HOB WebSecureProxy as an SSL Terminal for E-Mail Clients



Similar documents
How to Set Up Your. Account

Set Up Setup with Microsoft Outlook 2007 using POP3

Outlook Express. Make Changes in Red: Open up Outlook Express. From the Menu Bar. Tools to Accounts - Click on Mail Tab.

Windows Live Mail Setup Guide

Open Thunderbird. To set up an account in Thunderbird, from the Tools menu select Account Settings; choose account; then click Next.

Setup Guide. network support pc repairs web design graphic design Internet services spam filtering hosting sales programming

How to Set Up LSUS IMAP in Outlook 2013

1. Open the preferences screen by opening the Mail menu and selecting Preferences...

Patriots Outlook Configuration

Outlook Express. Make Changes in Red: Open up Outlook Express. From the Menu Bar. Tools to Accounts - Click on. User Information

Owner of the content within this article is Written by Marc Grote

Division of Information Technology Lehman College CUNY

DEPLOYMENT GUIDE Version 1.0. Deploying the BIG-IP LTM with the Zimbra Open Source and Collaboration Suite

Outlook Express. Make Changes in Red: Open up Outlook Express. From the Menu Bar. Tools to Accounts - Click on Mail Tab.

Update Instructions

Knights Outlook 2013 Configuration

Update Instructions

Connecting an Android to a FortiGate with SSL VPN

Getting started with IMAP for Aggi What is IMAP?

1. Open the preferences screen by opening the Mail menu and selecting Preferences...

How to configure your client

Configuring Your Client: Outlook Express. Quick Reference

Configuring Your Client: Eudora 5.x. Quick Reference

POP3 Connector for Exchange - Configuration

3. On the Accounts wizard window, select Add a new account, and then click Next.

Configuring Your Client: Eudora 5.x

Knights Outlook Configuration

Using TLS Encryption with Microsoft Outlook 2007

Astaro Mail Archiving Getting Started Guide

To configure Outlook Express for your InfoMetrics address:

1. Open Thunderbird. If the Import Wizard window opens, select Don t import anything and click Next and go to step 3.

Instructions for Microsoft Outlook 2003

How To Configure SSL VPN in Cyberoam

Configuring Your Client: Outlook Express

Mail 8.2 for Apple OSX: Configure IMAP/POP/SMTP

700 Fox Glen Barrington, Illinois ph: [847] fx: [847]

Device Log Export ENGLISH

Configuring on Android Devices

IRMACS Setup. Your IRMACS is available internally by the IMAP protocol. The server settings used are:

Client Configuration Secure Socket Layer. Information Technology Services 2010

Outlook Express. Instructional Manual

Set up Outlook for your new student e mail with IMAP/POP3 settings

HOB Remote Desktop VPN Secure access for remote workers and business partners to your enterprise network

HGC SUPERHUB HOSTED EXCHANGE

Outlook Express POP Instructions - Bloomsburg University Students

IOS 8: Configure IMAP/POP/SMTP

Configuring on Mobile Devices

Outlook Start Outlook, and click on mserver.wlu.ca. 2. From the Tools menu, choose Options

How To Load balance traffic of Mail server hosted in the Internal network and redirect traffic over preferred Interface

IMAP and SMTP Setup in Clients


Configuring Outlook 2013 For IMAP Connections

Microsoft Outlook 2010

Follow these steps to configure Outlook Express to access your Staffmail account:

NeoMail Guide. Neotel (Pty) Ltd

Microsoft Outlook 2013 & Microsoft Outlook Microsoft Outlook Windows Live Mail 2012 & MAC Mail. Mozilla Thunderbird

UNI - WINDOWS. How to... Access your University on your Windows Computer. Introduction. Step 1/1 - Setting Up Your Windows Computer

Neoteris IVE Integration Guide

Update Instructions

Versions Addressed: Microsoft Office Outlook 2010/2013. Document Updated: Copyright 2014 Smarsh, Inc. All right reserved

