lib/libstdc++.so.6
● Sysstat requires sendmail
– Automatic enable (auto start)
– As root , run
# chkconfig sendmail off
# service sendmail stop
Installation Results
● Install rpm packages
– zimbra-ldap – zimbra-mta
– zimbra-store – zimbra-spell
– zimbra-core – zimbra-logger
– Zimbra-snmp – zimbra-apache
● zimbra user
– crontab
● Install and activate startup script
(/etc/init.d/zimbra)
Installation Directory
● /opt/zimbra
– Execute file
● /opt/zimbra/bin
– Components (eg, openldap, postfix, mysql …)
– Config file
● /opt/zimbra/conf
– Log directory
● /opt/zimbra/log

Uninstall
● Use the same install script

# cd your_install_package
# ./install.sh -u

Introduction to

Zimbra Admin
● Two ways
– Web Admin Console
● Routinely admin task
● Setup
– Zimbra Command line
● Special setup
● Not frequently

Zimbra Web Admin
● Using web browser
● URL
– https://zimbra_FQDN:7071 or
– https://ip_address:7071
● Or login zimbra web client
– Admin user will see admin link
● On top right
● Redirect to admin page
– If your user has admin right.

Admin User
st
●
1 user
● Password get assigned during installation
● Any user can get admin right
– Access web admin console
● Manage all domains
– OSS version,no aggregate admin

Command Line Admin
● Super set of Web console admin

● Login Linux as root, switch user to zimbra
● Note for zimbra user
– Cannot login
– No password
– Execute all zimbra commands

Zimbra Process Control

Process Control
● Linux (Redhat family) command

● Zimbra command

Linux Command
Redhat/CentOS start script
● Login as root
● Issue command
# service zimbra command
– Command
● start , stop , restart, reload
● Basically, calling /etc/init.d/zimbra script
● CentOS starts/stops zimbra automatically this
way.
Zimbra Command
Call zmcontrol script

● Login as root , switch user to zimbra
– Running all zimbra commands
● Format
zmcontrol [-h][-v] command

Zmcontrol command
● Doing on all service + manager

– startup / start
– shutdown
– restart
– Status
● All service , except manager
– stop

Zimbra Web Client

Web Client
Two Types
● Advanced web client
– Default
– AJAX
– New browser / fast internet connection
● HTML web client
– HTML
– Low resource consume.

Features
● Email
● Address Book
● Calendar
● Task
● Document
● Briefcase
Note : Admin users can disable some features on each user.

Functions
● Two basic
– Searching
– Sharing
● On zimbra objects

Zimbra User Screen

Email
● Basic email function
– Send/receive/forward/reply
– Attach Files
– HTML/text format
– Read Receipt (Return Receipt)
– Special folder
● Trash
● Junk → spam training

Junk Mailbox
● Move a mail to junk

– Tell zimbra this mail is spam
– Anti-Spam will learn this mail is spam.
● Move a mail out of junk
– Anti-Spam will learn this is not spam.

Read Receipt
● = Return Receipt
● Sending an email with Read Receipt
– Ask receiver to notify back if read
– Receiver may not follow
● Receive an email with Return Receipt
– Options in Preference
● Ignore
● Ask if notify back
● Auto sending read receipt back

Send Read Receipt Email
● New Email
● Options button
– Check “Request Read Receipt”
● Not enable forever

Advanced Email
● Advance
– User created folder
– Tag Emails
– External Account
– Email Filter

Address Book
● Keep contacts
● Multiple Address Books support
– Personal
– Share Contacts
● Company wide
● Department wide
● GAL = Global Address List

Calendar
● Multiple Calendar
● Share to others
● Add appointments on a calendar
● Views
– Day, week, month , ...

Document
● WYSIWYG editor
● Group documents to notebook
● Versioning

Briefcase
● Store
– Upload files
– Zimbra document (beta)
● Spreadsheet
● Presentation

Preference
● User setting
● To access specific setting on preference
– Need to select feature on left pane

Import/Export
● Personal Backup & Restore

– To/from files on local desktop
● Preference tab
→ import/export (right pane)

Share
● User can share their objects to others

● Sharable
– Email folder
– Calendar
– Task
– Briefcase folder

Shared Features
● Share Type
– Public share
– External Guest
– Public (no password)
● Email or DS to share
● Role (Right)
– None
– View
– Manager
– Admin Copyright (c) 2012 X-Sidekick Co.,Ltd. 71
Set Share Object
● Select an application tab

