1. Manuals
  2. Brands
  3. Symantec Manuals
  4. Software
  5. 10547849 - Mail Security For SMTP
  6. Installation manual

Symantec 10547849 - Mail Security For SMTP Installation Manual

Installation guide
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
Symantec Mail Security for
SMTP Installation Guide

Advertisement

Table of Contents
loading

Related Manuals for Symantec 10547849 - Mail Security For SMTP

Summary of Contents for Symantec 10547849 - Mail Security For SMTP

  • Page 1 Symantec Mail Security for SMTP Installation Guide...

  • Page 2: Legal Notice

    Federal acquisitions: Commercial Software - Government Users Subject to Standard License Terms and Conditions. Symantec, the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.

  • Page 3: Technical Support

    The Technical Support group also authors content for our online Knowledge Base. The Technical Support group works collaboratively with the other functional areas within Symantec to answer your questions in a timely fashion. For example, the Technical Support group works with Product Engineering and Symantec Security Response to provide alerting services and virus definition updates.

  • Page 4: Customer Service

    Troubleshooting that was performed before contacting Symantec Recent software configuration changes and network changes Licensing and registration If your Symantec product requires registration or a license key, access our technical support Web page at the following URL: www.symantec.com/techsupp/ent/enterprise.html Select your region or language under Global Support, and then select the Licensing and Registration page.
  • Page 5 North America and Latin America: supportsolutions@symantec.com Additional Enterprise services Symantec offers a comprehensive set of services that allow you to maximize your investment in Symantec products and to develop your knowledge, expertise, and global insight, which enable you to manage your business risks proactively.
  • Page 6 To access more information about Enterprise services, please visit our Web site at the following URL: www.symantec.com Select your country or language from the site index.

  • Page 7: Table Of Contents

    Architecture ................13 Firewall rules ................15 Where to get more information ............16 Chapter 2 Installing Symantec Mail Security for SMTP Before you install ................. 19 Before you install on any platform ..........19 Before you install on Windows ..........22 Before you install on Solaris or Linux .........
  • Page 8 Having trouble logging in or out? ..........47 Areas of localization ..............47 Importing configuration files ........... 48 Configuring system locale ............49 Uninstalling Symantec Mail Security for SMTP ........49 Uninstalling from Windows ............49 Uninstalling from Linux and Solaris .......... 50 Appendix A Sample options file About the sample options file ............

  • Page 9: About Symantec Mail Security

    Antispam technology – Symantec's state-of-the-art spam filters assess and classify email as it enters your site. Antivirus technology – Virus definitions and engines protect your users from...

  • Page 10: New Features

    New features The following table lists the features that have been added to this version of Symantec Mail Security: New features for Symantec Mail Security (all users) Table 1-1 Category Features...
  • Page 11 About Symantec Mail Security New features New features for Symantec Mail Security (all users) (continued) Table 1-1 Category Features Description Support for Specify conditions that result in email being sent to Enterprise Vault and an archival email address or disk location.

  • Page 12: Functional Overview

    Filtering Hub for processing. You can deploy Symantec Mail Security in different configurations to best suit the size of your network and your email processing needs. Note: Symantec Mail Security provides neither mailbox access for end users nor message storage.

  • Page 13: Architecture

    A single Symantec Mail Security host performs both functions. Center Note: Symantec Mail Security does not filter messages that do not flow through the SMTP gateway. For example, when two mailboxes reside on the same MS Exchange Server, or on different MS Exchange Servers within an Exchange organization, their messages will not pass through the Symantec Mail Security filters.
  • Page 14 About Symantec Mail Security Architecture Symantec Mail Security architecture Figure 1-1 Messages proceed through the installation in the following way: The incoming connection arrives at the inbound MTA via TCP/IP. The inbound MTA accepts the connection and moves the message to its inbound queue.

