Documente Academic
Documente Profesional
Documente Cultură
################################################################################
######################################
Configurar el Servidor DNS
---------------------------------------------$> vim /etc/sysconfig/network-scripts/ifcfg-br0
DNS1=192.168.100.4
$> systemctl restart NetworkManager
$> dig MX dominioX.com
$> dig MX dominio2.com
$> ping mail.dominioX.com
$> ping mail.dominio2.com
Configurar el Hostname
-----------------------------$> hostnamectl set-hostname mail.dominioX.com
$> su $> hostnamectl
Editar la Ip del Host
----------------------------------------$> vim /etc/hosts
127.0.0.1 localhost.localdomain localhost
192.168.130.X mail.dominioX.com mail
192.168.130.X www.dominioX.com www
Instalar Epel
------------------------------------------------------------$> yum -y install epel-release
Deshabilitar rpmforge, si est instalado
$> vim /etc/yum.repos.d/rpmforge.repo
-----------------------------------------------------------[rpmforge]
name = RHEL $releasever - RPMforge.net - dag
baseurl = http://apt.sw.be/redhat/el7/en/$basearch/rpmforge
mirrorlist = http://mirrorlist.repoforge.org/el7/mirrors-rpmforge
#mirrorlist = file:///etc/yum.repos.d/mirrors-rpmforge
enabled = 0
protect = 0
gpgkey = file:///etc/pki/rpm-gpg/RPM-GPG-KEY-rpmforge-dag
gpgcheck = 1
------------------------------------------------------------Instalar los paquetes necesarios
################################################################################
########################
2) Instalar Paquetes (Postfix,Dovecot,Amavis,SASL,Clamav,Spamassassin)
$> yum -y install postfix cyrus-sasl cyrus-sasl-plain cyrus-sasl-md5 dovecot ama
visd-new spamassassin clamd clamav
Configurar Postfix
$> cd /etc/postfix
$> vim main.cf
------------------------------------------------------------------75:myhostname = mail.dominioX.com
83:mydomain = dominioX.com
98:myorigin = $myhostname
116:inet_interfaces = all
164:mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain
264:mynetworks = 192.168.130.169/32, 127.0.0.0/8
296:relay_domains = $mydestination
397:alias_database = hash:/etc/aliases
419:home_mailbox = Maildir/
# Agregar al final del archivo
680:# Habilitando opciones de SASL
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_local_domain = $myhostname
broken_sasl_auth_clients = yes
# Restriccion de los recipientes de correo
# le da permiso de envio a la red local
smtpd_recipient_restrictions = permit_mynetworks
# permte el envio de correos de usuarios autenticados con sasl
permit_sasl_authenticated
# rechaza intentos de envio que no estan autenticados
reject_unauth_destination
# configuracion de listas negras revisar http://multirbl.valli.org/
#
reject_rbl_client zen.spamhaus.org
#
reject_rbl_client b.barracudacentral.org
#
reject_rbl_client dnsbl.sorbs.net
#
# Rechaza un nombre de Host no valido ej: ,_esto.--reject_invalid_hostname
# Rechaza si el dominio de que envia no existe
reject_unknown_sender_domain
# Rechaza si el hostname de usuario que envia correo no tiene PTR
reject_unknown_client
# Rechaza si el nombre de cuenta que envia no es valido (ej: soyspammer@)
reject_non_fqdn_sender
# permite finalmente la recepcion del correo
permit
# Hablitamos la opcin de filtro de contenidos
content_filter = amavis:[127.0.0.1]:10024
----------------------------------------------------------------------Configuracion de dovecot
-------------------------------------------$> vim /etc/dovecot/dovecot.conf
24:protocols = imap pop3 lmtp
30:listen = *, ::
$> vim /etc/dovecot/conf.d/10-auth.conf
10:disable_plaintext_auth = no
$> vim /etc/dovecot/conf.d/10-mail.conf
30:mail_location = maildir:~/Maildir
Prueba del SMTP y del servidor mailbox
-----------------------------------------$> yum -y install cyrus-sasl
$>
$>
$>
$>
$>
$>
systemctl
systemctl
systemctl
systemctl
systemctl
systemctl
restart saslauthd
restart postfix
restart dovecot
enable saslauthd
enable postfix
enable dovecot
Configuracin Amavis
---------------------------------------------$> vim /etc/amavisd/amavisd.conf
20:$mydomain = 'dominioX.com';
## Niveles de marcado y asesinato mas positvo es mas SPAM,
94:$sa_tag_level_deflt = 2.0; # add spam info headers if at, or above that lev
el
95:$sa_tag2_level_deflt = 3.0; # add 'spam detected' headers at that level
96:$sa_kill_level_deflt = 5.0; # triggers spam evasive actions (e.g. blocks mai
l
## Etiqueta que se le pone al SUbject los correos que son considerados SPAM
141:$sa_spam_subject_tag = '***SPAM*** ';
### Destino final de los correos que son SPAM, virus o baneados por extension
157:$final_virus_destiny
= D_DISCARD;
158:$final_banned_destiny
= D_BOUNCE;
159:$final_spam_destiny
= D_PASS;
160$final_bad_header_destiny = D_PASS;
### Extensiuones de archivo bloquedas
233: qr'.\.(exe|vbs|pif|scr|cpl)$'i,
=> 5.0,
=> 5.0,
ifmail
unix n
n
pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp
unix n
n
pipe
flags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop $recipient
amavis unix - - - - 2 smtp
-o smtp_data_done_timeout=1200
-o smtp_send_xforward_command=yes
127.0.0.1:10025 inet n - - - - smtpd
-o content_filter=
-o local_recipient_maps=
-o relay_recipient_maps=
-o smtpd_restriction_classes=
-o smtpd_client_restrictions=
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o mynetworks=127.0.0.0/8
-o strict_rfc821_envelopes=yes
-o receive_override_options=no_unknown_recipient_checks,no_header_body_chec
ks
-o smtpd_bind_address=127.0.0.1
Configuracin de Clamav
###############################################################33
$> yum -y install clamav-update
Comentar la linea EXAMPLE
$> vim /etc/freshclam.conf
8:#Example
Actualizar la data de virus
------------------------------------------------$> freshclam
Archivo de configuracion de servicio
---------------------------------------$> cp /usr/share/doc/clamav-server*/clamd.sysconfig /etc/sysconfig/clamd.amavisd
$> vim /etc/sysconfig/clamd.amavisd
CLAMD_CONFIGFILE=/etc/clamd.d/amavisd.conf
CLAMD_SOCKET=/var/run/clamd.amavisd/clamd.sock
$> vim /etc/tmpfiles.d/clamd.amavisd.conf
---------------------------------------------# create new
d /var/run/clamd.amavisd 0755 amavis amavis ---------------------------------------------$> vim /usr/lib/systemd/system/clamd@.service (Agregar al final)
[Install]
WantedBy=multi-user.target
Inicio de los Servicios
----------------------------------------------------$> systemctl restart saslauthd
$> systemctl restart postfix
$>
$>
$>
$>
systemctl
systemctl
systemctl
systemctl
start clamd@amavisd
restart spamassassin
restart amavisd
restart dovecot
$>
$>
$>
$>
$>
$>
systemctl
systemctl
systemctl
systemctl
systemctl
systemctl
enable
enable
enable
enable
enable
enable
saslauthd
postfix
clamd@amavisd
spamassassin
amavisd
dovecot