Pages

Thursday, April 21, 2016

Zimbra Disclaimer Setup

Enable the use of disclaimers

 su zimbra
zmprov mcf zimbraDomainMandatoryMailSignatureEnabled TRUE

 The above command will enable disclaimer feature enabled for your zimbra mail server.




Checking the statuszmprov gcf zimbraDomainMandatoryMailSignatureEnabled
Now add HTML Disclaimer messagezmprov md example.com zimbraAmavisDomainDisclaimerHTML "Disclaimer message here"

 Add TEXT Disclaimer messagezmprov md example.com zimbraAmavisDomainDisclaimerText "Disclaimer message here"
Check the disclaimer message
zmprov gd example.com zimbraAmavisDomainDisclaimerText zimbraAmavisDomainDisclaimerHTML

 exit

 Now implement the disclaimer to specific domain
cd /opt/zimbra/
su zimbra./libexec/zmaltermimeconfig -e example.com

Now check the status using Webmail / Email client software.


Posted by at No comments:
Labels:

Tuesday, April 12, 2016

Allow Services inside Cisco ASA

Sometimes we need to allow requests from Internet to a connected host serving specific service behind a Cisco ASA firewall. Here is a scenario...






In short,
External Interface IP: 222.0.0.10
Internal Interface IP: 111.0.0.1
FTP Server: 111.0.0.2
Web Server: 111.0.0.3

The tasks are given in above image. Here is how to do that...

First assign IP addresses and name the interfaces accordingly.

interface GigabitEthernet0/0
 nameif WAN-Interface
 security-level 0
 ip address 222.0.0.10 255.255.255.252

interface GigabitEthernet0/1
 nameif LAN-Interface
 security-level 20
 ip address 111.0.0.1 255.255.255.240



Now create extended access lists with required permission to hosts and services you required.

 access-list PUBLIC-FW-IN extended permit tcp any host 111.0.0.2 eq ftp
access-list PUBLIC-FW-IN extended permit tcp any host 111.0.0.3 eq http


 You may see there is no recognized service / port in your ASA for permitting a specific service. For that you have to create a object-group mentioning the port in it. Check below.

object-group service RDP tcp
 port-object eq 3389

Now create access list for permitting that service.

access-list PUBLIC-FW-IN extended permit tcp any host 111.0.0.3 object-group RDP


So.. We already finished creating access lists with required permission. Now we are going to implement it according to traffic direction.

access-group PUBLIC-FW-IN in interface WAN-Interface
access-group PUBLIC-FW-IN in interface LAN-Interface


Now check all the services from internet cloud... Good day..


Posted by at No comments:
Labels: ,

Monday, April 11, 2016

Zimbra Outgoing mail alias

Edit and add following line in /opt/zimbra/postfix/conf/main.cf

sender_bcc_maps = lmdb:/opt/zimbra/postfix/conf/sender_bcc
<save and exit>
Now add ougoing mail BCC as below.
#vim /opt/zimbra/postfix/conf/sender_bcc

john@zimbra.com                 mumtaz@zimbra.com
faruk@zimbra.com                mumtaz@zimbra.com
<save and exit>

 Change the ownership of newly created file.
#chown zimbra:zimbra /opt/zimbra/postfix/conf/sender_bcc
Make db file of sender_bcc to work with Zimbra Postfix.
#su zimbra

 #postmap /opt/zimbra/postfix/conf/sender_bcc

Apply above changes now....

 $postfix reload

 Now check and enjoy...
Posted by at No comments:
Labels:
Subscribe to: Posts (Atom)