Monthly Archives: August 2011

ZIMBRA mysql.server & zmconfigd is not running.


zimbra@mail:~$ zmcontrol status
Host mail.mydomain.com
        antispam                Running
        antivirus               Running
        ldap                    Running
        logger                  Running
        mailbox                 Stopped
                mysql.server is not running.
        mta                     Running
        snmp                    Running
        spell                   Running
        stats                   Stopped
        zmconfigd               Stopped
                zmconfigd is not running.

Solusi
zmcontrol stop
rm -rf /opt/zimbra/db/data/*
/opt/zimbra/libexec/zmmyinit

Repository Local Ubuntu


Membuat repository lokal sangat menguntungkan bagi linux-user yang sering melakukan install, update new package. Proses download package tidak perlu via internet. Cara termudah adalah dengan membeli semua repository DVD dari sejumlah toko online seperti gudanglinux.com , jurangan.kambing.ui.ac.id dll dan jangan lupa sesuaikan dengan versi distro yang anda jalankan sekarang:)

Berikut adalah langkah2nya:

  1. Pastikan server yang akan di jadikan repository sudah terinstall SISTEM OPERASI dengan distro ubuntu.
  2. DVD repository biasanya ada 7 buah untuk versi 9.10 + size hardisk yang dibutuhkan kurang lebih 30 GB
  3. Copikan semua ISI DVD ke /var/www/html/repo/karmic dengan melakukan mounting lebih awal
    cp -rfa * /var/www/html/repo/karmic
    chown -Rf root.root /var/www/html/repo/karmic
    Ubuh seluruh hak akses file yang ada di /var/www/html/repo/karmic/ menjadi 644 dan folder menjadi 755
    sudo find /var/www/html/repo/karmic/ -type f -exec chmod 644 {}\;
    sudo find /var/www/html/repo/karmic/ -type d -exec chmod 755 {}\;
    Menghapus seluruh file index “Packages.gz” yang terdapat dalam folder /var/www/html/repo/karmic/
    sudo find /var/www/html/repo/karmic/ -name “Packages.gz” -exec rm{}\;
  4. Sebelum membuat file “Packages.gz” index untuk masing-masing komponen resposity installlah
    apt-get install dpkg-dev
  5. cd /var/www/html/repo/karmic
    dpkg-scanpackages pool/main /dev/null |  gzip 9c > dist/karmic/main/binary-i386/Packages.gz
    dpkg-scanpackages pool/multiverse/dev/null |  gzip 9c > dist/karmic/multiverse/binary-i386/Packages.gz
    dpkg-scanpackages pool/restricted/dev/null |  gzip 9c > dist/karmic/restricted/binary-i386/Packages.gz
    dpkg-scanpackages pool/universe/dev/null |  gzip 9c > dist/karmic/universe/binary-i386/Packages.gz
    apt-get install apache2
    untuk mengarahakan repository ke dir /var/www/html/repo/karmic, enablekan module alias “sudo a2enmod alias”
    tambahkan file config di /etc/apache2/mods-available/alias.conf

    <IfModule alias_module>
    Alias /karmic  “/var/www/html/repo/karmic”
    <Directory /var/www/html/repo/karmic>
    Options Indexs FollowSymLinks MultiViews
    AllowOverride All
    Order allow,deny
    allow from all
    Addtype text /plain gz
    AddEncoding x-gzip gz
    </Directory>
    </IfModule>

  6. restart apache “/etc/init.d/apache2 restart”
  7. Pada sisi client yang akan melakukan update or install
    cat > /etc/apt/sources.list
    vim /etc/apt/sources.list
    deb http://192.168.0.254/karmic karmic main multiverse restristed universe
  8. apt-get update
  9. coba install nmap
    apt-get install nmap
  10. Terimakasih dan coba lagi

Penjadwalan Crontab


Salah satu fungsi yang sangat membantu anda untuk menjalankan tugas-tugas yang terjadwal didalam sistem anda. Ada tigas jenis penjadwalan yang terdapat di dalam linux, yaitu anacron, at dan crontab. Penjelasan masing-masing penjadawaln adalah:

Anacron digunakan untuk melakukan pen jadwalan suatu perintah untuk komputer yang tidak selalu menyala terus menerus.

At digunakan untuk penjadwalan suatu tugas sekali dalam satuan waktu.

