manualshive.com logo in svg

Symantec 10547849 - Mail Security For SMTP, Installation Manual, Page: 15 / 72

Share
Download
Symantec 10547849 - Mail Security For SMTP Installation Manual Download Page 15

Content Compliance filters scan the message for restricted attachment types,
regular exessions, or keywords as defined in configurable dictionaries.

Spam filters compare message elements with current filters published by
Symantec Security Response to determine whether the message is spam. At
this point, the message may also be checked against end-user defined Language
settings.

The Transformation Engine performs actions per recipient based on filtering
results and configurable Group Policies.

Firewall rules

The following table shows the necessary firewall rules for Symnatec Mail Security.
These assignments may differ slightly depending on your environment and
filtering types (inbound, outbound, or both).

Table 1-2

Firewall rules for Symantec Mail Security

Description

To

From

Protocol

Port

Inbound internet mail traffic

Symantec Mail

Security

Internet

TCP

25

Inbound internal mail traffic

Internal mail

servers

Symantec Mail

Security

TCP

25

Outbound internal mail traffic

Symantec Mail

Security

Internal mail

servers

TCP

25

Outbound internet mail traffic

Internet mail

hosts

Symantec Mail

Security

TCP

25

Rapid response antivirus updates

Internet

Symantec Mail

Security

TCP

21

Default automatic antivirus updates

Internet

Symantec Mail

Security

TCP

80

Rule updates and license registration

Internet

Symantec Mail

Security

TCP

443

LDAP server access to synchronize

users/groups/d-lists

LDAP servers

Symantec Mail

Security

TCP

389

LDAP server access to synchronize

users/groups/d-lists (Global Catalog

Access)

LDAP servers

Symantec Mail

Security

TCP

3268

15

About Symantec Mail Security

Firewall rules

Summary of Contents for 10547849 - Mail Security For SMTP

Page 1: ...Symantec Mail Security for SMTP Installation Guide...

Page 2: ...ocument may be reproduced in any form by any means without prior written authorization of Symantec Corporation and its licensors if any THEDOCUMENTATIONISPROVIDED ASIS ANDALLEXPRESSORIMPLIEDCONDITIONS...

Page 3: ...c software upgrade protection Global support that is available 24 hours a day 7 days a week worldwide Support is provided in a variety of languages for those customers that are enrolled in the Platinu...

Page 4: ...e following URL www symantec com techsupp ent enterprise html Select your region or language under Global Support and then select the Licensing and Registration page Customer service Customer service...

Page 5: ...y Enterprise services that are available include the following These solutions provide early warning of cyber attacks comprehensive threat analysis and countermeasures to prevent attacks before they o...

Page 6: ...To access more information about Enterprise services please visit our Web site at the following URL www symantec com Select your country or language from the site index...

Page 7: ...Solaris or Linux 23 Before you upgrade 25 System requirements 25 Hardware requirements 26 Supported browsers 26 Supported LDAP servers 26 System requirements for Windows 26 System requirements for Sol...

Page 8: ...r 57 Interpreting events in the Information Manager 58 Firewall events that are sent to the Information Manager 59 Definition Update events that are sent to the Information Manager 59 Message events t...

Page 9: ...n through the following features Email Firewall This early response feature improves message throughput by analyzing incoming SMTP connections comparing them to industry generated lists of known hosti...

Page 10: ...protect against suspected viruses spyware and adware and quarantine messages with suspicious encrypted attachments Email messages that may contain viruses can be delayed in the Suspect Virus Quarantin...

Page 11: ...squerading invalid recipient handling and control over delivery queue processing Expanded mail controls Distribution lists automatically expanded mail filtered and delivered correctly for each user Al...

Page 12: ...gs for relaying inbound and outbound mail Delivery MTA The component that receives inbound mail and forwards it to the Filtering Hub for processing Inbound MTA The component that receives outbound mai...

Page 13: ...The Control Centrer also hosts the Spam and Suspect Virus Quarantines to isolate and store spam and virus messages respectively End users can view their quarantined spam messages and set their prefere...

Page 14: ...ueue The Filtering Hub accepts a copy of the message for filtering The Filtering Hub consults the LDAP SyncService directory to expand the message s distribution list The Filtering Engine determines e...

Page 15: ...oth Table 1 2 Firewall rules for Symantec Mail Security Description To From Protocol Port Inbound internet mail traffic Symantec Mail Security Internet TCP 25 Inbound internal mail traffic Internal ma...

Page 16: ...web addresses Description Port Protocol URL Used to register Symantec Mail Security 443 TCP register brightmail com Used to retrieve filters 443 TCP aztec brightmail com Used to retrieve automatic ant...

Page 17: ...nloads and mailing list subscriptions www symantec com licensing els help en help html Provides information about registration frequently asked questions how to respond to error messages and how to co...

Page 18: ...About Symantec Mail Security Where to get more information 18...

