1. Manuals
  2. Brands
  3. Novell Manuals
  4. Software
  5. GROUPWISE 7 - INTERNET AGENT
  6. Manual

Novell GROUPWISE 7 - INTERNET AGENT Manual

Hide thumbs Also See for GROUPWISE 7 - INTERNET AGENT:
Table of Contents

Advertisement

Quick Links

Download this manual
Internet Agent
X I
Chapter 45, "Configuring Internet Addressing," on page 703
Chapter 46, "Configuring Internet Services," on page 717
Chapter 47, "Managing Internet Access," on page 747
Chapter 48, "Configuring the Internet Agent," on page 769
Chapter 49, "Monitoring the Internet Agent," on page 775
Chapter 50, "Optimizing the Internet Agent," on page 799
Chapter 51, "Connecting GroupWise Systems and Domains Using the Internet Agent," on
page 805
Chapter 52, "Using Internet Agent Startup Switches," on page 813
XI
Internet Agent
701

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the GROUPWISE 7 - INTERNET AGENT and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for Novell GROUPWISE 7 - INTERNET AGENT

Summary of Contents for Novell GROUPWISE 7 - INTERNET AGENT

  • Page 1 Internet Agent Chapter 45, “Configuring Internet Addressing,” on page 703 Chapter 46, “Configuring Internet Services,” on page 717 Chapter 47, “Managing Internet Access,” on page 747 Chapter 48, “Configuring the Internet Agent,” on page 769 Chapter 49, “Monitoring the Internet Agent,” on page 775 Chapter 50, “Optimizing the Internet Agent,”...
  • Page 2 702 GroupWise 7 Administration Guide...
  • Page 3 Internet-style addressing, users have the same address within the GroupWise system as ® they do outside the GroupWise system. For example, if John Smith’s address at Novell jsmith@novell.com, this address can be used by users within the GroupWise system and users external to the system.
  • Page 4 Internet domain at the domain, post office, or user level, meaning that different users within your GroupWise system can be assigned different preferred Internet domains. For example, users in one domain can be assigned gw.novell.com as their preferred Internet domain while users in another domain are assigned support.novell.com.

  • Page 5: Table Of Contents

    userID.post_office@internet_domain_name userID@internet_domain_name firstname.lastname@internet_domain_name lastname.firstname@internet_domain_name firstinital lastname@internet_domain_name As with the preferred Internet domain, you must assign a preferred address format to be used as the default for your GroupWise system. The system’s preferred address format is applied to all users in your GroupWise system.

  • Page 6: Firstname.lastname@Internet_Domain_Name

    Backwards-compatible with previous versions of GroupWise. (Users won’t need to update their business cards.) Addresses do not change as users are moved. Disadvantages When you first enable this address format, you might have duplicate user IDs in your ® GroupWise system. However, in the future, ConsoleOne prevents you from creating duplicate user IDs within the same Internet domain name.