Crontab digunakan untuk menjalanakn suatu tugas yang berjalan pada waktu yang berbeda2 atau interval waktu yang berbeda.

Contoh perintah crontab

crontab -e   : mengedit file crontab yang sudah ada, atau membuat file baru

crontab -l  : menampilkan isi file crontab

crontab -r : menghapus file crontab

crontab -u : mengdedit crontab milik user

Pada file crontab , terdapat enam field untuk setiap entry, dan masing-masing field dipisahkan oleh spasi atau tab, yaitu lima field pertama menentukan kapan perintah akan di jalankan, dan field ke enam adalah perintah yang akan di jalankan.

# min (0-59)  hours (0-23)  day (1-31) month (1-12) day_of_week(0-6) command

Implementasi crontab

  1. restart service httpd setiap tanggal 1 dan 20 tiap bulan
    0 4 1,20 * * /etc/init.d/httpd restart
  2. jalankan script backup setiap hari senin dan selasan jam 10:10
    10 10 * * 1-2 /script/backup.sh
  3. jalankan backup setiap menit ke 10,30 setiap jam selama bulan mei
    10,30 * 5 * /script/backup
  4. remote access log setiap 3 hari pada jam 4:00
    0 4 */3 * * rm -rf /var/log/access_log
  5. Terimakasih

RSYNC SHELL SCRIPT WITH AUTOINCREMENTAL BACKUP


Beberapa hari yang lalu saya ditugaskan untuk membuat script backup untuk memindahkan file recording yang ada di server production ke server backup. Berikut adalah kebutuhannya:

1. File recording di simpan di /home/myapp/recording, format direktorynya /home/myapp/recording/yyyy/mm/dd
2. Jika space hardisk home sudah mencapai 75 % maka otomatis di lakukan purging dengan mensisakan data 7 hari terakhir

Lampiran script rsync

#!/bin/bash
# “PUSH” RECORDING (VOICELOGGER) to SERVER BACKUP
# ————————————————————————-
# Copyright (c) 2011
# ————————————————————————-
# Tested under RHEL / CentOS 5.5

FIND=”$(which find)”
RSYNC=”$(which rsync)”
DATE=$( date +%F ) # format yyyy-mm-dd ex: 2011-30-03
DATE_TIME=”$( date +%F)”:”$( date +%H:%M:%S)” # format yyyy-mm-dd ex: 2011-30-03 10:00:00
FORMAT_DIR=”$( date +%Y/%m/%d)” # format yyyy/mm/dd ex: 2011/30/03

SOURCE_IP=”10.10.21.23″
BACKUP_IP=”10.10.21.24″

SOURCE_DIR=”/home/myapp/recording/”
BACKUP_DIR=”/home/myapp/recording/”
LOG_DIR=”/home/myapp/recording/log/”
CURRENT_LOG=”/home/myapp/recording/log/rsync-current.log”

PERCENTAGE_ALERT=”75″

PARTITION_DIR=”/dev/mapper/VolGroup00-LogVol00″ # partisi /home

TESTING=”N”

LOG_FILE=”${LOG_DIR}recording_$DATE.log”
if [ “$TESTING” == “Y” ]; then
OPTIONS=”-avrn –stats –progress -e”
else
OPTIONS=”-avr –stats –progress -e”
fi

SSH_USER=”root”
SSH_HOST=”${BACKUP_IP}”

