I N S T A L L A T I O N M A N U A L



Similar documents
F-SECURE MESSAGING SECURITY GATEWAY

A D M I N I S T R A T O R V 1. 0

F-Secure Messaging Security Gateway. Deployment Guide

1 You will need the following items to get started:

It should be noted that the installer will delete any existing partitions on your disk in order to install the software required to use BLËSK.

Quick Start Guide. Sendio System Protection Appliance. Sendio 5.0

Kerio Operator. Administrator s Guide. Kerio Technologies

insync Installation Guide

Virtual Appliance Setup Guide

Firewall VPN Router. Quick Installation Guide M73-APO09-380

How To - Configure Virtual Host using FQDN How To Configure Virtual Host using FQDN

Technical Support Information

How To Load balance traffic of Mail server hosted in the Internal network and redirect traffic over preferred Interface

How to Configure an Initial Installation of the VMware ESXi Hypervisor

A Guide to New Features in Propalms OneGate 4.0

Cyberoam Virtual Security Appliance - Installation Guide for XenServer. Version 10

SuperLumin Nemesis. Administration Guide. February 2011

QUICK START GUIDE. Cisco C170 Security Appliance

REQUIREMENTS AND INSTALLATION OF THE NEFSIS DEDICATED SERVER

Sophos UTM Software Appliance

CYAN SECURE WEB APPLIANCE. User interface manual

OnCommand Performance Manager 1.1

NEFSIS DEDICATED SERVER

Preinstallation Requirements Guide

Prestige 314 Read Me First

Virtual Appliance Setup Guide

Virtual Managment Appliance Setup Guide

Configuration Guide. Websense Web Security Solutions Version 7.8.1

Deploying IBM Lotus Domino on Red Hat Enterprise Linux 5. Version 1.0

Symantec Messaging Gateway 10.0 Installation Guide. powered by Brightmail

Introduction to Mobile Access Gateway Installation

First Installation Guide

ISERink Installation Guide

eprism Security Suite

Evaluation guide. Vyatta Quick Evaluation Guide

Virtual Web Appliance Setup Guide

WEBTITAN CLOUD. User Identification Guide BLOCK WEB THREATS BOOST PRODUCTIVITY REDUCE LIABILITIES

Proof of Concept Guide

VMware Identity Manager Connector Installation and Configuration

Trend Micro Incorporated reserves the right to make changes to this document and to the products described herein without notice.

Chapter 6 Configuring the SSL VPN Tunnel Client and Port Forwarding

Virtual Appliance for VMware Server. Getting Started Guide. Revision Warning and Disclaimer

QUICK START GUIDE Cisco M380 and Cisco M680 Content Security Management Appliance

Network Load Balancing

QUICK START GUIDE. Cisco S170 Web Security Appliance. Web Security Appliance

Multi-Homing Security Gateway

Unified Threat Management

OnCommand Performance Manager 1.1

42goISP Documentation

Quick Setup Guide. 2 System requirements and licensing Kerio Technologies s.r.o. All rights reserved.

nexvortex Setup Template

Backup & Disaster Recovery Appliance User Guide

M2M Series Routers. Port Forwarding / DMZ Setup

Multi-Homing Dual WAN Firewall Router

User Guide. Cloud Gateway Software Device

RSA Authentication Manager 8.1 Virtual Appliance Getting Started

How to install/upgrade the LANDesk virtual Cloud service appliance (CSA)

ISPS & WEBHOSTS SETUP REQUIREMENTS & SIGNUP FORM LOCAL CLOUD

HP A-IMC Firewall Manager

IMF Tune Quarantine & Reporting Running SQL behind a Firewall. WinDeveloper Software Ltd.

HP IMC Firewall Manager

CounterACT 7.0 Single CounterACT Appliance

TANDBERG MANAGEMENT SUITE 10.0

EMC Data Domain Management Center

Basic Exchange Setup Guide

HOMEROOM SERVER INSTALLATION & NETWORK CONFIGURATION GUIDE

TDP43ME NetPS. Network Printer Server. Control Center. for Ethernet Module

NETWORK SET UP GUIDE FOR

Kerio Operator. Administrator s Guide. Kerio Technologies

ISPConfig Documentation

ReadyNAS Remote Troubleshooting Guide NETGEAR

v7.8.2 Release Notes for Websense Content Gateway

PineApp Surf-SeCure Quick

DSL-G604T Install Guides

WatchGuard XCSv Setup Guide

MailMarshal SMTP in a Load Balanced Array of Servers Technical White Paper September 29, 2003

JKW-IP. IP Video Entry System. QuikStart Guide

What is the Barracuda SSL VPN Server Agent?