  • Page 7: Firstinital Lastname@Internet_Domain_Name

    If you select all five formats, the Internet Agent accepts messages addressed to users in any of the formats. For example, John Peterson would receive messages sent using any of the following addresses: jpeterson.research@novell.com jpeterson@novell.com john.peterson@novell.com peterson.john@novell.com jpeterson@novell.com You must designate the allowed address formats to be used as the default formats for your GroupWise system.
  • Page 8 45.2 Setting Up Internet Addressing The following sections help you to set up Internet addressing: Section 45.2.1, “Installing the Internet Agent,” on page 708 Section 45.2.2, “Enabling Internet Addressing,” on page 708 Section 45.2.3, “Overriding Internet Addressing Defaults,” on page 710 45.2.1 Installing the Internet Agent Before you can set up Internet addressing, you must install the GroupWise Internet Agent.
  • Page 9 4 Specify the Internet domain you want to define in your GroupWise system, then click OK to add it to the list of Internet domains. 5 Repeat Step 3 Step 4 for each Internet domain you want to define. When you finish, all Internet domains you want to define should be listed in the Internet Domain Names box.
  • Page 10 (for example, John Peterson’s user ID is 46789 so his address is 46789@novell.com). In this case, you could publish users’ addresses as the first initial last name (for example, jpeterson@novell.com) and enable this option so that the Internet Agent resolves the addresses to the appropriate users.
  • Page 11 2 Click GroupWise > Internet Addressing. 3 To override one of the options, select the Override box, then select the option you prefer for this domain. 4 Click OK to save the changes. If you changed the preferred address format, you are prompted to update the Internet e-mail address (User object >...
  • Page 12 3 To override one of the options, select the Override box, then select the option you prefer for this post office. If you need additional information about any of the fields, click Help. 4 Click OK to save the changes. If you changed the preferred address format, you are prompted to update the Internet e-mail address (User object >...
  • Page 13 John Petersons, each on a different post office in your system, you would end up two users having the same address (John.Peterson@novell.com). You could use this field to differentiate them by including their middle initials in their address (John.S.Peterson@novell.com and John.A.Peterson@novell.com).
  • Page 14 Internet Addressing Settings,” on page 236. The Gateway Alias Migration utility can also update users’ preferred Internet domain names based on their existing gateway aliases. Section 45.3.1, “Planning to Migrate Gateway Aliases,” on page 714 Section 45.3.2, “Preparing to Migrate Gateway Aliases,” on page 714 Section 45.3.3, “Performing the Gateway Alias Migration,”...
  • Page 15 The list of available gateway alias types is generated from the Gateway Alias Type fields on the Identification property pages of the Internet Agent objects in your GroupWise system. The resulting alias list provides the SMTP gateway aliases for all users associated with the object selected in Step 2.
  • Page 16 If you do, the domain name is transferred into the Internet Domain Name field on the Internet Addressing property page of the User object. NOTE: For an internal user, if the Internet domain name is not defined in your GroupWise system under Tools > GroupWise System Operations > Internet Addressing, then the Internet domain name is not transferred into the Internet Domain Name field on the Internet Addressing property page of the User object.
  • Page 17 Configuring Internet Services For detailed instructions about installing and starting the Internet Agent for the first time, see “Installing the GroupWise Internet Agent” in the GroupWise 7 Installation Guide. The Internet Agent offers several useful services that you can configure to meet the needs of your ®...
  • Page 18 How to handle messages that cannot be sent immediately and must be deferred Whether to display GroupWise version information when establishing an SMTP connection To set the Internet Agent basic SMTP/MIME settings: ® 1 In ConsoleOne , right-click the Internet Agent object, then click Properties. 2 If the SMTP/MIME Settings page is not the default page, click SMTP/MIME >...
  • Page 19 Internet Agent resides, or in other words the A Record in your DNS table that associates a hostname with the server’s IP address (for example, gwia.novell.com). This setting corresponds with the Internet Agent’s switch.
  • Page 20 46.1.2 Using Extended SMTP (ESMTP) Options The Internet Agent supports several Extended SMTP (ESMTP) settings. These are settings that might or might not be supported by another SMTP system. The following ESMTP extensions are supported: SIZE: For more information, see RFC 1870 (http://www.ietf.org/rfc/rfc1870.txt).
  • Page 21 46.1.3 Configuring How the Internet Agent Handles E-Mail Addresses The Internet Agent can handle e-mail addresses in a variety of ways: Internet addressing vs. GroupWise proprietary addressing Group membership expansion on inbound messages Distribution membership expansion on outbound messages Using non-GroupWise domains Using sender’s address format Using domain and post office information To set the Internet Agent address handling options:...
  • Page 22 Expand Groups on Incoming Messages: Turn on this option to have incoming Internet messages addressed to public groups sent to all members of the groups. This setting corresponds with the Internet Agent’s /group switch. Non-GroupWise Domain for RFC-822 Replies: This setting can be used only if 1) you created a non-GroupWise domain to represent all or part of the Internet, as described in Section 6.7, “Adding External Users to the GroupWise Address Book,”...
  • Page 23 When you list multiple Internet domain names, the Internet Agent accepts messages for a GroupWise user if any of the Internet domain names are used (for example, jsmith@novell.com, jsmith@gw.novell.com, or jsmith@gwia.novell.com). The field limit is 255 characters. If you need to exceed that limit, you can create a frgnames.cfg...
  • Page 24 3 Fill in the fields: Number of Inbound Conversion Threads: The inbound conversion threads setting lets you specify the number of threads that convert inbound messages from MIME or RFC-822 format to the GroupWise message format. The default setting is 4. This setting corresponds with the Internet Agent’s switch.
  • Page 25 showing the original senders, not the users who forwarded the messages from GroupWise. This setting corresponds with the Internet Agent’s /flatfwd switch. Default Global Signature to Insert in Outbound Messages: Displays the default global signature for your GroupWise system as described in Section 14.3.2, “Selecting a Default Global Signature for All Outgoing Messages,”...
  • Page 26 Data: The Data setting lets you specify how long the Internet Agent waits for data from the receiving host. The default is 3 minutes. This setting corresponds with the Internet Agent’s switch. Connection Establishment: The Connection Establishment setting lets you specify how long the Internet Agent waits for the receiving host to establish a connection.
  • Page 27 For information about configuring the Internet Agent’s dial-up feature with routing software, see TID 10007366 in the Novell Support Knowledgebase (http://www.novell.com/support/ supportcentral). Enabling Dial-Up Services After you have the appropriate routing software in place, you can enable and configure the Internet Agent’s dial-up services.
  • Page 28 /etrnhost switch. ETRN Queue: Specify your e-mail domain as provided by your Internet Service Provider (for example, novell.com). This setting corresponds with the Internet Agent’s /etrnqueue switch. Username: The Username setting applies only if you are using a Windows Remote Access Server (RAS) and the Internet Agent is not running on the same server as the RAS.
  • Page 29 whenever an outgoing message is placed in its send queue. However, during the night, you might want the Internet Agent to initiate a connection only after 30 outgoing messages have been queued. In this case, you could create a profile that requires 30 messages to be queued and then apply the profile between the hours of 11 p.m.
  • Page 30 Queue Thresholds: The queue thresholds determine the criteria for the Internet Agent to initiate a dial-up connection to send messages. The settings do not apply to receiving messages (see Dial Parameters below). You can base the criteria on the number of messages in the send queue, the total size of the messages in the send queue, or the number of minutes to wait between connections.
  • Page 31 In both the From and To fields, you can use either an IP address or a DNS hostname, as shown in the following examples: novell.com 10.1.1.10 You can enter a specific address, as shown above, or you can use wildcards and IP address ranges to specify multiple addresses, as follows: *.novell.com...
  • Page 32 IP address. For example: novell.com gwia.novell.com unixbox [172.16.5.18] Make sure to include a hard return after the last entry. In addition, if you use an IP address, it must be included in square brackets, as shown in the second example.
  • Page 33 The following sample code shows the elements and default text of the Undeliverable Message status: <STATUS_MESSAGE type="undeliverableMessage" xml:lang="en-US"> <SUBJECT>Message status - undeliverable</SUBJECT> <MESSAGE_BODY> <TEXT>\r\nThe attached file had the following undeliverable recipient(s):\r\n</TEXT> <RECIPIENT_LIST format="\t%s\r\n" <SESSION_TRANSCRIPT> <TEXT>\r\nTranscript of session follows:\r\n<TEXT> </SESSION_TRANSCRIPT> <ATTACH_ORIGINAL_MSG></ATTACH_ORIGINAL_MSG> </MESSAGE_BODY>...
  • Page 34 Because MIME handles such a variety of file types, you might need to customize aspects of MIME for your users. “Customizing MIME Preamble Text” on page 734 “Customizing MIME Content-Type Mappings” on page 735 Customizing MIME Preamble Text An ASCII file called is installed in the Internet Agent gateway directory preamble.txt (domain\wpgate\gwia).
  • Page 35 The mimetype.cfg file is located in the directory. The following domain\wpgate\gwia section provide information you need to know to modify the file: “Mapping Format” on page 735 “File Organization” on page 736 Mapping Format Each mapping entry in the file uses the following format: content-type .ext|dtk-code|mac-ttttcccc [/parms] ["comment"] Element Description...
  • Page 36 Element Description "comment" Optional content description File Organization The mimetype.cfg file contains the following four sections: [Parameter-Override] [Mac-Mappings] [Detect-Mappings] [Extension-Mappings] [Parameter-Override] The [Parameter-override] section take priority over other sections. You can use this section to force the encoding scheme for certain file types. This section also contains defaults for sending various kinds of multipart messages.
  • Page 37 The Internet Agent uses the detect code to map to a MIME content type and then encode the file according to the assigned encoding scheme. If there is no mapping specified or if the file type cannot be determined, one of the other mapping methods, such as Extension-Mappings, are used. The detect codes associated with attachments are GroupWise internal codes and cannot be changed.
  • Page 38 LDAP Context: Use this option to limit the directory context in which the LDAP server searches. For example, if you want to limit LDAP searches to the Novell organization container located under the United States country container, enter O=Novell,C=US. This setting corresponds with the Internet Agent’s...
  • Page 39 3 Fill in the fields: LDAP Defaults: Select one of the following defaults for public access: Allow Access or Prevent Access. If you select Allow Access, the GroupWise fields (in the Visible Fields lists) default to Visible for an LDAP search. If you select Prevent Access, the GroupWise fields default to Not Visible.
  • Page 40 Section 46.3.3, “Giving POP3 or IMAP4 Access Rights to Users,” on page 743 Section 46.3.4, “Setting Up an E-Mail Client for POP3/IMAP4 Services,” on page 743 NOTE: Internal IMAP clients can connect directly to the POA, rather than connecting through the Internet Agent, as described in Section 36.2.3, “Supporting IMAP Clients,”...
  • Page 41 Enable IMAP4 Service: IMAP4 service is on by default. This setting allows IMAP4 downloads and management of GroupWise messages. It corresponds with the Internet Agent’s imap4 switch. Number of Threads for IMAP4 Connections: The IMAP4 threads setting lets you specify the number of connections for IMAP4 requests.
  • Page 42 3 In the Post Offices list, select the post office whose link information you want to change, then click Edit Link to display the Edit Post Office Link dialog box. 4 Define the following properties: Access Mode: The access mode determines whether the Internet Agent uses client/server access, direct access, or both client/server and direct access to connect to the post office.
  • Page 43 46.3.3 Giving POP3 or IMAP4 Access Rights to Users Access to POP3/IMAP4 services is determined by the class of service in which they are a member. By default, all users are members of the default class of service, which gives them POP3 and IMAP4 access.
  • Page 44 User ID Login Options Table 46-1 Option Explanation Example v=number between 1-31 The v option defines the POP3 client’s view number. If User_ID:v=1 multiple POP3 clients access the same GroupWise mailbox, each client must use a different view number in order to see a fresh mailbox.
  • Page 45 User block control: By using the /l=length and /b=number switches on the message’s To line, the sender can control the block length and number of blocks to send to the pager. By default, the Internet Agent sends 255 bytes per block (/l=255 /b=1). To set up and use paging services, complete the tasks in the following sections: Section 46.4.1, “Setting Up Paging,”...
  • Page 46 5 In the Link Type field, select Gateway. 6 In the Gateway Link field, select the Internet Agent. 7 In the Gateway Access String field, type -page. 8 Click OK to save the information. 9 Click File > Exit > Yes to save your changes and exit the Link Configuration tool. 10 Restart the Internet Agent.