> $CURRENT_LOG
> $LOG_FILE

REMOTE_IS_LIVE=`ping -s 1 -c 1 $BACKUP_IP > /dev/null; echo $?`
if [ $REMOTE_IS_LIVE -eq 0 ]; then
SDATE=`date`
echo “ping sukses”
echo “—- Ping server backup ${BACKUP_IP} at $SDATE —” >> $CURRENT_LOG 2>&1
$RSYNC $OPTIONS ‘ssh -p 22’ ${SOURCE_DIR} ${SSH_USER}@${SSH_HOST}:${BACKUP_DIR} >> $CURRENT_LOG 2>&1
#rsync -avr –stats –progress -e ‘ssh -p 22’ /home/myapp/recording/ myapp@10.10.21.24:/home/myapp/recording/
RETVAL=$?
if [ $RETVAL -eq “0” ]; then
echo “RETVAL :”. $RETVAL
echo “—- Rsync started at `date` —” >> $CURRENT_LOG 2>&1
echo “—- Rsync completed at `date` —-” >> $CURRENT_LOG 2>&1
grep “Rsync started at” $CURRENT_LOG >> $LOG_FILE
grep “Number of files:” $CURRENT_LOG >> $LOG_FILE
grep “Number of files transferred:” $CURRENT_LOG >> $LOG_FILE
grep “Total file size:” $CURRENT_LOG >> $LOG_FILE
grep “Total transferred file size:” $CURRENT_LOG >> $LOG_FILE
grep “Total bytes sent:” $CURRENT_LOG >> $LOG_FILE
grep “Total bytes received:” $CURRENT_LOG >> $LOG_FILE
grep “Rsync completed at” $CURRENT_LOG >> $LOG_FILE
df -PH | grep -vE ‘^Filesystem|tmpfs|cdrom’ | awk ‘{ print $5 ” ” $1 }’ | while read output;
do
LEFT_PERCENTAGE=$(echo $output | awk ‘{ print $1}’ | cut -d’%’ -f1 )
FS_PARTITION=$(echo $output | awk ‘{ print $2 }’ )
if [ “{$FS_PARTITION}” = “{$PARTITION_DIR}” ]; then
if [ “$LEFT_PERCENTAGE” -ge “$PERCENTAGE_ALERT” ]; then
echo “” >> $LOG_FILE
#—————delete backup 7 hari yang lalu—————————————-
DAYS=$(for d in $(seq 7 14);do date –date=”$d days ago” +”%Y/%m/%d”; done)
for d in $DAYS
do
if [ “$TESTING” == “N” ]; then
/bin/rm -rf $SOURCE_DIR$d
echo “Delete Dir $SOURCE_DIR$d” >> $LOG_FILE
fi
# echo “Delete Dir $SOURCE_DIR$d” >> $LOG_FILE
done
#—————end 7 hari yang lalu——————————————-

fi
fi
done
else
echo “—- Rsync Error at `date` —-” >> $CURRENT_LOG 2>&1
echo “—- Rsync Error at `date` —-” >> $LOG_FILE
echo “—- Please check the error log —-” >> $LOG_FILE
fi
else
echo “—- Ping Server Backup ($BACKUP_IP) : FAIL, Pls Check Backup Server!!!!” >> $CURRENT_LOG 2>&1
fi

PROXMOX + DLINK NAS 323


Saya sedang mencoba implementasikan Virtualiasi dengan menggunakan Proxmox (baremetal ) di KAHA Contact Center. Pada masing-masing server saya sudah menginstall proxmox dan di masing-masing proxmox saya sudah install 2 guest yaitu:

Proxmox 1networking_proxmox
guest 1 sebagai main ipbx ( Alokasi CPU : 6 core, Memory 5 GB)
guest 2 sebagai crm-backup (Alokasi CPU :1 core, Memory 1 GB)

Proxmox 2
guest 1 sebagai crm ( Alokasi CPU : 6 core, Memory 5 GB)
guest 2 sebagai ipbx-backup ( Alokasi CPU : 1 core, Memory 1 GB)

Beberapa pertimbangan menggunakan proxmox:
1. Karna kita sudah menggunakan media-gateway, tidak ada perangkat lain yang harus di pasang di PCI server, untuk yang menggunakan card sepertinya belum cocok karena kesulitan mendeteksi PCI cardnya dari sisi si guestnya.
2. Mendukung virtualiasi openVZ dan KVM yang sudah bisa melengkapi Virtualbox,VMware dan XEN Hypervisor.
3. Resources CPU yang digunakan si proxmox hanya 3% dari total kemampuan CPU, karena distro ini sudah di desain seminimal mungkin untuk kebutuhan virtualisasi.
4. Proses backup sangat mudah / realtime . Maksud backup disini adalah, imagenya sendiri bisa di backup ke hardisk lain (DLINK NAS) secara real time (snapshot) tanpa perlu men-shutdown guest yang sedang berjalan, sehingga ketika terjadi crash server maka proses restore sangat cepat dilakukan dengan men-delpoy image yang sudah di backup sebelumnya. Image tersebut sudah lengkap dengan konfigurasi terakhirnya.
5. Centralized web management.
6. Support Cluster yang memungkinkan management beberapa fisik server.
7. Migrasi virtual mesin pada fisik yang lain. Artinya semua guest pada server X akan bisa di migrasikan ke server Y.