● Right click on the object
– Email folder
– Address book
– Calendar
– Task
● Select shared … (menu)
● Edit shared properties

Admin Console Screen

Admin Console
● Navigation Pane
– Left Pane
– Groups and Items to admin
– Click an item, a new tab get opened
● Four groups of administration
– Addresses
– Configuration
– Monitoring
– Tools
Account Management

Account Management
● Add/ delete / set status of end user accounts

● Password Management
● Set class of service (COS)
● Email aliases

Add An Email Account
● Navigation Pane
– → Addresses
– → Accounts
● Tab will change to “Manage Accounts”
● Select “New” button
– New account wizard
– An attribute group per page
– Editable later
Account Attribute Group
● General information ● Free/Busy Interop

● Contact information ● Themes
● Member of ● Zimlets
● Features ● Advanced
● Preference
● Alias
● Forwarding
General Information (tab)
● Account Name
– Hide in GAL (check box)
● Account Setup
– Status
– Class of Service
– Global Administrator
● Password
– Must change password (check box)
Account Status
● Active
● Closed
– disable login, mail bounce
– Set temporary before deleting account
● Locked
– disable login

Account Status (2)
● Pending
– disable login, mail bounce, not finish setup
● Maintenance
– disable login, mail queue at MTA

Member of (tab)
● Member of Distribution Lists

● Two types
– Direct
– Indirect
● Example : indirect member of distribution list A
– Direct member of distribution list B
– Distribution list B is a member of
distribution list A
Features (tab)
Disable/Enable Features
● Major Features
– Disable/Enable access to Zimbra client
components (tabs)
– Ex. Calendar, Task, Preference
● Other features
– General,Mail, Calendar,Search

Preference (tab)
● General options
● Mail options
– Receiving mail
● Polling interval
● Mail arrive action
– Sound, flash, etc, email notify,
– Auto reply
– Read receipt
– Sending mail
– Composing mail
● Calendar options
Aliases (tab)
● Alias is
– An email address
– No mailbox or account
– Forward to another email address
● User can add his/her aliases

Forwarding (tab)
● Allow user to forward his/her emails to other

address(es)
● Basically , temporary forward
– Otherwise use alias instead.

Themes
● Web client themes

● Setup a theme for user
● Limit themes user can change to
– From COS
– Individual Settings

Zimlets (tab)
● Zimlets = Zimbra web client add-on

● Limit zimlets user can use
– Individual setting
– From COS

Advanced (tab)
● Attachment Settings
● Quota
● Data Source
– Polling for each components
● Password
– Password Policy
● Failed Login Policy
● Timeout Policy
● Email RetentionCopyright
Policy (c) 2012 X-Sidekick Co.,Ltd. 90
Edit Account
● Bottons under Email name tab
● Special bottons
– View Mails
● Go to user login screen
● Open a new web browser tab
– Reindex Mailbox

Mailbox Reindexing
● Mails and attachments get indexed

– Each mailbox has an index file
● Help searching
● Reindex to
– Recreate index
– Fix corrupt index

Knowing Corrupt Index
● No way users know

● Searching on corrupt index may found
● Admin look at message in
/opt/zimbra/log/mailbox.log

Aliases

Aliases Address
● An email address
● No account exists
● Redirect to A single address

Manage Aliases
● From individual Account view

● From Aliases view
– Left pane
● Addresses
● Aliases

Distribution Lists

Distribution Lists
● One to many alias address

● Forward to
– Many addresses
– Other distribution lists
● Managed by admin user only
● Nested distribution lists support

Example
● sales@mycompany.com
– Forward to all email addresses of sales
● support@mycompany.com
– Forward to all email addresses of support staff
● all_team@mycompany.com
– Forward to sales@mycompany,
support@mycompaney, ...

Limitation
● 1000 recipients per a distribution list

– Include recipients in nested
● If > 1000 recipients, no error
– On Create
– Sending email to distribution
● Only 1000 recipients will receive email.