  • Page 47: Classes Of Service

    Managing Internet Access After you have configured the Internet services that you want the Internet Agent to provide in your ® GroupWise system, you need to take control of the information that flows in and out between your GroupWise system and the Internet. Section 47.1, “Controlling User Access to the Internet,”...
  • Page 48 appropriate members to the classes. For example, you could create a class of service that limits the size of SMTP/MIME messages for a selected individual, distribution list, post office, or domain. Because you can assign membership at the user, distribution list, post office, and domain level, it is possible that a single user can be a member of multiple classes of service.
  • Page 49 3 Click Create to display the Create New Class of Service dialog box. 4 Type a name for the class, then click OK to display the Edit Class of Service dialog box. 5 On the SMTP Incoming tab, choose from the following options: Inherit Access: Select this option if you want members of this class of service to inherit their SMTP Incoming access from a class of service assigned at a higher level.
  • Page 50 office inherits the domain’s access. If the domain is not a member of a class of service, the post office inherits the default class of service. Allow Incoming Messages: Select this option to allow members of the class of service to receive e-mail messages through the Internet Agent.
  • Page 51 Exceptions: This option is available only if you chose Allow Outgoing Messages or Prevent Outgoing Messages. If you chose to allow outgoing messages but you want to prevent messages from being sent to specific Internet sites (IP addresses or DNS hostnames), add the sites to the Prevent Messages To list.
  • Page 52 messages to RFC-822 format. For more information, see “User ID Login Options” on page 743. High Performance on File Size Calculations: This option applies only if you selected Allow Access. POP3 clients calculate the size of each message file before downloading it. Turn on this option if you want to assign a size of 1 KB to each message file.
  • Page 53 12 To add additional domains, post offices, distribution lists or users as members of the class of service, select the class of server, then click Add to display the Select GroupWise Object dialog box. 13 Click OK (on the Settings page) when finished adding members. 47.1.3 Testing Access Control Settings If you created multiple classes of service, you might not know exactly which settings are being applied to a specific object (domain, post office, distribution list, or user) and which class of service...
  • Page 54 3 Click Test to display the Select GroupWise Object dialog box. You use this dialog box to select the object (domain, post office, distribution list, or user) whose access you want to test. 4 Select Domains, Post Offices, Distribution Lists, or Users to display the list you want. For example, if you want to see what access an individual user has, select Users.
  • Page 55 7 When finished, click OK. 47.1.4 Maintaining the Access Control Database The Access Control database stores the information for the various classes of service you have created. If any problems occur with a class of service, you can validate the database to check for errors with the records and indexes contained in the database.
  • Page 56 3 Click Validate Now. 4 After the database has been validated, click OK. 5 If errors were found, see Recovering the Database below. Recovering the Database If you encountered errors when validating the database, you must recover the database. During the recovery process a new database is created and all intact records are copied to the new database.
  • Page 57 3 Click Recover Now. 4 Click OK. 5 Check your class of service list to make sure that it is complete. 47.2 Blocking Unwanted E-Mail from the Internet The GroupWise Internet Agent includes the following features to help you protect your GroupWise system and users from unwanted e-mail: Section 47.2.1, “Real-Time Blacklists,”...
  • Page 58 The Blacklist Addresses list displays the addresses of all blacklists that the Internet Agent checks when it receives a message from another SMTP host. The Internet Agent checks the first blacklist and continues checking lists until the sending SMTP host’s IP address is found or all lists have been checked.