Guest yang menggunakan 1 GB memory lebih difungsikan untuk replikasi database dan script web (php), sehingga data benar2 yang terakhir,atau digunakan jika salah satu hardware server rusak maka crm dan telephony tetap bisa jalan di 1 server.

NAS akan lebih difungsikan untuk backup voice recording dan membackup image masing-masing guest ( mungkin dilakukan sekali X hari).

Install Zimbra Collaboration Suite 7 on Centos 5.5


I assumed that you already know how to install Centos 5.5. Firstly run ‘yum update’ to make sure the system is up to date. Then you need to disable the firewall and SELinux feature. Later you can easily enable it if you want.

Run ‘system-config-securitylevel’ to disable security level and SELinux. Also disable ‘sendmail’ so it will not conflict with postfix. Also disable the iptables and ip6tabels as well.

/etc/init.d/sendmail stop
chkconfig sendmail off
chkconfig iptables off
chkconfig ip6tables off
Let’s start with the installation of Centos 5.5 packages required by ZCS 7.0.

The following are required packages need to be installed before installing ZCS:
– NPTL (Native POSIX Thread Library – installed by default)
– sudo
– libidn
– gmp, and
– libstdc++

The suggested prerequisite packages: Perl, sysstat, and sqlite. Remember that some packages may be already installed.

Run yum install to install those packages above:

yum install sudo sysstat gmp libidn libstdc++ sqlite
Configure hostname of the server and DNS for the domain

Make sure that in /etc/hosts, the hostname of the server has been pointed to the IP address of the server. It should look like below:

# Do not remove the following line, or various programs
# that require network functionality will fail.
127.0.0.1 localhost.localdomain localhost
192.168.137.2 mail.mydomain.com mail
::1 localhost6.localdomain6 localhost6
Beside as a mail/Zimbra server, we also will use the server as a DNS server.
For example, we will use a simple domain name ‘mydomain.com’ with the MX record point to mail.mydomain.com.

Create a file /var/named/chroot/var/named/mydomain.com with the following configuration:

;
; Addresses and other host information.
;
@ IN SOA mydomain.com. hostmaster.mydomain.com. (
2011030801 ; Serial
43200 ; Refresh
3600 ; Retry
3600000 ; Expire
2592000 ) ; Minimum

; Define the nameservers and the mail servers

IN NS ns.mydomain.com.
IN A 192.168.137.2
IN MX 10 mail.mydomain.com.

mail IN A 192.168.137.2
ns IN A 192.168.137.2
Edit the /var/named/chroot/etc/named.conf file to match the mydomain.com

options {
directory “/var/named”;
dump-file “/var/named/data/cache_dump.db”;
statistics-file “/var/named/data/named_stats.txt”;
forwarders { 8.8.8.8; };
};
include “/etc/rndc.key”;
// We are the master server for mydomain.com

zone “mydomain.com” {
type master;
file “mydomain.com”;
};
Start named on the server

/etc/init.d/named start
Enable autostart for named

chkconfig named on
Verify that the dns is working:

host -t mx mydomain.com
mydomain.com mail is handled by 10 mail.mydomain.com.

nslookup mail.mydomain.com
Server: 192.168.137.2
Address: 192.168.137.2#53

Name: mail.mydomain.com
Address: 192.168.137.2
Until this step we have installed the Centos 5.5 packages required for Zimbra Collaboration Suite 7.0.0 GA Release and configured the domain in the DNS server.

wget http://files2.zimbra.com/downloads/7.0.0_GA/zcs-7.0.0_GA_3077.RHEL5.20110127201734.tgz
tar zxf zcs-7.0.0_GA_3077.RHEL5.20110127201734.tgz
cd zcs-7.0.0_GA_3077.RHEL5.20110127201734
./install.sh –platform-override

The following are the log when installing the ZCS.