  • Page 15: Firewall Rules

    Spam filters compare message elements with current filters published by Symantec Security Response to determine whether the message is spam. At this point, the message may also be checked against end-user defined Language settings.

  • Page 16: Where To Get More Information

    Used to retrieve Rapid Response antivirus updates Where to get more information The Symantec Mail Security documentation set consists of the following manuals: Symantec Mail Security Administration Guide Symantec Mail Security Planning Guide Symantec Mail Security Installation Guide Symantec Mail Security Getting Started...
  • Page 17 Symantec Mail Security also includes a comprehensive help system that contains conceptual and procedural information. You can visit the Symantec Web site for more information about your product. The following online resources are available: Provides access to the technical support Knowledge www.symantec.com/enterprise/support...
  • Page 18 About Symantec Mail Security Where to get more information...

  • Page 19: Installing Symantec Mail Security For Smtp

    Areas of localization Uninstalling Symantec Mail Security for SMTP Before you install Before you install Symantec Mail Security for SMTP, you must perform some pre-installation tasks. Before you install on any platform The following are pre-installation tasks for both Windows and Linux/Solaris:...
  • Page 20 At a minimum, you must configure any other antivirus program to exclude the following directories from scanning: The MTA data directory (which you can specify during the Symantec Mail Security for SMTP installation process — to do this, you must specify a ‘custom’...
  • Page 21 ESTABLISHED Note: If the port is in use by the IIS SMTP Virtual Server, you do not need to remove it, as it is required for, and operates compatibly with Symantec Mail Security for SMTP. To determine whether the port is in use by IIS SMTP Virtual Server, click Programs>Administrative Tools>Internet Information Services, then expand...

  • Page 22: Before You Install On Windows

    Saving data from Symantec Mail Security for SMTP 4.x (optional) If you wish to keep data from your existing installation of Symantec Mail Security for SMTP 4.x for use in this version, you must save the data files from your existing installation before you uninstall it.

  • Page 23: Before You Install On Solaris Or Linux

    Creating the necessary users and groups You must create the users and groups that Symantec Mail Security for SMTP will use. These users require a shell, but do not require login access, so you do not have to define a password for them.
  • Page 24 Installing Symantec Mail Security for SMTP Before you install There is no user for the group. postdrop To create this user and these groups on Solaris Use the following commands: $ su Password: <your_root_password> # groupadd mysql # groupadd postdrop # groupadd postfix # useradd -c "MySQL user"...

  • Page 25: Before You Upgrade

    # useradd -c "Dummy user for SMS for SMTP" -d /opt/Symantec/ SMSSMTP/scanner -m -r -G bmi,avdefs mailwall If you are reinstalling this version of Symantec Mail Security for SMTP on this machine, and did not explicitly remove the users and groups that you created for the previous installation, you do not have to recreate them.

  • Page 26: Hardware Requirements

    Installing Symantec Mail Security for SMTP System requirements A fully qualified domain name is required for each computer running Symantec Mail Security for SMTP. A UTF-8 compliant application for reading logs and other exported files. Hardware requirements Symantec Mail Security for SMTP has the following hardware requirements:...

  • Page 27: System Requirements For Solaris

    Windows Server 2003 SP1 Windows 2003 Server R2 System requirements for Solaris Symantec Mail Security for SMTP is supported on the following versions of Solaris: Solaris 9 If you are running Solaris 9, you must apply patch 115697-02. The patch is available here: http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-115697-02-1...
  • Page 28 Next. The Installation Type panel is displayed. You can choose to install Symantec Mail Security for SMTP in the following configurations: Typical, which installs both the Scanner and Control Center on the same...
  • Page 29 Installing Symantec Mail Security for SMTP Installing on Windows If you are installing both a Scanner and the Control Center, click Next, otherwise, uncheck the box for the component you are not installing, and then click Next. If you are installing the Control Center only, proceed to step 11.