  • Page 59: Access Control Lists

    Overriding a Blacklist In some cases, a blacklist might contain a host from which you still want to receive messages. For example, goodhost.com has been accidentally added to a blacklist but you still want to receive messages from that host. You can use the SMTP Incoming Exceptions list on a class of service to override a blacklist.
  • Page 60 *.novell.com gw.novell.com (but not novell.com itself) There is no limit to the number of IP addresses and hostnames that you can block in the blocked.txt file 3 Save the file as blocked.txt. 47.2.4 Mailbomb (Spam) Protection Multiple unsolicited messages (sometimes called a mailbomb or spam) from the Internet can potentially harm your GroupWise messaging environment.
  • Page 61 Enable Mailbomb Protection: Mailbomb protection is turned off by default. You can turn it on by selecting this option. Mailbomb Threshold: When you enable Mailbomb protection, default values are defined in the threshold settings. The default settings are 30 messages received within 10 seconds. You can change the settings to establish an acceptable security level.
  • Page 62 use a numerical value; the higher the number, the greater the likelihood that the message is spam. The following samples are taken from MIME headers of messages: X-Spam-Results: ***** X-Spam-Status: score=9 Based on these samples, examples are provided below of lines that you could add to the list to handle the X-Spam tags found in the MIME headers of messages coming into your system.
  • Page 63 2 If you have multiple SMTP hosts that require authentication before they accept messages from your system, create an entry for each host. Make sure to include a hard return after the last entry. 3 If you want to allow the Internet Agent to send messages only to SMTP hosts listed in the gwauth.cfg file, use the following startup switch:...
  • Page 64 3 Turn on the Reject Mail if Sender’s Identity Cannot Be Verified option. This setting corresponds with the Internet Agent’s /rejbs switch. 4 Click OK to save your changes. 47.3 Tracking Internet Traffic with Accounting Data The Internet Agent can supply accounting information for all messages, including information such as the message’s source, priority, size, and destination.

  • Page 65: Enabling Accounting

    4 Select the user in the list of administrators, then click Accountant. 5 Click OK to save the changes. 47.3.2 Enabling Accounting 1 In ConsoleOne, right-click the Internet Agent object, then click Properties. 2 Click GroupWise > Optional Gateway Settings to display the Optional Gateway Settings page. 3 Set Accounting to Yes.
  • Page 66 47.3.3 Understanding the Accounting File The following is an Accounting file entry for a single event. Each field in the entry is described below. O,11/25/2007,21:58:39,3DE29CD2.14E:7:6953, Mail,2,Provo,Research,jsmith,48909,Meeting Agenda,Provo,GWIA,sde23a9f.001,MIME,hjones@novell.com,1,2,11388,0 Accounting File Entry Fields Table 47-2 Field Example Description Displays I for inbound messages and O for...
  • Page 67 Field Example Description hjones@novell.com The foreign user’s e-mail address. For inbound Foreign user’s address messages, the foreign user is the message sender. For outbound messages, the foreign user is the message recipient. The number of recipients. Recipient count The number of attached files. The total count Attachment count includes the message.
  • Page 68 768 GroupWise 7 Administration Guide...
  • Page 69 Configuring the Internet Agent ® As your GroupWise system grows and evolves, you might need to modify Internet Agent configuration to meet the changing needs of your system. The following topics help you configure the Internet Agent: Section 48.1, “Changing the Link Protocol between the Internet Agent and the Message Transfer Agent,”...
  • Page 70 3 In the TCP/IP Address field, click Edit, specify the IP address of the server where the Internet Agent is running, then click OK to return to the Network Address page. 4 In the Message Transfer Port field, specify a unique port number; for example, 7102. 5 Click OK to save the new link configuration for the Internet Agent.
  • Page 71 4 In the Alternate Internet Agent for Outbound SMTP/MIME Messages field, select an Internet Agent as an alternate for this domain. 5 Click OK to save your changes. The MTA always tries to transfer outbound Internet messages to the primary Internet Agent first, so after an outage the primary Internet Agent automatically resumes its normal processing for the domain.
  • Page 72 3 Select Bind Exclusively to TCP/IP Address, then click OK to save your change. Corresponding Startup Switches You can also use the startup switch in the Internet Agent startup file to establish an exclusive bind to the specified IP address. 48.4 Securing Internet Agent Connections with The Internet Agent can use the SSL (Secure Socket Layer) protocol to enable secure connections to other SMTP hosts, POP/IMAP clients, and the Internet Agent Web console.
  • Page 73 3 Fill in the Certificate File, SSL Key File, and Set Password fields: Certificate File: Specify the server certificate file that the Internet Agent will use. The certificate file must be in Base64/PEM or PFX format. If you type the filename rather than using the Browse button to select it, use the full path if the file is not in the same directory as the Internet Agent program.
  • Page 74 1 In ConsoleOne, if the Internet Agent object’s property pages are not already displayed, right- click the Internet Agent object, then click Properties. 2 Click GroupWise > Network Address to display the Network Address page. 3 Configure the SSL settings for the following connections: HTTP: Select Enabled to enable the Internet Agent to use a secure connection when passing information to the Internet Agent Web console.
  • Page 75 Section 49.1, “Using the Internet Agent Server Console,” on page 775 Section 49.2, “Using the Internet Agent Web Console,” on page 787 Section 49.3, “Using Novell Remote Manager,” on page 789 Section 49.4, “Using an SNMP Management Console,” on page 789 Section 49.5, “Assigning Operators to Receive Warning and Error Messages,”...
  • Page 76 Windows: If the Internet Agent is running as a Windows service under the Local System User, it is displayed on the desktop only if the Allow Service to Interact with Desktop option was selected during installation or has been configured on the Internet Agent service’s General property page.
  • Page 77 Internet Agent Server Console Figure 49-3 Processing: Displays a rotating bar if the Internet Agent is running. If there is no bar, or if the bar is stationary for more than one minute, the Internet Agent is not running. GroupWise: Displays whether the Internet Agent’s network connection is OPEN or CLOSED. This network connection is the Internet Agent’s only link to GroupWise.
  • Page 78 Message Statistics The Message Statistics section of the console, shown below, is the default statistics section displayed by the Internet Agent console. Internet Agent Server Console Figure 49-4 Message Statistics shows the number of inbound and outbound messages processed by the Internet Agent.
  • Page 79 Linux and Click Statistics > SMTP Service. Windows: SMTP Service Statistics Section of the Internet Agent Server Console Figure 49-5 Messages Sent: Displays the total number of SMTP messages sent by the Internet Agent during its current up time. Send Threads: The first number displays the number of threads currently being used to send SMTP messages.
  • Page 80 Hosts Down: Displays the number of SMTP hosts that the Internet Agent could not establish a connection with in order to send or receive messages. The Internet Agent was able to resolve the hostname to an IP address, but the connection could not be established. Connections Denied: Displays the number of connections denied by the Internet Agent.
  • Page 81 POP Service Statistics Section of the Internet Agent Server Console Figure 49-6 Total Sessions: Displays the total number of POP3 sessions processed by the Internet Agent during its current up time. Active Sessions: Displays the number of currently active POP3 sessions. Idle Sessions: Displays the number of threads still available to the Internet Agent for POP3 sessions.
  • Page 82 TCP/IP Write Errors: Displays the number of TCP write errors encountered by the Internet Agent. A TCP write error occurs if the Internet Agent successfully opens a POP3 session but is unable to process a TCP write command during the session. Denied Access Count: Displays the number of POP3 sessions that were denied because the user does not have POP3 access.
  • Page 83 Normal Threads: Displays the number of IMAP threads that are busy and the number that are available. Secure Threads: Displays the number of IMAP SSL threads that are busy and the number that are available. Unknown Users: Displays the number of user logins that failed because the user does not exist in the GroupWise system.
  • Page 84 LDAP Service Statistics Section of the Internet Agent Server Console Figure 49-8 Public Sessions: Displays the total number of LDAP sessions handled by the Internet Agent. Authenticated Sessions: This field is not used. Sessions Active: Displays the total number of LDAP sessions currently being processed by the Internet Agent.