Manage
● Admin can setup a user to

– View distribution list members (recipients)
– Send Messages to a specific DS

Distribution List Console
● Left pane
– Addresses
– → Distribution Lists

Resources

Resources
● A type of accounts
– Can login
● Types
– Meeting rooms
– Shared equipments
● Projectors, Video Recorders, ...
● We can use Zimbra to help reserving these
stuffs

Class of Service (COS)

Class of Service
● Class of Service = COS

● Create default group attributes
– Assign to many users
– Same initial config
– No need to specify each attribute for each users
● Change a COS Attribute
– effect on all users of the COS

Class of Service
● Default COS
– Auto create on zimbra install
– Customizable
● Overridden by
– Global settings
– User settings
● Delete a COS
– User use that COS , set to use default COS

Manage COS
● Configuration (pane)
– → Class of Service
● COS tab is opened
– New / Duplicate / Delete / Edit COS
● COS attribute groups (tab)
– similar to user attribute groups

Manage Domains

Domains
● Your domain name
– Ex. your_company.com
● Each domain
– Domain attributes
– User attributes in the domain
● Override Global settings

Manage Domains
● Manage from
– → Configuration
– → Domains
● What we can do
– Add , edit , delete domains
– View accounts (of this domain)
– Add a domain alias
– Config GAL

Manage Domain (2)
● What we can do (continue)

– Config Authentication
● Internal (default)
● External LDAP
● External AD
– Check MX record
● Need to select domain on some functions
– Otherwise buttons will be gray

GAL
● GAL = Global address list
– Global address book
– All accounts + distribution lists are added
● Need more than that
● Config Gal
– Configuration → domains → select domain
– → Configure GAL (button)
– → Open config GAL wizard
● 3 modes , Internal / External / Both
GAL sync account
● GAL sync account

– An account , only for keeping GAL
– Auto create after GAL config wizard
● Data Source name

GAL source
● Internal
● External
– Sync to GAL sync account
– Multiple External Source support
– Sync from
● External LDAP
– Need to specify ldap filter
● Active Directory (AD) server

Domains – General Tab
● Time Zone
● Inbound SMTP hostname
– Hostname MX record point to
– Ex. Virus/spam relay host
● Default COS

Domains - General Tab (2)
● Domain status
– Active
– Closed (no login, not receive emails)
– Locked (no login, still receive emails)
– Maintenance (no login, mail queued on MTA)
– Suspended (as Maintenance, no account
/distribution list get created /modify)
– Shutdown

Domains - Virtual Hosts (tab)
● Set zimbra to auto recognize domain
– by hostname in web client URL
– In case of multiple domain config's
● Hostname is FQDN
● Config DNS to have an A record
● User login as http://hostname

Free/Busy Interops
● Zimbra calendar
– Zimbra queries Exchange
– Zimbre propergates to Exchange

Other Domain Setup
● Buttons under Domains tab

– View accounts
– Configure GAL
– Configure Authentication
● Internal (DEFAULT)
● External LDAP
● External AD
– Check MX record

Domain Alias
● Accept domain without real domain exist

– Email forward to real domain
● Button under Domain (tab)
– Select Domains in Configuration pane

Server Settings

Server Settings
Available Configuration Groups

● General
● Services
● MTA
● IMAP
● POP
● Volumes
Server Settings - Service
● Config Zimbra services to be run

– LDAP – Anti-Virus
– Mailbox – Spell Checker
– Reverse Proxy (off) – Logger
– MTA
– SNMP
– Anti-Spam

Server Setting - MTA
● Authentication
– Enable
● Relay email, need to authen if
– Host is outside trusted network
– TSL authentication only
● Not send password in clear text

Server Setting - MTA
● Network
– Relay MTA for external delivery
● Host to send email out
● True adsl, smtp.truemail.co.th
– MTA trusted network
● Allow using zimbra as mail relay
– No authentication,if in trusted network
● Format
– CIDR
– Blank as separator

Server Settings – MTA
● DNS lookup
– Lookup mail server for each destination domain
– Contact directly
– Uncheck, if set “Relay MTA”

Server Settings - MTA
● Milter Server = mail + filter

– Virus & spam filter
● Another way to add mail filter
– No need to look all email messages
– Terminate right away if match spam or virus
– Faster
● Multiple Milter Servers support
– Parallel working, Ex: one task per server
Server Settings - IMAP
● Enable IMAP
● Enable SSL support
● IMAP port number
● IMAP SSL port number

Server Settings - POP3
● Enable POP3
● Enable SSL on POP3
● POP3 Port number
● POP3 SSL Port number

Server Settings - Volumes
● (Storage) Volumes = Directories

● Two types
– Message
– Index
● Default
– one message volume
– one index volume

Server Setting - Volumes
● New message
– Store in the current volume
● Benefit
– Selected Backup
– Reuse disk space

Server Settings - Volumes
Add a new volume

● Volume Name
● Volume Root Path
● Volume Type
● Compress Blob
● Compress Threshold