Nokia for Business. Nokia and Nokia Connecting People are registered trademarks of Nokia Corporation

SSL SSL VPN

Migration Manual (For Outlook 2010)

Exchange Outlook Profile/POP/IMAP/SMTP Setup Guide

Basic Exchange Setup Guide

BlackBerry Enterprise Service 10. Secure Work Space for ios and Android Version: Security Note

White Paper. Installation and Configuration of Fabasoft Folio IMAP Service. Fabasoft Folio 2015 Update Rollup 3

Initial Setup of Mozilla Thunderbird with IMAP for Windows 7

Neoteris IVE Integration Guide

Setup Guide for Exchange Server

New Mexico State University

Mail Programs. Manual

Sonian Getting Started Guide October 2008

MyArbonne Account Settings

Nokia E90 Communicator support

Update Instructions

Exchange Outlook Profile/POP/IMAP/SMTP Setup Guide

MICROSOFT OUTLOOK 2003

Deployment Guide. AX Series with Microsoft Exchange Server

Configuring Outlook to send mail via your Exchange mailbox using an alternative address

Outlook 2010 Setup Guide (POP3)

Migration Manual (For Outlook Express 6)

Borderware MXtreme. Secure Gateway QuickStart Guide. Copyright 2005 CRYPTOCard Corporation All Rights Reserved

F-Secure Internet Gatekeeper

How to set up your Secure in Outlook 2010*

Traveling Setup Microsoft Office

Android: Configure IMAP/POP/SMTP

Configuring Outlook for IMAP. Creating a New IMAP Account. Modify an Existing Account

Migration User Guides: The Console Application Setup Guide

Before starting to use the new system you will need to know the password to your e-wire account.

Proxies. Chapter 4. Network & Security Gildas Avoine

Windows Mail POP Instructions - Bloomsburg University Students

User Guide: Manual Migration on Thunderbird for OS X

Configuring Outlook 2010 for Windows

Setting up your POP3 Mail Client (such as Outlook)

How to configure SSL proxying in Zorp 6

Traveling Setup Outlook Express

Setup 1of 2: AKO (NOT E ) Setup on Outlook 2010

How To Send Mail From A Macbook Access To A Pc Or Ipad With A Password Protected Address (Monroe Access) On A Pc (For Macbook) Or Ipa (For Ipa) On Pc Or Macbook (For

Transcription:

HOB GmbH & Co. KG Schwadermühlstr. 3 90556 Cadolzburg Tel: 09103 / 715-0 Fax: 09103 / 715-271 E-Mail: support@hob.de Internet: www.hob.de HOB WebSecureProxy as an SSL Terminal for E-Mail Clients November 2005

HOB WebSecureProxy as an SSL Terminal for E-Mail Clients Best placed in the DMZ, the HOB WebSecureProxy is an SSL gateway that SSL-encrypts the e-mail traffic on the client side and transfers it unencrypted to the mail server on the LAN side. This effectively protects the mail server against any attacks coming over the Internet. The HOB WebSecureProxy provides you with two different methods of protecting your e-mail with SSL: 1. Using the SSL encryption functionality integrated in the e-mail client Many modern e-mail clients have SSL functionality integrated into them. The usual mail receipt protocol is either POP3 or IMAP4. Depending on which is being used, when SSL encryption is activated, SSL-encrypted e-mail will be received over either POP3S on the mail server port 995 or over IMAP4S on port 993. SSL-protected e-mail is sent over SMTPS on the mail server port 465. These are the default ports for these actions. For HOB WebSecureProxy authentication, a certificate signed by an external CA (Certificate Authority) is required. The advantage of this security method is that no additional software need be installed on the client system (not even any HOB software). 2