Page 19: ...more Scanners Setting mail filtering policies Testing Scanners Accessing the Control Center Areas of localization Uninstalling Symantec Mail Security for SMTP Before you install Before you install Sy...

Page 20: ...urity for SMTP installation process to do this you must specify a custom installation On Windows the C windows tmp directory On Linux and Solaris anything under var tmp For information on excluding di...

Page 21: ...ed there Checking for Tomcat or MySQL installations Ensure that there are no installations of Tomcat or MySQL on the machine before you begin the installation process To check on Linux type rpm qa egr...

Page 22: ...u can save the following data Whitelist and blacklist data Local Routing list data Anti Relay list data The custom whitelist data is stored in the file named SMSSMTP_cw txt file The autogenerated whit...

Page 23: ...localhost If you do not do so you will see the following error at the end of the Setup Wizard Could not resolve the Control Center host name into an IP address Please check your network settings Crea...

Page 24: ...add r postdrop groupadd r postfix useradd c MySQL user r g mysql mysql useradd c Postfix user r g postfix postfix Users and groups for a Scanner installation Create the following users and groups for...

Page 25: ...ithout the doublebyte characters If your existing installation is installed in a location that includes doublebyte characters in the pathname you will not be able to upgrade you must uninstall and the...

Page 26: ...ter access Internet Explorer 6 0 Firefox 1 5 Note You must enable cookies in your browser for Control Center to function correctly Supported LDAP servers Symantec Mail Security for SMTP supports the f...

Page 27: ...freeware com and other Web sites Solaris 10 System requirements for Linux Symantec Mail Security for SMTP is supported on the following versions of Linux Red Hat AS 3 and 4 Red Hat ES 3 and 4 Installi...

Page 28: ...nstall Symantec Mail Security for SMTP in the following configurations Typical which installs both the Scanner and Control Center on the same machine in a location you specify with subcomponents under...

Page 29: ...lick Next If you are installing both a Scanner and the Control Center on this machine proceed to step 12 If you are installing a Scanner individually with no Control Center on this machine the Control...

Page 30: ...directories as described at the end of Uninstalling from Linux and Solaris before proceeding To install Symantec Mail Security for SMTP on Solaris or Linux 1 As root or using sudo type install The in...

Page 31: ...1 If you selected the custom installation configuration in step5 the Feature Selection panel is displayed Proceed to step 7 7 If you are installing both a Scanner and the Control Center type 0 to pro...

Page 32: ...y the list of installation parameters and type 3 to complete the installation The installation completes and the components you have installed are started automatically A log of the installation is pl...

Page 33: ...ant to operate the Quarantine and end user views of the Control Center Select the language you wish to use from the drop down list on the login page To display Quarantine and other end user pages corr...

Page 34: ...nd ongoing operations Symantec Mail Security for SMTP communicates with Symantec Security Response over a secure connection If registration has failed ensure that your network is configured to permit...

Page 35: ...mantec Mail Security for SMTP should use for formatting numbers dates and times and then click Next If you are setting up a Control Center only installation you will now see the Setup Wizard Summary p...

Page 36: ...ner will accept inbound mail You can choose All IP addresses or specify IP addresses or hostnames A typical choice would be AllIPaddresses thus allowing the Scanner to accept mail from any MTA on the...

Page 37: ...filtering you must set this to an alternate port so that it does not conflict with the port used for inbound filtering You can use the Test button to ensure that the mail server responds The Test but...

Page 38: ...without saving any changes When the configuration is complete the Scanner will contact Symantec to download the latest antispam filters and antivirus definitions and the default antivirus definition d...

Page 39: ...Registration page is redisplayed If there was an error you will see error text at the top of the page For registration and ongoing operations Symantec Mail Security for SMTP communicates with Symantec...

Page 40: ...he Scanner to accept mail from any MTA on the Internet If you specify one or more IP addresses you must include the IP address of the Control Center so that Spam Quarantine and Suspect Virus Quarantin...

Page 41: ...his port is different from the one you specified for inbound mail You can use the Test button to ensure that the mail server responds The Test button scans the local network TCP table to see if an add...

Page 42: ...n is complete the Scanner will contact Symantec to download the latest antispam filters and antivirus definitions and the default antivirus definition download schedule will be in place if you have in...

Page 43: ...n place No end user configuration capabilities are in place For more information on these policies and instructions on adjusting them to meet your needs see the Symantec Mail Security for SMTP Adminis...

Page 44: ...n 5 In the Password box type your administrative password The initial default password is symantec Contact your system administrator if you do not know the password 6 Click Login Warning Do not create...

Page 45: ...of other languages are displayed underlined and highlighted Click the name of another language to use that language instead 4 In the User name box type your full email address for example kris example...

Page 46: ...e 41443 brightmail where hostname is the hostname of the Control Center Or you can use the IP address in place of hostname You may see a security alert message 2 If you see a security alert message ac...