Operations logged to /tmp/install.log.28057
Checking for existing installation…
zimbra-ldap…NOT FOUND
zimbra-logger…NOT FOUND
zimbra-mta…NOT FOUND
zimbra-snmp…NOT FOUND
zimbra-store…NOT FOUND
zimbra-apache…NOT FOUND
zimbra-spell…NOT FOUND
zimbra-convertd…NOT FOUND
zimbra-memcached…NOT FOUND
zimbra-proxy…NOT FOUND
zimbra-archiving…NOT FOUND
zimbra-cluster…NOT FOUND
zimbra-core…NOT FOUND

PLEASE READ THIS AGREEMENT CAREFULLY BEFORE USING THE SOFTWARE.
ZIMBRA, INC. (“ZIMBRA”) WILL ONLY LICENSE THIS SOFTWARE TO YOU IF YOU
FIRST ACCEPT THE TERMS OF THIS AGREEMENT. BY DOWNLOADING OR INSTALLING
THE SOFTWARE, OR USING THE PRODUCT, YOU ARE CONSENTING TO BE BOUND BY
THIS AGREEMENT. IF YOU DO NOT AGREE TO ALL OF THE TERMS OF THIS
AGREEMENT, THEN DO NOT DOWNLOAD, INSTALL OR USE THE PRODUCT.

License Terms for the Zimbra Collaboration Suite:
http://www.zimbra.com/license/zimbra_public_eula_2.1.html

Do you agree with the terms of the software license agreement? [N] y

Just accept the software license agreement to continue the installation process.

Checking for prerequisites…
FOUND: NPTL
FOUND: sudo-1.7.2p1-9
FOUND: libidn-0.6.5-1.1
FOUND: gmp-4.1.4-10
FOUND: /usr/lib/libstdc++.so.6
Checking for suggested prerequisites…
FOUND: perl-5.8.8
FOUND: sysstat
FOUND: sqlite
Prerequisite check complete.

Checking for installable packages

Found zimbra-core
Found zimbra-ldap
Found zimbra-logger
Found zimbra-mta
Found zimbra-snmp
Found zimbra-store
Found zimbra-apache
Found zimbra-spell
Found zimbra-memcached
Found zimbra-proxy

Select the packages to install

Install zimbra-ldap [Y]

Install zimbra-logger [Y]

Install zimbra-mta [Y]

Install zimbra-snmp [Y]

Install zimbra-store [Y]

Install zimbra-apache [Y]

Install zimbra-spell [Y]

Install zimbra-memcached [N]

Install zimbra-proxy [N]
I just accept the default. Memcached is automatically selected when the zimbra-proxy is installed. At least one server must run zimbra-memcached when the proxy is in use. All installed zimbra-proxies can use a single memcached server. In this tutorial I don’t install zimbra-proxy.

Checking required space for zimbra-core
checking space for zimbra-store

Installing:
zimbra-core
zimbra-ldap
zimbra-logger
zimbra-mta
zimbra-snmp
zimbra-store
zimbra-apache
zimbra-spell

You appear to be installing packages on a platform different
than the platform for which they were built.

This platform is CentOS5
Packages found: RHEL5
This may or may not work.

Using packages for a platform in which they were not designed for
may result in an installation that is NOT usable. Your support
options may be limited if you choose to continue.

Install anyway? [N] y
The system will be modified. Continue? [N] y
Removing /opt/zimbra
Removing zimbra crontab entry…done.
done.
Cleaning up zimbra init scripts…done.
Cleaning up /etc/ld.so.conf…done.
Cleaning up /etc/prelink.conf…done.
Cleaning up /etc/security/limits.conf…done.

Finished removing Zimbra Collaboration Suite.

Installing packages

zimbra-core……zimbra-core-7.0.0_GA_3077.RHEL5-20110127201734.i386.rpm…done
zimbra-ldap……zimbra-ldap-7.0.0_GA_3077.RHEL5-20110127201734.i386.rpm…done
zimbra-logger……zimbra-logger-7.0.0_GA_3077.RHEL5-20110127201734.i386.rpm…done
zimbra-mta……zimbra-mta-7.0.0_GA_3077.RHEL5-20110127201734.i386.rpm…done
zimbra-snmp……zimbra-snmp-7.0.0_GA_3077.RHEL5-20110127201734.i386.rpm…done
zimbra-store……zimbra-store-7.0.0_GA_3077.RHEL5-20110127201734.i386.rpm…done
zimbra-apache……zimbra-apache-7.0.0_GA_3077.RHEL5-20110127201734.i386.rpm…done
zimbra-spell……zimbra-spell-7.0.0_GA_3077.RHEL5-20110127201734.i386.rpm…done
Operations logged to /tmp/zmsetup.03082011-121509.log
Installing LDAP configuration database…done.
Setting defaults…

DNS ERROR resolving MX for mail.mydomain.com
It is suggested that the domain name have an MX record configured in DNS
Change domain name? [Yes]
Create domain: [mail.mydomain.com] mydomain.com
MX: mail.mydomain.com (192.168.137.2)

Interface: 192.168.137.2
Interface: 127.0.0.1
done.
Checking for port conflicts
Zimbra Main Menu will be shown as follow.