  • Page 30: Installing On Solaris And Linux

    Use the Enter key to page through the license agreement text. Type to accept the license agreement, then type and then to proceed. The Installation Type screen is displayed. You can choose to install Symantec Mail Security for SMTP in the following configurations:...
  • Page 31 Installing Symantec Mail Security for SMTP Installing on Solaris and Linux Typical , which installs both the Scanner and Control Center on the same machine in a location you specify, with subcomponents under that location, Custom, which allows you to install a Scanner or the Control Center...

  • Page 32: Setting Up

    Installing Symantec Mail Security for SMTP Setting up If you are installing both a Scanner and the Control Center on this machine, proceed to step 13. If you are installing a Scanner individually (with no Control Center on this machine), the Control Center IP panel is displayed. You must provide a specific IP address, CIDR, or subnet mask from which the Control Center is allowed to access this Scanner.

  • Page 33: Logging In

    To complete registration, you need one or more license files (.slf files) provided to you by Symantec (depending on the product features you have purchased, you may receive multiple license files). Place the file(s) on the computer from which...

  • Page 34: Configuring Your System

    Select your .slf file and click Open to return to the License Registration page. If your installation will be using a proxy server for communications with Symantec, check the Use HTTP Proxy box and complete the proxy configuration fields. Click Register.
  • Page 35 Click Next. The System Locale panel is displayed. Specify the locale that Symantec Mail Security for SMTP should use for formatting numbers, dates, and times, and then click Next. If you are setting up a Control Center-only installation, you will now see the Setup Wizard Summary panel.
  • Page 36 Installing Symantec Mail Security for SMTP Setting up You can choose to filter inbound mail, outbound mail, or both. If you choose to filter inbound mail, you will see the Inbound Mail Filtering panel. Proceed with step 2. If you choose to filter outbound mail only, you will see the Outbound Mail Filtering panel.
  • Page 37 Installing Symantec Mail Security for SMTP Setting up On the Inbound Mail Filtering - Local Relay panel, specify the internal host to which this Scanner will relay inbound mail after filtering is complete. You can define a new host or select a host from the list. A typical value is a downstream mail server such as your corporate mail server.

  • Page 38: Setting Up A Scanner

    (if you have installed an antivirus license). You can alter this schedule from the Control Center. Refer to the Symantec Mail Security for SMTP Administration Guide for more information. Setting up a Scanner The instructions in this section only apply if you are adding a Scanner on a machine different from the one hosting your Control Center.
  • Page 39 Select your .slf file and click Open to return to the License Registration page. If your Scanner will be using a proxy server for communications with Symantec, check the Use HTTP Proxy box and complete the proxy configuration fields. Click Register.
  • Page 40 Installing Symantec Mail Security for SMTP Setting up Click Next and proceed with To specify outbound mail filtering settings On the Inbound Mail Filtering panel, choose the IP address to use for inbound mail. You can use the Test button to ensure that the mail server responds.
  • Page 41 Installing Symantec Mail Security for SMTP Setting up On the Inbound Mail Filtering - Local Relay panel, specify the internal host to which this Scanner will relay inbound mail after filtering is complete. You can select a host from the list or define a new host. A typical value is a downstream mail server such as your corporate mail server.

  • Page 42: Completing Setup

    Setting up a Scanner. Setting mail filtering policies When you set up Symantec Mail Security for SMTP, a set of ready-made default message filtering policies are in place. You can use these policies or customize them. The initial default policies are as follows:...

  • Page 43: Testing Scanners

    The default suspected spam policy is to modify the subject line by prepending [Suspected Spam] and deliver the message to the inbox. The suspected spam threshold is set to 72 (see Symantec Mail Security for SMTP Administration Guide for more information).
  • Page 44 To log in as an end user with an iPlanet or Sun ONE Directory Server Warning: To do this, LDAP authentication must be enabled. Refer to the Symantec Mail Security for SMTP Administration Guide for more information on LDAP...
  • Page 45 Installing Symantec Mail Security for SMTP Accessing the Control Center Access your Control Center from a browser. The default login address is: https:// :41443/ <hostname> where is the hostname of the machine on which you installed <hostname> the Control Center. You can also use the IP address in place of .You...
  • Page 46 Installing Symantec Mail Security for SMTP Accessing the Control Center If necessary, choose the language in which you want to operate the Control Center. Below the text entry fields you will see a list of names of languages. The name of the language currently in use is displayed in normal text.