The HOB WebSecureProxy is configured via an XML file. The HOB WebSecureProxy configuration for the previously described scenario would appear as follows: <sslgate-configuration> <general> <report-intv>1800</report-intv> <prot-event-log>yes</prot-event-log> <network-statistic-level>9</network-statistic-level> </general> <name>sslgate001</name> <gateport>993</gateport> <gate-in-ineta>10.0.0.150</gate-in-ineta> <SSL-config-file> hserver.cfg </SSL-config-file> <SSL-certdb-file> hserver.cdb </SSL-certdb-file> <SSL-password-file> hserver.pwd </SSL-password-file> <max-session>50</max-session> <serverineta>mail.company.com</serverineta> <serverport>143</serverport> <timeout>3600</timeout> </connection> <name>sslgate002</name> <gateport>465</gateport> <gate-in-ineta>10.0.0.150</gate-in-ineta> <SSL-config-file> hserver.cfg </SSL-config-file> <SSL-certdb-file> hserver.cdb </SSL-certdb-file> <SSL-password-file> hserver.pwd </SSL-password-file> <max-session>50</max-session> <serverineta>mail.company.com</serverineta> <serverport>25</serverport> <timeout>3600</timeout> </connection> </sslgate-configuration> 3

Explanation of the Tags Used: <sslgate-configuration> The <sslgate-configuration> tag marks the beginning of the XML configuration. The entire HOB WebSecureProxy configuration is found between this tag and its counterpart, the </sslgate-configuration> tag. <general> The general behavior of the tag HOB WebSecureProxy is defined in this tag, e.g., the logging interval. <report-intv> This tag enables the output of statistical data on the use of threads, memory, etc. to the event log or console. In this sample configuration, the data will be output every 1800 seconds. <prot-event-log> The <prot-event-log> tag enables the output of error messages and events. <network-statistic-level> The <network-statistic-level> tag defines the output of network utilization data. Possible parameters are: 1 to 9, minimum to maximum data output. This tag is used to configure the connection, e.g., to define the listening port or target address. This tag may be used several times within a HOB WebSecureProxy configuration, i.e., you may define several connections. <name> The <name> tag defines the name of the connection configuration, in this case, SSLGATE001. This setting must be made. <gateport> The <gateport>tag defines the listening port for an incoming connection. In this configuration, port 993 for IMAPS is opened in the first tag, and port 465 for SMTPS is opened in the following tag. <gate-in-ineta> This optional tag is only used for multi-homed systems. It defines the network adapter via the IP address. <SSL-config-file>, <SSL-certdb-file>, <SSL-password-file> Path to the SSL certificate, configuration file and password file. <max-session> This tag contains the definition of the maximum number of concurrently active sessions (connections) within this configuration. <serverineta> The mail server s IP address. Here: mail.company.com <serverport> Target port on the mail server. Here: 143 for IMAP4 and 25 for SMTP. <timeout> Optional. Defines the length of time to expire before a connection timeout will be designated a failure. With this configuration, the HOB WebSecureProxy will provide you with two 1:1 connections. 4

E-Mail Client Configuration In the local e-mail client, create an account that will have the HOB WebSecureProxy as the target address for incoming (POP3 or IMAP4) and outgoing (SMTP) mail, instead of the mail server. Enable the option SSLconnection required. Client-Side SSL Communication over the HOB Universal Client The HOB Universal Client can be installed on the client or downloaded via the Web browser. The HOB Universal Client encrypts the data exchanged between the e-mail-client and the HOB WebSecureProxy. The e-mail client itself need not be SSL-capable. The exchanged data can also be compressed with V42.bis before being sent, accelerating e-mail traffic. All communications between the HOB Universal Client and the HOB WebSecureProxy go over just one IP port. E-Mail Client Configuration In the local e-mail client, create an account that will address the local host instead of the mail server. The HOB Universal Client receives the data, compresses and SSL-encrypts them, and forwards them to the HOB WebSecureProxy. The option SSL-connection required is not to be set for this configuration. HOB GmbH & Co. KG November 2005 5

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information