Main menu

1) Common Configuration:
2) zimbra-ldap: Enabled
3) zimbra-store: Enabled
+Create Admin User: yes
+Admin user to create: admin@mydomain.com
******* +Admin Password UNSET
+Anti-virus quarantine user: virus-quarantine.knuolbvduy@mydomain.com
+Enable automated spam training: yes
+Spam training user: spam.rwbsv81z8o@mydomain.com
+Non-spam(Ham) training user: ham.tnyvjvcvlt@mydomain.com
+SMTP host: mail.mydomain.com
+Web server HTTP port: 80
+Web server HTTPS port: 443
+Web server mode: http
+IMAP server port: 143
+IMAP server SSL port: 993
+POP server port: 110
+POP server SSL port: 995
+Use spell check server: yes
+Spell server URL: http://mail.mydomain.com:7780/aspell.php
+Configure for use with mail proxy: FALSE
+Configure for use with web proxy: FALSE
+Enable version update checks: TRUE
+Enable version update notifications: TRUE
+Version update notification email: admin@mydomain.com
+Version update source email: admin@mydomain.com

4) zimbra-mta: Enabled
5) zimbra-snmp: Enabled
6) zimbra-logger: Enabled
7) zimbra-spell: Enabled
8) Default Class of Service Configuration:
r) Start servers after configuration yes
s) Save config to file
x) Expand menu
q) Quit

Address unconfigured (**) items (? – help) 3
As warned above signed by (**) items, the Admin Password is unset. We have to set a password for it.

Store configuration

1) Status: Enabled
2) Create Admin User: yes
3) Admin user to create: admin@mydomain.com
** 4) Admin Password UNSET
5) Anti-virus quarantine user: virus-quarantine.knuolbvduy@mydomain.com
6) Enable automated spam training: yes
7) Spam training user: spam.rwbsv81z8o@mydomain.com
8) Non-spam(Ham) training user: ham.tnyvjvcvlt@mydomain.com
9) SMTP host: mail.mydomain.com
10) Web server HTTP port: 80
11) Web server HTTPS port: 443
12) Web server mode: http
13) IMAP server port: 143
14) IMAP server SSL port: 993
15) POP server port: 110
16) POP server SSL port: 995
17) Use spell check server: yes
18) Spell server URL: http://mail.mydomain.com:7780/aspell.php
19) Configure for use with mail proxy: FALSE
20) Configure for use with web proxy: FALSE
21) Enable version update checks: TRUE
22) Enable version update notifications: TRUE
23) Version update notification email: admin@mydomain.com
24) Version update source email: admin@mydomain.com

Select, or ‘r’ for previous menu [r] 4

Password for admin@mydomain.com (min 6 characters): [d2_mRsiclJ] 1qaz2wsx
I just set a simple password 1qaz2wsx as you can see above. Press Enter and the installation will continue.

Store configuration

1) Status: Enabled
2) Create Admin User: yes
3) Admin user to create: admin@mydomain.com
4) Admin Password set
5) Anti-virus quarantine user: virus-quarantine.knuolbvduy@mydomain.com
6) Enable automated spam training: yes
7) Spam training user: spam.rwbsv81z8o@mydomain.com
8) Non-spam(Ham) training user: ham.tnyvjvcvlt@mydomain.com
9) SMTP host: mail.mydomain.com
10) Web server HTTP port: 80
11) Web server HTTPS port: 443
12) Web server mode: http
13) IMAP server port: 143
14) IMAP server SSL port: 993
15) POP server port: 110
16) POP server SSL port: 995
17) Use spell check server: yes
18) Spell server URL: http://mail.mydomain.com:7780/aspell.php
19) Configure for use with mail proxy: FALSE
20) Configure for use with web proxy: FALSE
21) Enable version update checks: TRUE
22) Enable version update notifications: TRUE
23) Version update notification email: admin@mydomain.com
24) Version update source email: admin@mydomain.com