  • Page 47: Logging Out

    Installing Symantec Mail Security for SMTP Areas of localization To determine your primary email address for Exchange 5.5, check the following in Outlook 2000 or Outlook 2003 Click Tools, click Address Book. Type your name in the Type Name or Select from List box.

  • Page 48: Importing Configuration Files

    Installing Symantec Mail Security for SMTP Areas of localization Note: Symantec Mail Security for SMTP does not support installation paths containing doublebyte charaters. You must install it into a location that is named with US-ASCII characters only. End users will view the Control Center in the language they selected at login.

  • Page 49: Configuring System Locale

    Symantec Mail Security for SMTP includes an uninstallation tool. Use the following instructions to uninstall the application. Uninstalling from Windows An uninstaller is included in the Symantec Mail Security for SMTP product when you install it on your Windows machine. To uninstall Symantec Mail Security for SMTP from a Windows machine Click Start >...

  • Page 50: Uninstalling From Linux And Solaris

    Uninstalling Symantec Mail Security for SMTP Uninstalling from Linux and Solaris To uninstall Symantec Mail Security for SMTP from a Linux or Solaris machine, you must know the location of its installation directory, sometimes called the LOADPOINT. To find this location, type...
  • Page 51 Installing Symantec Mail Security for SMTP Uninstalling Symantec Mail Security for SMTP are directories for other products, remove only the one for Symantec Mail Security for SMTP, otherwise, you can remove the entire InstallShield directory.
  • Page 52 Installing Symantec Mail Security for SMTP Uninstalling Symantec Mail Security for SMTP...

  • Page 53: Sample Options File

    Appendix Sample options file This appendix includes the following topics: About the sample options file About the sample options file The following is a sample options file for use with the command line -options installation flag. You must edit the contents of this file to replace the default values provided with the values you want to use for your installation.
  • Page 54 Sample options file About the sample options file ################################################################### # InstallShield Options File # Wizard name: Install # Wizard source: assembly.dat # Created on: Thu Sep 29 11:12:53 PDT 2005 # Created by: InstallShield Options File Generator # This file contains values that were specified during a recent # execution of Install.
  • Page 55 About the sample options file -V LICENSE_REJECT_BUTTON=“false” ################################################################### # Symantec Mail Security for SMTP 5.0 Install Location # The install location of the product. Specify a valid directory # into which the product should be installed. If the directory # contains spaces, enclose it in double-quotes. For example, to # install the product to C:\Program Files\My Product, use -P installLocation=“C:\Program Files\My Product”...
  • Page 56 Sample options file About the sample options file -P feature1.active=true ################################################################### # “Scanner” Feature # The selection state of the “Scanner” feature. Legal values are: true - Indicates that the feature is selected for installation false - Indicates that the feature is not selected for # installation # For example, to select “Scanner”...

  • Page 57: Integrating Symantec Mail Security With Symantec Security Information Manager

    Uninstalling Information Manager components About Symantec Security Information Manager In addition to using the Symantec Mail Security for SMTP logging features, you can also log events to the Symantec Security Information Manager appliance for event management and correlation. Symantec Security Information Manager (SSIM) integrates multiple Symantec Enterprise Security products and third-party products to provide a central point of control of security within an organization.

  • Page 58: Interpreting Events In The Information Manager

    For more information about interpreting events in the Information Manager and on the event management capabilities of the Information Manager, see the Symantec Security Information Manager documentation. Symantec Mail Security for SMTP can send the following types of events to the Information Manager: Firewall events...