Compress Volume
● Set “Compress Blob”

● Compress if
– Files size > Compress Threshold
● Reduce disk usage
● Require more memory

Current Volume
● Only one current volume per type

● Need to set
– Not newly added
● Previous volumes may still be used
● Set at “Assign Current Volumes” section

Message Volume
● New message
– Store in current volume
● Cannot delete
– Current volume
– Volumes having message referencing

Index Volume
● New account
– Assigned to current index volume
● Old index volumes are used
● Cannot delete
– If index volume referenced by a mailbox

Benefit of Volumes
● Add more disk space

– No need Linux logical volume
● Partial Backup
– Not backup old message volumes
– Reduce backup time
● Reclaim disk space
– Delete unused volumes

Zimlets

Zimlets
● Zimlets = zimbra web client add on
● Manage Zimlets tab
– Configuration → Zimlets
● Actions
– Deploy
● Need zimlet file
– Undeploy
– Toggle Status
● Enabled / Disabled

Download Zimlets
● http://gallery.zimbra.com
– → zimlets
– Or searching by words
● Check supported versions
● Initial zimlets exist

Admin Extension
● Extension/ addon for Admin console

● Configuration → Admin Extension
● Action
– Deploy/Undeploy

Global Settings

Global Setttings
● Multi servers
– Apply to servers
● Single servers
– Some config's not available anywhere else

Global Settings – General Info
● General information
– Maximum upload files
● Briefcase
● Emails
● Calendar appointments

Global Settings - Attachments
● Block attachments views

– Control over COS
– System wide
● Send block notification to recipient
● Set file extension to be blocked
– Defined
– Add by admin

Global Settings - MTA
● Messages
– Max message size
● Policy service checks (?)
● Protocol checks
● DNS checks
● RBL (Realtime blackhole list)
– Admin Guide , P48

Global Settings AS/AV
● AS/AV = anti spam / anti virus
● Spam check settings
– Kill percent , not deliver if match
– Tag percent, sent to Junk folder if match
– Subject prefix, tag as spam if match
● Antivirus settings
– Definition update
– Block encrypted archives
– Send notification to recipient
Monitoring

Monitoring
● Admin Console Monitoring

– Server Status
● Show status of Zimbra components
– Server Statistics
● Server level
● Domain level

Server Statistics
● Advanced Statistic
● Message Count
● Message Volume
● Antispam/ Antivirus Activity

Server Statistic
Advanced Statistic
● Add charts (graphs) to be display
– Select domain
– Select Group
– Select Counter
● Multiple Counters supported
● Add / Delete graphs

Domain Statistics
● Similar group (tab) as Server Statistics

● With additional
– Disk
– Session
– Mailbox Quota

Zimbra log files

Zimbra log
● Two places
– /var/log/zimbra.log
● All MTA log (postfix)
● Amavis
● ClamAV
– /opt/zimbra/log directory
● Mostly automatically get rotated

/opt/zimbra/log
● audit.log
– Web mail access
● ua=zclient... cmd=Auth
– Admin console access
● ua=ZimbraWebClient, … cmd=Auth
– POP3
● Pop3Server.... cmd=Auth
– IMAP activity
● ImapServer

CCA log
● Computer Crime Act 2007

– We need to keep email inbound/outbound log
– Just headers
● Zimbra send email log to
– /var/log/zimbar.log
– Need to match email ID
● Config syslog
– Forward log with mail facility to centralized log
server
Misc Topics

Backup Zimbra
● No tools for open source version

● Backup volume path
● Mysql
– /opt/zimbra/db/data
● Ldap
– /opt/zimbra/data/ldap

Backup Zimbra (2)
● Backup during Zimbra stopped

– May takes time
– Avoid by using snapshot of lvm
– Backup only active message volume

Spam Relay
● Mail servers are used to sending spams
– Relay
– Sender from outside, to outsiders
● Result
– Our mail server IP address get banded
– Zimbra
● Spams are not get relayed
● Zimbra slowly sends emails (also internal)
● No CPU load

Fix Spam Relay
● Use Spam Filter

– Other hosts
● Config as
– inbound SMTP host
– Trusted network

System Wide Signature
● Example
– Company Signature
● Not see during mail composing
● Command line setup only