Select, or ‘r’ for previous menu [r]

Main menu

1) Common Configuration:
2) zimbra-ldap: Enabled
3) zimbra-store: Enabled
4) zimbra-mta: Enabled
5) zimbra-snmp: Enabled
6) zimbra-logger: Enabled
7) zimbra-spell: Enabled
8) Default Class of Service Configuration:
r) Start servers after configuration yes
s) Save config to file
x) Expand menu
q) Quit

*** CONFIGURATION COMPLETE – press ‘a’ to apply
Select from menu, or press ‘a’ to apply config (? – help) a
Save configuration data to a file? [Yes]
Select ‘r’ to go to the previous menu, then ‘a’ to apply configuration and then Yes to save the configuration.

Save config in file: [/opt/zimbra/config.2450]
Saving config in /opt/zimbra/config.2450…done.
The system will be modified – continue? [No] y
Operations logged to /tmp/zmsetup.03082011-121509.log
Setting local config values…done.
Setting up CA…done.
Deploying CA to /opt/zimbra/conf/ca …done.
Creating SSL certificate…done.
Installing mailboxd SSL certificates…done.
Initializing ldap…done.
Setting replication password…done.
Setting Postfix password…done.
Setting amavis password…done.
Setting nginx password…done.
Creating server entry for mail.mydomain.com…done.
Saving CA in ldap …done.
Saving SSL Certificate in ldap …done.
Setting spell check URL…done.
Setting service ports on mail.mydomain.com…done.
Adding mail.mydomain.com to zimbraMailHostPool in default COS…done.
Installing webclient skins…
lavender…done.
waves…done.
bones…done.
sky…done.
steel…done.
beach…done.
bare…done.
smoke…done.
pebble…done.
carbon…done.
oasis…done.
tree…done.
lake…done.
twilight…done.
hotrod…done.
sand…done.
lemongrass…done.
Finished installing webclient skins.
Setting zimbraFeatureTasksEnabled=TRUE…done.
Setting zimbraFeatureBriefcasesEnabled=TRUE…done.
Setting MTA auth host…done.
Setting TimeZone Preference…done.
Initializing mta config…done.
Setting services on mail.mydomain.com…done.
Creating domain mydomain.com…done.
Setting default domain name…done.
Creating domain mydomain.com…already exists.
Creating admin account admin@mydomain.com…done.
Creating root alias…done.
Creating postmaster alias…done.
Creating user spam.rwbsv81z8o@mydomain.com…done.
Creating user ham.tnyvjvcvlt@mydomain.com…done.
Creating user virus-quarantine.knuolbvduy@mydomain.com…done.
Setting spam training and Anti-virus quarantine accounts…done.
Initializing store sql database…done.
Setting zimbraSmtpHostname for mail.mydomain.com…done.
Configuring SNMP…done.
Checking for default IM conference room…not present.
Initializing default IM conference room…done.
Setting up syslog.conf…done.

You have the option of notifying Zimbra of your installation.
This helps us to track the uptake of the Zimbra Collaboration Suite.
The only information that will be transmitted is:
The VERSION of zcs installed (7.0.0_GA_3077_CentOS5)
The ADMIN EMAIL ADDRESS created (admin@mydomain.com)

Notify Zimbra of your installation? [Yes] No
Notification skipped
Starting servers…done.
Installing common zimlets…
com_zimbra_social…done.
com_zimbra_dnd…done.
com_zimbra_srchhighlighter…done.
com_zimbra_attachcontacts…done.
com_zimbra_adminversioncheck…done.
com_zimbra_date…done.
com_zimbra_email…done.
com_zimbra_attachmail…done.
com_zimbra_phone…done.
com_zimbra_cert_manager…done.
com_zimbra_linkedin…done.
com_zimbra_bulkprovision…done.
com_zimbra_webex…done.
com_zimbra_url…done.
Finished installing common zimlets.
Restarting mailboxd…done.
Setting up zimbra crontab…done.