Alinto Mail Server Pro

Using the NetVanta 7100 Series

EXPLORER. TFT Filter CONFIGURATION

Multi-Homing Gateway. User s Manual

F-Secure Internet Gatekeeper Virtual Appliance

HOWTO: Set up a Vyatta device with ThreatSTOP in router mode

EZblue BusinessServer The All - In - One Server For Your Home And Business

MN-700 Base Station Configuration Guide

Web Application Firewall

Basic Exchange Setup Guide

Technical Note. vsphere Deployment Worksheet on page 2. Express Configuration on page 3. Single VLAN Configuration on page 5

Required Virtual Interface Maps to... mgmt0. virtual network = mgmt0 wan0. virtual network = wan0 mgmt1. network adapter not connected lan0

Load Balancing for esafe Gateway 3.0 when using Alteon s AD2 or AD3

Installing and Configuring vcenter Support Assistant

Getting Started Guide

Introduction to the EIS Guide

Securely manage data center and network equipment from anywhere in the world.

LOCKSS on LINUX. CentOS6 Installation Manual 08/22/2013

Dell KACE K1000 Management Appliance. Administrator Guide. Release 5.3. Revision Date: May 16, 2011

This article describes a detailed configuration example that demonstrates how to configure Cyberoam to provide the access of internal resources.

Comodo MyDLP Software Version 2.0. Installation Guide Guide Version Comodo Security Solutions 1255 Broad Street Clifton, NJ 07013

Kerio Operator. Getting Started Guide

Transcription:

I N S T A L L A T I O N M A N U A L

2015 Fastnet SA, St-Sulpice, Switzerland. All rights reserved. Reproduction in whole or in part in any form of this manual without written permission of Fastnet SA is prohibited. MailCleaner is a registered trademark of Fastnet SA. All other trade names and trademarks cited in this manual are the properties of their respective owners. www.mailcleaner.net

S U M M A R Y 1 Infrastructure planning 4 Minimum requirements... 4 Installation CD... 4 Network environment... 4 Typical MailCleaner Installation... 5 Typical MailCleaner Installation with Firewall and DMZ... 5 2 Operating system installation 6 3 MailCleaner installation 7 System configuration... 7 Keyboard configuration... 7 Set root password... 7 Network configuration... 7 MailCleaner (re)installation... 7 Exit... 7 Finishing the installation... 8 4 Registration 9 Getting automatic updates... 9 What is your reseller ID... 9 What is your reseller password... 9 What is this client ID... 9 Finishing registration... 10 5 Cluster configuration (optional) 11 Master configuration... 12 Slave configuration... 13 6 Post installation 14 Test A 14 Test B 14 Final step... 14 VERY IMPORTANT: This manual has been written deliberately short, and consequently very accurate. Each requirement must be fulfilled and instructions strictly respected. No support will be provided if these conditions are not met. 3 MailCleaner Summary

C H A P T E R 1 1 Infrastructure planning Minimum requirements Make sure that your hardware meets the minimum requirements: 2 CPU, 4 GB RAM 60 GB, SATA III, 7200rpm hard drive 100 Mbps network card 2 Mbps network connectivity Installation CD Download and burn the latest MailCleaner installation CD ISO image from: http://www.mailcleaner.net/downloads/install/ Network environment Please have on hand an IP address and a hostname to be dedicated to your MailCleaner. The hostname must be resolvable via DNS. MailCleaner also needs Internet access on a number of ports. Make sure the firewall allows the following traffic: From the Internet to MailCleaner: 25 TCP (SMTP, from ANY or potentially from a specific gateway). 80 and 443 TCP (HTTP(S), optional but required for user and administrative interfaces). If your MailCleaner is in a private subnet behind a firewall, please do not forget to configure the necessary NAT rules to forward traffic from the WAN to your MailCleaner server. From MailCleaner to the Internet: 25 TCP (SMTP, to ANY or to a specific smtp gateway). 22 TCP (SSH, Mailcleaner updates, limited to 195.176.194.0/24 and 193.246.63.0/24). 80 and 443 TCP (HTTP(S), to ANY or to a specific gateway). 7 and 2703 TCP (Razor, to ANY). 24441 UDP (Pyzor, to ANY). 6277 UDP (DCC, to ANY). If you plan on building a MailCleaner Cluster (see chapter 5 for more information), make sure that traffic on the following protocols are allowed to pass between the different MailCleaner systems: 3306 and 3307 TCP (database synchronization). 22 TCP (MailCleaner internal synchronization). 5132 TCP (Web services). 161 UDP (SNMP, MailCleaner statistics) 4 MailCleaner Infrastructure planning