Page 47: ...owser window to clear your browser s memory Having trouble logging in or out If you are having trouble logging in or logging out consider the following When logging in make sure you type your user nam...

Page 48: ...or domain names or names of third party allowed sender services In Attachment Lists Add attachment type entries for MIME type and File name In Notifications under Notification Content entries in the...

Page 49: ...MTP Uninstall SMS for SMTP The uninstaller is launched All Symantec Mail Security for SMTP processes are stopped by the uninstaller A number of files and directories will remain after the uninstaller...

Page 50: ...eate them The following directories files will remain common install_log txt jre ldapsync mta mysql scanner tomcat On Solaris the _jvm directory is also left behind Warning If you are uninstalling and...

Page 51: ...ther products remove only the one for Symantec Mail Security for SMTP otherwise you can remove the entire InstallShield directory 51 Installing Symantec Mail Security for SMTP Uninstalling Symantec Ma...

Page 52: ...Installing Symantec Mail Security for SMTP Uninstalling Symantec Mail Security for SMTP 52...

Page 53: ...with additional features such as invoking the custom installation scenario are available on the product CD in the tools options_files directory Note If you use an options file for silent upgrade on Wi...

Page 54: ...ns file is to run the wizard in silent mode This lets the options file author specify wizard settings without having to run the wizard in graphical or console mode To use this options file for silent...

Page 55: ...t P installLocation opt Symantec SMSSMTP Custom Dialog InstallType The Installation Type to be used when installing the product Stored as a Variable and must be set with V V IS_SELECTED_INSTALLATION_T...

Page 56: ...al values are true Indicates that the feature is selected for installation false Indicates that the feature is not selected for installation For example to select Scanner for installation use P bean32...

Page 57: ...Manager appliance for event management and correlation Symantec Security Information Manager SSIM integrates multiple Symantec Enterprise Security products and third party products to provide a centra...

Page 58: ...wledge Base also suggests tasks that you can assign to a help desk ticket for resolution Symantec Security Information Manager is purchased and installed separately The appliance must be installed and...

Page 59: ...ll_network Informational SES_DETAIL_CONNECTION_REJECTED 517242 Connection Deferred symc_firewall_network Informational SES_DETAIL_CONNECTION_REJECTED 517247 Definition Update events that are sent to t...

Page 60: ...e Informational SES_EVENT_LIST_UPDATE 92009 Message events that are sent to the Information Manager Table B 3 lists the message events that Symantec Mail Security for SMTPcan send to the Information M...

Page 61: ...y for SMTP can send to the Information Manager Table B 4 Administration events that are sent to the Information Manager Rule Description Reason sent Event class Severity Event ID SES_EVENT_ Unique ID...

Page 62: ...ANGE 92008 Change grouppolicy symc_config_update Informational SES_EVENT_CONFIGURATION_CHANGE 92008 Antispam filters old symc_defupdate Minor SES_EVENT_LIST_UPDATE_FAILED 92059 Antivirus filters old s...

Page 63: ...CHANGE 92008 Administrator account change symc_config_update Informational SES_EVENT_CONFIGURATION_CHANGE 92008 Virus outbreak symc_config_update Major SES_EVENT_VIRUS 122000 Installing and configurin...

Page 64: ...ation interface provides a link that you can use to download and install the SIP Integration Wizard The wizard installs SSIM Integration Packages SIPs for Symantec Mail Security for SMTP The SIP conta...

Page 65: ...stination path where the SSIM Agent will be installed If you omit this parameter the SSIM Agent will be installed in the default folder which is C Program Files Symantec SESA Agent example setup exe s...

Page 66: ...ollowing command from the product CD collectors sms_smtp install install bat You can view the installation logs in installcollector log in the Information Manager Agent folder To install the Collector...

Page 67: ...ats Filename Monitor in Real Time Configure as Table B 6 describes the settings for Firewall statistics Table B 6 Settings for Firewall statistics Value Setting Firewall stats Type opt Symantec SMSSMT...

Page 68: ...Information Manager Collector on Windows 1 Ensure that you are logged into the Symantec Mail Security for SMTP machine on the console or via SSH as an administrative user 2 Insert the Symantec Mail S...

Page 69: ...r the contents of the Agents Unix tar gz file into the Agent folder 3 Navigate to the Agents directory on the product CD and copy the Unix tar gz file to a temporary directory on the hard drive After...

Page 70: ...Integrating Symantec Mail Security with Symantec Security Information Manager Uninstalling Information Manager components 70...

Page 71: ...l overview overview 12 H help 17 I Information Manager uninstall 68 installation Symantec Security Information Manager Agent 64 K key features overview 9 L local domains initial settings 35 M mail fil...

Page 72: ...SymantecSecurityInformationManager Symantec Security Information Manager about 57 events 58 install Agent 64 T time settings 35 Transformation Engine 13 U uninstall Symantec Security Information Manag...

Reviews:

No comments