● Login as root, switch user to zimbra

● Run commands
# zmprov mcf zimbraDomainMandatoryMailSignatureEnabled TRUE
# zmprov mcf zimbraDomainMandatoryMailSignatureText “some text”
# zmprov mcf zimbraDomainMandatoryMailSignatureHTML \
"<html><body>some html text</body></html>”
# /opt/zimbra/bin/zmamavisdctl restart

● You can put signature in file

● Then ,redirect to commands later
# zmprov mcf zimbraDomainMandatoryMailSignatureText < \
/tmp/disclaimer.txt
# zmprov mcf zimbraDomainMandatoryMailSignatureHTML < \
/tmp/disclaimer.html

Need Something More
● Zimbra wiki
● Google
● May need zimbra command line setup

Zimbra Ku

Caricato da

Informazioni sul documento

Titolo originale

Copyright

Formati disponibili

Condividi questo documento

Condividi o incorpora il documento

Opzioni di condivisione

Hai trovato utile questo documento?

Questo contenuto è inappropriato?

Copyright:

Formati disponibili

Zimbra Ku

Caricato da

Copyright:

Formati disponibili

Zimbra Administration

Copyright (c) 2012 X-Sidekick Co.,Ltd. 1

Copyright (c) 2012 X-Sidekick Co.,Ltd. 3

● VMWare Zimbra Colloboration Server (ZCS)

Copyright (c) 2012 X-Sidekick Co.,Ltd. 4

● Initially, is Yahoo product

Copyright (c) 2012 X-Sidekick Co.,Ltd. 5

● ZCS Open Source Edition

Copyright (c) 2012 X-Sidekick Co.,Ltd. 6

Copyright (c) 2012 X-Sidekick Co.,Ltd. 7

● Lucene (Full text search engine)

Copyright (c) 2012 X-Sidekick Co.,Ltd. 9

Copyright (c) 2012 X-Sidekick Co.,Ltd. 10

● CPU 32/64Bit CPU 2GHZ (ZCS v6)

Copyright (c) 2012 X-Sidekick Co.,Ltd. 11

Copyright (c) 2012 X-Sidekick Co.,Ltd. 12

● Need “file” command

Copyright (c) 2012 X-Sidekick Co.,Ltd. 14

● Use “which file” command

Copyright (c) 2012 X-Sidekick Co.,Ltd. 15

Copyright (c) 2012 X-Sidekick Co.,Ltd. 16

● Disable / remove this packages

Copyright (c) 2012 X-Sidekick Co.,Ltd. 19

Copyright (c) 2012 X-Sidekick Co.,Ltd. 20

127.0.0.1 localhost.localdomain localhost

● FQDN = Fully qualify domain name

Copyright (c) 2012 X-Sidekick Co.,Ltd. 21

Copyright (c) 2012 X-Sidekick Co.,Ltd. 22

● Add / Modify line

● Use “;” as comment

Copyright (c) 2012 X-Sidekick Co.,Ltd. 23

● MX record point to you hostname

● External name server is OK

Copyright (c) 2012 X-Sidekick Co.,Ltd. 24

● Use 'dig' or 'nslookup' command

Copyright (c) 2012 X-Sidekick Co.,Ltd. 25

; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6_3.2 <<>> sampledomain.com mx

;; global options: +cmd

;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 34084

;; flags: qr aa rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 1, ADDITIONAL: 2

sampledomain.com. 604800 IN MX 5 sampledomain.com.

sampledomain.com. 604800 IN MX 10 sampledomain.com.

Copyright (c) 2012 X-Sidekick Co.,Ltd. 26

● Use yum to install

Copyright (c) 2012 X-Sidekick Co.,Ltd. 28

● Iptables = Linux firewall

# chkconfig iptables off

Copyright (c) 2012 X-Sidekick Co.,Ltd. 29

Copyright (c) 2012 X-Sidekick Co.,Ltd. 31

Copyright (c) 2012 X-Sidekick Co.,Ltd. 32

Copyright (c) 2012 X-Sidekick Co.,Ltd. 33

● Continue installing with commands

● Need “--platform-override” for CentOS

Copyright (c) 2012 X-Sidekick Co.,Ltd. 34

Install anyway? [N] y

The system will be modified. Continue? [N] y

Copyright (c) 2012 X-Sidekick Co.,Ltd. 35

● If everything is OK, Install script will show menu

Copyright (c) 2012 X-Sidekick Co.,Ltd. 36

After return to main menu

*** CONFIGURATION COMPLETE - press 'a' to apply

Copyright (c) 2012 X-Sidekick Co.,Ltd. 37

● This message will show if installation succeeds.