C H A P T E R 1 Typical MailCleaner Installation LAN AD or LDAP (Optional) IP:... Internet MailCleaner Enterprise or Appliance IP:... Mask:... Gw:... Mail Server IP:... Domain: Typical MailCleaner Installation with Firewall and DMZ LAN Firewall WAN IP:... LAN IP:... DMZ IP:... AD or LDAP IP:... Internet 25 TCP (SMTP) 22 TCP (SSH updates) 80 & 443 (HTTP(S)) 7 & 2703 TCP( Razor) 24441 UDP ( Pyzor) 6277 UDP (DCC) 25 TCP (SMTP NAT) 389 TCP (LDAP) 25 TCP (SMTP) Mail Server IP:... Domain: MailCleaner Enterprise or Appliance IP:... Mask:... Gw:... DMZ 5 MailCleaner Infrastructure planning

C H A P T E R 2 2 Operating system installation The first step will format the server's hard drives and install the MailCleaner Operating System (OS). Insert the MailCleaner installation CD in the server and start the server. boot from local disk: This option lets you boot on the currently installed operating system, if any. MailCleaner Automatic Installation: This option will start the MailCleaner OS installation. Choose the option MailCleaner Automatic Installation. The system installation will now proceed. This may take 10 to 30 minutes, depending on hardware performance. Once finished, the installer asks to press a key to restart. Do so and remove the CD. Once restarted, the system will lead you to the MailCleaner OS configuration menu. WARNING: any data currently on the system will be deleted. 6 MailCleaner Operating system installation

C H A P T E R 3 3 MailCleaner installation The MailCleaner base system configuration menu handles basic system configuration and MailCleaner software installation. You can simply follow the different steps as suggested by the installer. System configuration Keyboard configuration This option will allow you to set up the keyboard mapping. The default is a standard US keymap. Set root password This option will let you set the Unix root password of the system. The default is def. Network configuration This option brings you to the main network interface configuration. This important step will allow you to connect to the administrative web interface once the installation is finished. Use the dedicated IP information here. MailCleaner (re)installation This option will ask you a few questions and start the actual MailCleaner installation: Enter the unique ID of this MailCleaner in your infrastructure: The unique identifier of this server in the MailCleaner installation. A MailCleaner installation can contain a number of servers running in cluster (see chapter 5). Each of these servers must have a unique ID. In the case of a MailCleaner installation with only one server, use the value 1. Enter the admin user password: This password will be used for the administrative account admin in the web admin interface. The MailCleaner installation should then proceed and will take less than 15 minutes. Exit This option simply exits the installer tool. 7 MailCleaner MailCleaner installation

C H A P T E R 3 Finishing the installation Once the installation is finished, you can connect your favorite browser to the MailCleaner web administration interface: https://yourhost/admin/ Where yourhost refers to either the hostname or the IP address you provided during the installation. The username is admin and the password is the one provided during the installation. See also chapter 6 Post Installation for more information. 8 MailCleaner MailCleaner installation

C H A P T E R 4 4 Registration This step will allow your MailCleaner to access the automatic update center to receive operating system updates, patches and especially filtering rule updates. Getting automatic updates If you wish to get automatic updates for your MailCleaner, you may want to register with MailCleaner s update service. Once you get the settings back from our service (client id, reseller id/password, etc.), you must connect your favorite browser to the MailCleaner web administration interface: https://yourhost/admin/ Where yourhost refers to either the hostname or the IP address you provided during the installation. The username is admin and the password is the one provided during the installation. Select Configuration menu, Base system sub-menu and Registration section You must fill all fields of this section with the information provided on your license certificate, by your reseller or directly by MailCleaner Sales Department. What is your reseller ID The reseller ID as assigned by MailCleaner; use 0 for an installation without updates. What is your reseller password The password associated with the reseller ID (leave empty for an installation without updates). What is this client ID The client (or customer) ID as assigned by MailCleaner; use 0 for an installation without updates. 9 MailCleaner Registration