  • Page 85: Menu Functions

    Internet Agent Server Console Figure 49-9 49.1.5 Menu Functions The following sections explain the menu options available in the Internet Agent console: “NetWare Internet Agent Console” on page 785 “Linux and Windows Internet Agent Console” on page 786 NetWare Internet Agent Console The menu functions on the NetWare Internet Agent console provide you with the following options.
  • Page 86 F6-Colors: Select this option to scroll through the several color options. This option is useful if the Internet Agent station has a monochrome monitor. You can also use this option to help you quickly identify an Internet Agent if more than one is running. F8-Zero Stats: Select this option to reset the values in the Statistics section of the screen.
  • Page 87 49.2 Using the Internet Agent Web Console You can use a Web browser interface, referred to as the Web console, to monitor the Internet Agent. You cannot use the Internet Agent Web console to change any of the Internet Agent’s settings. Changes must be made through ConsoleOne, the server console, or the startup file.
  • Page 88 7 In the HTTP User Name field, enter an arbitrary username (for example, gwia). 8 Click Set Password to assign a password (for example, monitor). 9 Click OK to save your changes. ConsoleOne then notifies the Internet Agent to restart to put the new settings into effect. 49.2.2 Monitoring the Internet Agent at the Web Console 1 In a Web browser, enter the following: http://IP_address:agent_port (non-secure server)
  • Page 89 Status). You can click Help on any page for information about the page. 49.3 Using Novell Remote Manager If the Internet Agent is running on NetWare 6.5 or on Novell Open Enterprise Server (OES), you can use the IP Address Management feature in Novell Remote Manager (Manage Server > IP Address Management) to view the IP address and port configuration for the Internet Agent.
  • Page 90 and potential problems. The Set variables allow you to configure portions of the application while it is still running. The Get variables display the current status of different processes of the application. To compile the MIB file: 1 Copy the Internet Agent MIB (gwia.mib) to the SNMP management console’s MIB directory.
  • Page 91 4 Make sure Operator is selected as the Administrator Role. 5 If desired, add additional operators. 6 Click OK. 49.6 Using Internet Agent Log Files You can use the Internet Agent logging options to help you monitor its operation. By default, the Internet Agent logs information to its server console, Web console, and to a log file on disk.
  • Page 92 Startup NetWare Linux Windows ConsoleOne Switches Console Console Console Log File Location The log settings in ConsoleOne are used as the default settings. Startup switches override the ConsoleOne log settings, and console settings override startup switches. Section 49.6.1, “Modifying Log Settings in ConsoleOne,” on page 792 Section 49.6.2, “Modifying Log Settings through Startup Switches,”...
  • Page 93 IP address of any inbound SMTP connections; the Internet Agent-specific MSG number; and SMTP connection messages such as “Connect to novell.com” and “Accepted connection from 172.16.5.18 novell.com”. Diagnostic: Displays detailed function calls made by the Internet Agent. This level is not useful for most troubleshooting.
  • Page 94 IP address of any inbound SMTP connections; the Internet Agent-specific MSG number; and SMTP connection messages such as “Connect to novell.com” and “Accepted connection from 172.16.5.18 novell.com”. Diag: Displays detailed function calls made by the Internet Agent. This level is not useful for most troubleshooting.