  • Page 59: Firewall Events That Are Sent To The Information Manager

    Firewall events that are sent to the Information Manager Table B-1 lists the firewall events that Symantec Mail Security for SMTP can send to the Information Manager. Firewall events that are sent to the Information Manager...

  • Page 60: Message Events That Are Sent To The Information Manager

    Message events that are sent to the Information Manager Table B-3 lists the message events that Symantec Mail Security for SMTPcan send to the Information Manager. Message events that are sent to the Information Manager Table B-3 Event ID...

  • Page 61: Administration Events That Are Sent To The Information Manager

    (132000) message Administration events that are sent to the Information Manager Table B-4 lists the administration events that Symantec Mail Security for SMTP can send to the Information Manager. Administration events that are sent to the Information Manager Table B-4...
  • Page 62 Integrating Symantec Mail Security with Symantec Security Information Manager Interpreting events in the Information Manager Administration events that are sent to the Information Manager Table B-4 (continued) Event ID Severity Event class Rule Description (SES_EVENT_<Unique ID>) (Reason sent) SES_EVENT_HOST_INTRUSION Warning...

  • Page 63: Installing And Configuring Event Logging To The Information Manager

    Information Manager The logging of events to the Information Manager is in addition to, and independent of, the logging of events within the Symantec Mail Security for SMTP logging feature. To configure logging to the Information Manager, you must complete the following...

  • Page 64: Manager

    The local SSIM Agent handles the communication between Symantec Mail Security and the Information Manager and is installed on the same computer that is running Symantec Mail Security. The local SSIM Agent is provided as part of the software distribution package for Symantec Mail Security for SMTP.
  • Page 65 Integrating Symantec Mail Security with Symantec Security Information Manager Installing and configuring event logging to the Information Manager You must install the local SSIM Agent on all computers on which Symantec Mail Security for SMTP is installed. To install the local SSIM Agent on Windows Ensure you are logged into the Symantec Mail Security for SMTP machine on the console or via SSH as an administrative user.

  • Page 66: Installing The Collector

    Configuring data sources You must configure the following data sources on the Information Manager to receive events from Symantec Mail Security for SMTP. You can add a new sensor for each data source. Once you have configured these sources, you must distribute...
  • Page 67 Integrating Symantec Mail Security with Symantec Security Information Manager Installing and configuring event logging to the Information Manager the configuration to the Collector for it to take effect. For more information, refer to the Symantec Security Information Manager documentation. Note: You must ensure that the Configure as: setting is configured exactly as indicated in the Value column.

  • Page 68: Uninstalling Information Manager Components

    Dynamic Filename, Monitor in Real Time Uninstalling Information Manager components When Symantec Mail Security for SMTP is no longer forwarding messages to the Information Manager, you can uninstall the Information Manager components. For information on how to uninstall the Integration Package, see the Symantec Security Information Manager documentation.

  • Page 69: Uninstalling The Information Manager Agent

    Uninstalling the Information Manager Agent To uninstall the local Information Manager Agent on Windows Ensure that you are logged into the Symantec Mail Security for SMTP machine on the console or via SSH as an administrative user. Insert the Symantec Mail Security for SMTP product CD into the drive and execute the following command from the product CD \Agents\setup.exe...
  • Page 70 Integrating Symantec Mail Security with Symantec Security Information Manager Uninstalling Information Manager components...
  • Page 71 35 architecture local domains overview 13 initial settings 35 events mail filters.. See filters Symantec Security Information Manager 58 mail flow 13 files new features importing 48 overview 10 Filtering Engine 14 Filtering Hub 14...
  • Page 72 Index SSIM 57 See also Symantec Security Information Manager Symantec Security Information Manager about 57 events 58 install Agent 64 time settings 35 Transformation Engine 13 uninstall Symantec Security Information Manager 68...

This manual is also suitable for:

Mail security for smtp

Table of Contents