C H A P T E R 4 Finishing registration When finished, this step will register your MailCleaner installation with our update service. Available updates will then be fetched every 15 minutes. Anti-virus definitions are updated every hour by default. VERY IMPORTANT: Once you have installed and registered a MailCleaner server, let it fetch updates for a minimum of 2 hours prior to any configuration operation, including Cluster configuration. 10 MailCleaner Registration

C H A P T E R 5 5 Cluster configuration (optional) To filter very large volume of email and/or for security and redundancy reasons, MailCleaner has been developed, from the very beginning, to work in a cluster configuration. One server, defined as the master, holds the database configuration and hosts the administrator and user web interfaces. The other servers in the cluster are defined as slaves. First, install each server independently. VERY IMPORTANT: Once you have installed and registered a MailCleaner server, let it fetch updates for a minimum of 2 hours prior to any Cluster configuration. VERY IMPORTANT: Don t make the cluster configuration until your servers are placed in their final location with definitive IP configuration, and until you have verified that all the ports configuration, described in chapter 1, is fulfilled for all members of your future cluster. Once installed, the next step is to obtain the password created by the MailCleaner installation process. This password is located in the file: /etc/mailcleaner.conf Use this command: grep 'MYMAILCLEANERPWD' /etc/mailcleaner.conf cut -d ' ' -f3 11 MailCleaner Cluster configuration

C H A P T E R 5 Master configuration Use the script located in: /usr/mailcleaner/scripts/configuration/slaves.pl. The first time, you will have to set the real hostname of the master. The real hostname is the Fully Qualified Domain Name (FQDN) of the master server. This name must be resolvable by DNS. Alternatively, you can use the master server's IP address in place of its name. Select option 1 (fully qualified hostname or ip). By default it is 127.0.0.1, which is to be changed in the case of a cluster. Select option 4 to add a slave and enter the hostname or IP address and the password of the server. Back in the main menu, hit q to apply changes. 12 MailCleaner Cluster configuration

C H A P T E R 5 Slave configuration Use the script located in: /usr/mailcleaner/scripts/configuration/slaves.pl. The first time, you will have to set the real hostname of the slave. The real hostname is the Fully Qualified Domain Name (FQDN) of this slave. This name must be resolvable by DNS. Alternatively, you can use the server's IP address in place of its name. Select option 1 (fully qualified hostname or ip). By default it is 127.0.0.1. Select option 5 to set this server as a slave. Enter the master's FQDN or IP address and password. Back in the main menu, hit q to apply changes. You can now reach the admin interface of any server, but only the master will let you configure the system. The master is also the only server that allows users to access their quarantine. 13 MailCleaner Cluster configuration

C H A P T E R 6 6 Post installation You're almost finished! Now that you have completed the installation and registration of your MailCleaner, it is time to configure it for the domains that you wish to filter. Please connect your web browser to the MailCleaner web administrative console: https://yourmailcleanerhost/admin/ Please configure the domains that you would like to protect. Remember: MailCleaner will not be operational until it is configured for the domain(s) that you would like to filter. Once you have completed your domain configuration you can now test your new installation. Test A Please verify that users of each domain can access the user web interface: https://yourmailcleanerhost/ Test B Verify that messages go correctly through your MailCleaner by directly sending a message for an existing user through your MailCleaner. For example, temporarily change your SMTP server in your mail software to point to your MailCleaner server, or initiate a manual SMTP session from a command console using the command telnet yourmailcleanerhost 25. Final step Once you have completed these two verifications, your MailCleaner installation is ready to be put in production. The final step is making your installation visible to the rest of the world. Modify your email routing by changing the MX records for the filtered domains, or by altering your firewall or mail gateway configuration. Note: if you have more than one MailCleaner server (Cluster configuration), please use the same MX priority for all of your MailCleaner servers. Congratulations! Your installation is now complete. 14 MailCleaner Post installation

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information