  • Page 95: Viewing Log Files

    ID, and size of the message being processed; the IP address of any inbound SMTP connections; the Internet Agent-specific MSG number; and SMTP connection messages such as “Connect to novell.com” and “Accepted connection from 172.16.5.18 novell.com”. Disk Logging: Select On or Off to enable or disable logging of information to log files.
  • Page 96 Log files are named according to the date they were created. If the Internet Agent was restarted during the day, the file extension indicates which session is logged (for example 0518log.003 indicates the third session logged for May 18). Archived log files are saved in ASCII. You can use any text editor to open a file or to print it. You can also view the log files from the Internet Agent console or the Internet Agent Web console.
  • Page 97 49.9.3 Using a Mail Message The Internet Agent can be stopped by sending a shutdown message to the Internet Agent. In order to shut down the program with a message, the user sending the message must be defined as an operator for the Internet Agent.
  • Page 98 798 GroupWise 7 Administration Guide...
  • Page 99 Optimizing the Internet Agent The following sections provide information about some of the methods you can use to optimize the ® speed and reliability of the GroupWise Internet Agent: Section 50.1, “Relocating the Internet Agent’s Processing Directories,” on page 799 Section 50.2, “Increasing Internet Agent Speed,”...
  • Page 100 3 Fill in the fields: Conversion Directory: Select the directory where the Internet Agent stores temporary files for message conversion. The default conversion directory depends on the Internet Agent platform. NetWare: domain\wpgate\gwia000.prc\gwwork Linux: domain/wpgate/gwia/000.prc/gwwork Windows: c:\grpwise\gwia If you type a path to a Windows drive (rather than using the Browse button to select the directory), you must use UNC path syntax.
  • Page 101 7 Click OK to save the changes to the directory locations. 50.2 Increasing Internet Agent Speed You can implement the following procedures to help enhance the Internet Agent’s processing speed: Section 50.2.1, “Sending and Receiving Threads,” on page 801 Section 50.2.2, “Changing the Maximum Packet Received Buffers,” on page 801 Section 50.2.3, “Increasing Polling Time,”...
  • Page 102 3 Modify the following settings: Idle Sleep Duration: Select the time, in seconds, you want the Internet Agent to idle after it has processed its queues. A low setting, such as 5 seconds, speeds up processing but requires more resources. A higher setting slows down the Internet Agent but requires fewer resources by reducing the number of network polling scans.
  • Page 103 2 Click Reattach > Settings to display the NetWare reattachment Settings page. 3 Define the following properties: ® Tree: Specify the Novell eDirectory tree that the Internet Agent logs in to. If the Internet Agent does not use an eDirectory user account, leave this field blank.
  • Page 104 804 GroupWise 7 Administration Guide...
  • Page 105 Connecting GroupWise Systems and Domains Using the Internet Agent ® The Internet Agent can be used as a link between GroupWise systems and between domains in the same GroupWise system. Section 51.1, “Connecting GroupWise Systems,” on page 805 Section 51.2, “Linking Domains,” on page 810 51.1 Connecting GroupWise Systems If you have two independent GroupWise systems, you can use the Internet Agent to connect the two systems.
  • Page 106 After you’ve connected the two systems, users can send messages between the two systems by entering the recipients’ full addresses (userID.post_office.domain or user@host). If desired, you can simplify addressing by exchanging information between systems, which causes user information to be displayed in the Address Book. The easiest way to exchange information is to enable the External System Synchronization feature in both systems.
  • Page 107 4 Repeat Step 1 through Step 3 to define an external domain in the second GroupWise system. If you do not have administrative rights to that system, you must coordinate with that GroupWise system’s administrator. 5 Continue with Linking to the External Domain.
  • Page 108 2 In the Outbound Links list, double-click the external domain to display the Edit Domain Link dialog box. 3 Modify the following fields: Link Type: Select Gateway. Gateway Link: Select the name of your Internet Agent. Gateway Access String: Specify the hostname (Internet Agent object > SMTP/MIME > Settings) or foreign ID (Internet Agent object >...
  • Page 109 By default, the rest of the domains in your system should have an indirect link to the external domain. To verify this for a domain: 5 In the list of domains on the Link Configuration utility’s toolbar, select the domain whose link you want to check, then verify that the external domain is displayed in the Indirect column of the Outbound Links list.
  • Page 110 For more information about link protocols, see Chapter 10, “Managing the Links between Domains and Post Offices,” on page 137. 51.1.5 Sending Messages Between Systems After you’ve established links between the Internet Agent domains in the two GroupWise systems, users in one system can send message to recipients in the other system by including the recipients’ fully-qualified GroupWise addresses: userID.post_office.domain or user@host To simplify addressing for your GroupWise users, you can exchange information between the two...
  • Page 111 1 In ConsoleOne, right-click the Provo domain, then click GroupWise Utilities > Link Configuration to display the Link Configuration utility. 2 In the Outbound Links list, double-click the Cambridge domain to display the Edit Domain Link dialog box. 3 Modify the following fields: Link Type: Select Gateway.
  • Page 112 By default, any domains that are already linked to your Provo domain should have an indirect link to the Cambridge domain through the Provo domain. To verify this for a domain: 5 In the list of domains on the Link Configuration utility’s toolbar, select the domain whose link you want to check, then verify that the Cambridge domain is displayed in the Indirect column of the Outbound Links list.
  • Page 113 Using Internet Agent Startup Switches ® NOTE: Starting in GroupWise 7 Support Pack 1, many Internet Agent configuration settings that were previously stored as startup switches in the Internet Agent configuration file (gwia.cfg) ® were moved into eDirectory so that they can be modified in ConsoleOne .
  • Page 114 Internet Agent. Linux: The gwia.cfg file used by the Linux Internet Agent is located in the /opt/novell/ directory. groupwise/agents/share Windows: The gwia.cfg file used by the Windows Internet Agent is located in the directory.
  • Page 115 None of the switches or switch values are case sensitive. For example, /sd-12 is the same as / SD-12. If a switch is specified more than once in the configuration file or on the command line, and if it has a value (such as /loglevel=normal), only the last instance of the switch is used. The gwia.cfg file is used by default.