Moving /tmp/zmsetup.03082011-121509.log to /opt/zimbra/log

Configuration complete – press return to exit
The installation has completed. If there is no error found as above the Zimbra Collaboration Suite 7.0.0 GA are ready to use. Try to browse to the server either via its hostname of IP address on port 7071 and use HTTPS, e.g https://mail.mydomain.com:7071/

Use DNSBL on ISPCONFIG


Spam filters are nice, but can consumer 100MB or more of your server RAM. If you have a big server, with 1GB or more of RAM all for yourself, great! If you have a small budget VPS, that can tank your entire setup. Not great! In another post, I just discussed how ClamAV and Amavis can be disabled to save more than 150MB of memory. However, that doesn’t mean you just have to live with spam. Use DNSBL!

Using your favorite text editor (I’m using vi on my Ubuntuo 10.10 VPS), you’ll simply edit one file, then disable the unneeded services via command-line.
Remember your basic vi commands:
Press i to edit the text file.
Press ESC to exit edit mode.
After escaping, type :w to save changes.
Then :q to quit the editor.

To edit the Postfix configuration file, ype this into your shell (SSH) console window:

Code:
vi /etc/postfix/main.cf

Find the line that has this:

Code:
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, check_recipient_access mysql:/etc/postfix/mysql-virtual_recipient.cf, reject_unauth_destination smtpd_tls_security_level = may

and add

Code:
reject_rbl_client zen.spamhaus.org

which gives you a line that now looks like this:

Code:
smtpd_recipient_restrictions = reject_rbl_client zen.spamhaus.org, permit_mynetworks, permit_sasl_authenticated, check_recipient_access mysql:/etc/postfix/mysql-virtual_recipient.cf, reject_unauth_destination smtpd_tls_security_level = may

In this example, I added a single DNSBL entry: zen.spamhaus.org.
However, you can added more. Just be aware that not all DNSBL are safe to use, and will end up blocking some degree of legitimate content. Tread carefully, tread lightly. Don’t be a DNSBL junkie, or you could find yourself with an empty inbox (which may mean missed business, missed contacts from friends/family, etc).

A “more” entry might look like this:

Code:
smtpd_recipient_restrictions = reject_rbl_client zen.spamhaus.org, reject_rbl_client 2.0.0.127.b.barracudacentral.org, permit_mynetworks, permit_sasl_authenticated, check_recipient_access mysql:/etc/postfix/mysql-virtual_recipient.cf, reject_unauth_destination smtpd_tls_security_level = may

Note that “reject_rbl_client” is repeated for each new entry, and then separated by a comma.

After your editing is done, restart postfix. Type this into SSH:

Code:
/etc/init.d/postfix restart

If you see this, you succeeded in making correct changes:

Code:
 * Stopping Postfix Mail Transport Agent postfix ( OK )
 * Starting Postfix Mail Transport Agent postfix ( OK )

If you edited the code improperly, such as not keeping all code on a single line, you may end up with an error message like this:

Code:
 * Stopping Postfix Mail Transport Agent postfix
  postfix: fatal: /etc/postfix/main.cf, line 54: missing '=' after attribute name: "reject_rbl_client zen.spamhaus.org,"

Edit code as needed to fix your mistake.

And that’s it. Very easy. 

A list of all possible DNS blacklists can be found at Wikipedia: http://en.wikipedia.org/wiki/Compari…DNS_blacklists
Though I’m not a big Wikipedia fan, this page does seem to be well maintained. Do note that quite a few DNSBL are pretty terrible, dumping legitimate mail and missing spam. If I had to suggest the best DNSBL, I’d look at Spamhaus (zen), Barracuda (register on the Barricuda site), UCE Protect (L2), and SORBS (recent). The goal is to use as few DNSBL as possible, while also blocking at least 95% of spam.

And, of course, if you run into spam that can all be traced back to specific nuisance IP addresses, you can always use your Firewall.

Hope this helps. 

Read more: http://www.digitalfaq.com/forum/web-tech/3262-edit-postfix-dns.html#ixzz1VVPGahWO

shisdew

Listens until think alike

moses.spaceku@yahoo.com / voip ipbx

Hosted PBX, IP-PBX SOHO/ CALL CENTER, VOICE GATEWAY, VOICE CARD, COST EFECTIVE SOLUTIONS (LCR), GSM/CDMA GATEWAY

%d bloggers like this: