wiki:MailServer

Version 13 (modified by Edwin Eefting, 13 years ago) (diff)

--

Schematische voorstelling van de mailserver

Hierin staan zowel Zarafa als openxchange vermeld als email-backed. Beide kunnen gebruikt worden.

Virus scanner uitzetten

  • Mail op 127.0.0.1 word niet gescanned op virussen.
  • Mail op 127.0.0.2 is een blacklist test-ip. Deze zal altijd geblacklist worden. (zie http://cbl.abuseat.org/faq.html)
  • Mail op 127.0.0.3 word wel gescanned op virussen. Indien amavis e.d. niet geinstalleerd zijn zal het niet mogelijk zijn mail te versturen via 127.0.0.3.

Soms is het nodig de virus scanner uit te zetten of relaying toe te staan. Dit is te veranderen in /etc/qmail/tcp.smtp:

[Syn-3] root@server ~# cat /etc/qmail/tcp.smtp
127.0.0.1:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-queue"
127.0.0.2:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
127.0.0.3:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.16.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.17.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.18.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.19.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.20.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.21.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.22.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.23.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.24.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.25.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.26.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.27.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.28.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.29.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.30.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
172.31.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
192.168.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
10.:allow,RELAYCLIENT="",QMAILQUEUE="bin/qmail-qmqpc"
:allow,QMAILQUEUE="bin/qmail-qmqpc"

Indien QMAILQUEUE op bin/qmail-queue staat, dan gaat inkomende mail niet via amavis, maar direkt naar de mail queue.

Indien u RELAYCLIENT="" toevoegd, kunnen de gespecificeerde hosts de server als mail relay gebruiken.

Vergeet niet de .cdb file opnieuw te genereren:

[Syn-3] root@server ~# tcprules /etc/qmail/tcp.smtp.cdb /etc/qmail/tcp.tmp < /etc/qmail/tcp.smtp

Hierna word de wijziging meteen actief (restarts niet nodig).

Transparant spamfilter

Transparant spamfilter v2

This one has a double queue:

  • First queue catches incoming mail as quickly as possibe and just queues it.
  • It passes it to the second qmail, with a maximum number of parallel processes.
  • This ensures that there are never too much parellel amavis/dspam processes.

To temporary pause the scanning, while still accepting mails: shutdown qmail-send2

performance tuning

  • Mysql is usually the bottleneck: tune /etc/my.cnf to use more memory.
  • Use TOE instead of TEFT/TUM mode. Much faster, but doesnt automaticly learn new spam and get smarter.

Attachments (3)

Download all attachments as: .zip