  • Page 116 NetWare Internet Windows Internet Linux Internet Agent ConsoleOne Settings Agent Agent /dialpass SMTP/MIME > Dial-Up Settings > Password /dialuser SMTP/MIME > Dial-Up Settings > Username /displaylastfirst --displaylastfirst /displaylastfirst SMTP/MIME > Address Handling > /nodisplaylastfirst --nodisplaylastfirst /nodisplaylastfirst Display Fullname as Lastname, Firstname /dontreplaceunder --dontreplaceunder...
  • Page 117 NetWare Internet Windows Internet Linux Internet Agent ConsoleOne Settings Agent Agent /httppassword --httppassword /httppassword GroupWise > Optional Gateway Settings > HTTP Password /httpport --httpport /httpport GroupWise > Network Address > HTTP Port /httprefresh --httprefresh /httprefresh /httpssl --httpssl /httpssl GroupWise > Network Address > HTTP SSL /httpuser --httpuser...
  • Page 118 NetWare Internet Windows Internet Linux Internet Agent ConsoleOne Settings Agent Agent /ldapcntxt --ldapcntxt /ldapcntxt LDAP > Settings > LDAP Context /ldapipaddr --ldapipaddr /ldapipaddr /ldapport --ldapport /ldapport GroupWise > Network Address > LDAP Port /ldappwd --ldappwd /ldappwd /ldaprefcntxt --ldaprefcntxt /ldaprefcntxt LDAP > Settings > LDAP Context /ldaprefurl --ldaprefurl /ldaprefurl...
  • Page 119 NetWare Internet Windows Internet Linux Internet Agent ConsoleOne Settings Agent Agent /mudas --mudas /mudas SMTP/MIME > Undeliverables > Amount of Original Message to Return to Sender When Message Is Undeliverable /nasoq --nasoq /nasoq /noesmtp --noesmtp /noesmtp /noiso2022 --noiso2022 /noiso2022 /iso2022 --iso2022 /iso2022 /nomappriority...
  • Page 120 NetWare Internet Windows Internet Linux Internet Agent ConsoleOne Settings Agent Agent /rejbs --rejbs /rejbs SMTP/MIME > Security Settings > Reject Mail If Sender’s Identity Cannot Be Verified /relayaddsignature --relayaddsignature /relayaddsignature SMTP/MIME > Message Formatting > Apply Global Signature to Relay Messages --rt SMTP/MIME >...
  • Page 121 Specifies the hostname that is displayed when someone connects to your Internet Agent using a Telnet session. You should enter the hostname assigned to you by your Internet service provider. Syntax: /hn=host_name Example: /hn=gwia.novell.com Using Internet Agent Startup Switches 821...
  • Page 122 This switch is required only under certain circumstances. Normally, the Internet Agent gets the information from another source and does not need this switch. If you receive a message that the /hn switch is required, you must use the switch. For the NetWare version, the /hn switch is required only if you don’t use the hosts file in the sys:\etc directory to indicate the IP address and name of the Internet Agent server.
  • Page 123 Example: /color-3 You can also change the color of the screen for an Internet Agent session. From the menu on the bottom of the console, select Options, then press the key for Colors. 52.4.2 /help Displays the Help screen for the startup switches. Syntax: /help 52.4.3 /nosnmp Disables SNMP for the Internet Agent.
  • Page 124 Syntax: /ipp-port_number Example: /ipp-1678 52.5.4 /cluster (NetWare Only) ® Informs the Internet Agent that it is running in a Novell Cluster Services environment. For detailed information about running the Internet Agent in a clustering environment, see “Implementing the Internet Agent in a NetWare Cluster”...
  • Page 125 Windows: c:\grpwise\gwia Syntax: /work-pathname NetWare Example: /work-sys:\tmp\work Linux Example: -work /opt/novell/groupwise/tmp Windows Example: /work-j:\tmp\work 52.5.7 /nasoq By default, the Internet Agent sends the accounting file (acct) to users specified as accountants in ConsoleOne (Internet Agent object > GroupWise > Gateway Administrators). The file is sent daily at midnight and any time the Internet Agent shuts down.
  • Page 126 52.6.1 SMTP Enabled The following switches enable SMTP and suppress version information display. /smtp /nosmtpversion /smtp Enables the Internet Agent to process SMTP messages. See Section 46.1.1, “Configuring Basic SMTP/MIME Settings,” on page 717. Syntax: /smtp /nosmtpversion Suppresses the GroupWise version and copyright date information that the Internet Agent typically responds with when contacted by another SMTP host or a telnet session.
  • Page 127 For example, if the /aqor switch is used (in conjunction with the /aql-domain switch), Bob Thompson’s fully qualified Internet address (headquarters.advertising.bob@novell.com) would be resolved to bob@advertising.headquarters.novell.com for all outbound messages. If the /aqor switch is used with the /aql-po switch, Bob’s Internet address would be resolved to bob@advertising.novell.com for all outbound messages.
  • Page 128 If you use the /aqor switch to move GroupWise domain or post office names to be part of the host portion on the right side of the address, you must provide a way for the DNS server to identify the GroupWise names.
  • Page 129 Syntax: /dia /displaylastfirst By default, users’ display names are First Name Last Name. If you want users’ display names to be Last Name First Name, you can use the /displaylastfirst switch. This forces the display name format to be Last Name First Name, regardless of the preferred address format. Syntax: /displaylastfirst /dontreplaceunderscore By default, the Internet Agent accepts addresses of the format:...
  • Page 130 Foreign_domain can be any foreign domain you have configured and linked to the Internet Agent. Type can be either mime or nonmime. You can use the same foreign domain name for both the /fd822 switch and the /fdmime switch. You can specify multiple foreign domain and kind pairs by placing them in quotes. If multiple foreign domain and kind pairs are used, the first domain/kind pair is the return address for replies to messages received through the Internet Agent.
  • Page 131 /notfamiliar Instructs the Internet Agent to not include the user’s familiar name, or display name, in the From field of the message’s MIME header. In other words, the From field is address rather than "familiar_name" address. Syntax: /notfamiliar /realmailfrom Instructs the Internet Agent to use the real user in the Mail From field instead of having auto- forwards come from Postmaster and auto-replies come from Mailer-Daemon.
  • Page 132 /defaultcharset Specifies what character set to use if no character set is specified in an incoming message. Syntax: /defaultcharset-charset Example: /defaultcharset-iso-8859-1 For readability when the character set name includes hyphens (-), you can use an equal sign (=) as the delimiter between the switch and its setting. Example: /defaultcharset=iso-8859-1 /force7bitout By default, the Internet Agent uses 8-bit MIME encoding for any outbound messages that are...
  • Page 133 /noiso2022 Instructs the Internet Agent to not use ISO-2022 character sets. ISO-2022 character sets provide 7- bit encoding for Asian character sets. Syntax: /noiso2022 /nqpmt Disables quoted printable message text for outbound messages. If this switch is turned on, messages are sent with Base64 MIME encoding, unless all the text is US-ASCII.
  • Page 134 the Internet Agent includes the text as part of the message body. See Section 46.1.4, “Determining Format Options for Messages,” on page 723. Syntax: /uueaa /wrap Sets the line length for outbound messages that do not use quoted printable or Base64 MIME encoding.
  • Page 135 Syntax: /msgdeferinterval-minutes,minutes...,minutes Example: /msgdeferinterval-10,10,10,120 52.6.6 Extended SMTP The following switches configure the Internet Agent’s Extended SMTP (ESMTP) settings: /noesmtp /dsn /dsnage /noesmtp Disables ESMTP support in the Internet Agent. Syntax: /noesmtp /dsn Enables Delivery Status Notification (DSN). The Internet Agent requests status notifications for outgoing messages and supplies status notifications for incoming messages.
  • Page 136 Specifies how often, in seconds, the Internet Agent polls for outbound messages. The default,10 seconds, causes the Internet Agent to poll the outbound message directory every 10 seconds. See Section 46.1.1, “Configuring Basic SMTP/MIME Settings,” on page 717. Syntax: /p-seconds Example: /p-5 Specifies the maximum number of threads used for processing SMTP receive requests (inbound messages).
  • Page 137 Services” on page 728. Syntax: /etrnqueue-email_domain Example: /etrnqueue-novell.com /dialuser (Windows Only) Specifies the RAS Security user if you are using a Windows Remote Access Server (RAS) and the Internet Agent is not running on the same server as the RAS.
  • Page 138 Specifies how long the program waits for an SMTP command. The default is 2 minutes. Syntax: /tc-minutes Example: /tc-3 Specifies how long the program waits for data from the receiving host. The default is 5 minutes. Syntax: /td-minutes Example: /td-2 Specifies how long the program waits for the receiving host to establish a connection.
  • Page 139 For example: smtp.novell.com remotehost novell You can define multiple hosts in the file. Make sure you include a hard return after the last entry. If you use this switch, you need to include your Internet Agent as an entry in the gwauth.cfg file to enable status messages to be returned to GroupWise users.
  • Page 140 Section 46.1.6, “Determining What to Do with Undeliverable Messages,” on page 726. Syntax: /fut-host Example: /fut-novell.com /mudas Controls how much of the original message is sent back when a message is undeliverable. By default, only 2 KB of the original message is sent back. The value is specified in KB (8=8KB). See Section 46.1.6, “Determining What to Do with Undeliverable Messages,”...
  • Page 141 /xspam /rbl /mbcount Sets the number of messages that can be received from a single IP address in a given number of seconds before the Internet Agent denies access to its GroupWise system. It provides a form of system security to protect your system from mailbombs. For example, with /mbcount set to 25 and /mbtime set to 60 seconds, if these limits are exceeded the...
  • Page 142 Syntax: /rbl-blackholes.mail-abuse.org,bl.spamcop.net This switch corresponds to the Blacklist Addresses list (Internet Agent object > Access Control > Blacklists). For details about this setting, see Section 47.2.1, “Real-Time Blacklists,” on page 757. 52.7 POP3 Switches The following optional startup switches that can be used to configure the Internet Agent’s POP3 service: /pop3 /popintruderdetect...
  • Page 143 52.7.5 /popssl Disables, enables, or requires secure (SSL) connections between POP3 clients and the Internet Agent. See Section 48.4, “Securing Internet Agent Connections with SSL,” on page 772. Syntax: /popssl-enabled|disabled|required Example: /popssl-required Option Description enabled The POP3 client determines whether an SSL connection or non-SSL connection is used. By default, the Internet Agent listens for SSL connections on port 995 and non-SSL connections on port 110.
  • Page 144 /sslit 52.8.1 /imap4 Enables IMAP4 client access to GroupWise mailboxes through the Internet Agent. See Section 46.3.1, “Enabling POP3/IMAP4 Services,” on page 740. Syntax: /imap4 52.8.2 /imapport By default, the Internet Agent listens for IMAP4 connections on port 143. This switch allows you to change the IMAP4 listen port.
  • Page 145 Option Description required The Internet Agent forces SSL connections on port 993 and port 143. Non-SSL connections are denied. You can use the /imapsport /imapport switches to change these ports. disabled The Internet Agent listens for connections only on port 143, and the connections are not secure.
  • Page 146 52.9.2 /httpuser By default, any user who knows the Internet Agent’s address and port (/httpport) can use the Web console. This switch adds security to the Web console by forcing users to log into the Web console using the specified username. The /httppassword switch must also be used to establish the user password.
  • Page 147 Specifies the private key password. If the key does not require a password, do not use this switch. Syntax: /keypasswd-password Example: /keypasswd-novell 52.10.4 /smtppssl Enables the Internet Agent to use a secure connection to other SMTP hosts. The SMTP host must also be enabled to use SSL or TLS (Transport Layer Security);...
  • Page 148 52.10.6 /popssl Disables, enables, or requires secure (SSL) connections between POP3 clients and the Internet Agent. Syntax: /popssl-enabled|disabled|required Example: /popssl-required Option Description enabled The POP3 client determines whether an SSL connection or non-SSL connection is used. By default, the Internet Agent listens for SSL connections on port 995 and non-SSL connections on port 110.
  • Page 149 52.11 LDAP Switches The Internet Agent can perform GroupWise authentication of POP3/IMAP4 clients through an LDAP server and can also perform LDAP queries for GroupWise information. see Section 46.2.1, “Enabling LDAP Services,” on page 737. The following sections describe the switches required to configure this functionality: Section 52.11.1, “GroupWise Authentication Switches,”...
  • Page 150 /ldapcntxt Limits the directory context in which the LDAP server searches. For example, you could limit LDAP searches to a single Novell organization container located under the United States country container. If you restrict the LDAP context, you must make sure that users, when defining the directory in their e-mail client, enter the same context (using the identical text you did) in the Search Base or Search Root field.
  • Page 151 Syntax: /ldapcntxt-"context" Example: /ldapcntxt-"O=Novell,C=US" /ldaprefurl Defines a secondary LDAP server to which you can refer an LDAP query if the query fails to find a user or address in your GroupWise system. For this option to work, the requesting Web browser must be able to track referral URLs.
  • Page 152 (mmddgwia.nn).You can use the /log switch to redirect the log files to a different location. Syntax: /log-log_file_directory NetWare Example: /log-sys:\log\gwia Linux Example: --log /opt/novell/groupwise/agents/log Windows Example: /log-c:\log\gwia 52.12.2 /logdays By default, log files are deleted after 7 days. This switch overrides the default setting. The range is from 1 to 360 days.

Table of Contents