Symantec 10547829 - Mail Security For Smtp 5.0 Smb, Installation Manual

Page 1: ...Symantec Mail Security Appliance Installation Guide Symantec Information Foundation...

Page 2: ...ONDITIONS REPRESENTATIONS AND WARRANTIES INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY FITNESS FOR A PARTICULAR PURPOSE OR NON INFRINGEMENT ARE DISCLAIMED EXCEPT TO THE EXTENT THAT SUCH DISCLAIMER...

Page 3: ...Symantec Corporation 20330 Stevens Creek Blvd Cupertino CA 95014 http www symantec com...

Page 4: ...at delivers automatic software upgrade protection Global support that is available 24 hours a day 7 days a week worldwide Support is provided in a variety of languages for those customers that are enr...

Page 5: ...pport Web page at the following URL www symantec com techsupp Select your region or language under Global Support and then select the Licensing and Registration page Customer service Customer service...

Page 6: ...y Enterprise services that are available include the following These solutions provide early warning of cyber attacks comprehensive threat analysis and countermeasures to prevent attacks before they o...

Page 7: ...To access more information about Enterprise services please visit our Web site at the following URL www symantec com Select your country or language from the site index...

Page 8: ......

Page 9: ...fect performance 19 Environmental factors that affect performance 19 Settings that affect performance 20 Ports used by Symantec Mail Security 21 Configuring your firewall for connections to public IM...

Page 10: ...enter with optional Scanner 35 Setting up a Scanner 40 Completing setup 44 Logging in and logging out 45 Having trouble logging in or out 49 Migrating to Symantec Mail Security 7 5 49 Migration consid...

Page 11: ...Transfer Agent MTA which processes and relays messages to support filtering activities Note Symantec Mail Security provides neither mailbox access for end users nor message storage You must provide an...

Page 12: ...s across the organization Symantec Mail Security supports LDAP services to authenticate user access to Spam Quarantine and to synchronize email directory information stored in the Control Center with...

Page 13: ...Note If you are using Sun Directory Server 5 2 you must update to patch 4 to address some changelog issues that arose in patch 3 Exchange 5 5 Lotus Domino LDAP Server 6 5 Load balancing Symantec Mail...

Page 14: ...wing ways Basic gateway deployment Multi tier gateway deployment Post gateway deployment Basic gateway deployment This is the simplest deployment model Symantec Mail Security resides at the outermost...

Page 15: ...gateway deployment should take into account the following factors Some organizations prefer to have secure gateways with no other services running In these environments all other services run behind t...

Page 16: ...ion eliminates a single point of failure for message scanning This model allows administrators to take individual Scanners offline for maintenance without incurring downtime This scenario enables load...

Page 17: ...uration may require that you place your Scanner hosts with your SMTP gateway MTA in a demilitarized zone between two firewalls If you have a customized MTA or specific business needs then running this...

Page 18: ...then read filter and take some action based on the verdict Such redundancy may add overhead thereby decreasing throughput Planning your deployment Deployment models 18...

Page 19: ...ding on external factors such as the percentage of your organization s email that is spam Environmental factors that affect performance Environmental factors including historical usage patterns of you...

Page 20: ...y group policies may degrade performance Use group policies as necessary but be aware that using a large number of policies can affect performance Control Center performance considerations The Control...

Page 21: ...database is stored on the Control Center appliance Quarantine s SMTP server may slow down causing the Scanner s delivery MTA to back up when the destination MTA is accepting messages either slowly or...

Page 22: ...me sync server sources Internal NTP Servers or Internet Appliance UDP 123 LDAP server access to synchronize users groups d lists LDAP servers Appliance TCP 389 Rule updates software updates and licens...

Page 23: ...ontrol Center and Scanners Control Center Scanners TCP 41002 Filter Hub deferred processing 41015 41017 To send quarantined messages to the Control Center Control Center Scanners TCP 41025 Disabled by...

Page 24: ...gure your firewall to allow port connections from your IM filtering Scanner to the public IM network servers that you use Port connections to these servers from all other servers within your corporate...

Page 25: ...d logging out Migrating to Symantec Mail Security 7 5 Before you set up your appliance Each appliance can be used to perform a variety of functions in your system For smaller installations the same ap...

Page 26: ...Deployed as a Scanner a Symantec Mail Security host filters email for viruses spam and noncompliant messages Scanner Performs both functions Suitable for smaller installations Control Center and Scan...

Page 27: ...can do this by either reconfiguring the existing forward lookup zones or creating new ones in your DNS records for each public IM network that your organization uses and then assigning the IM filteri...

Page 28: ...ahoo com scsa msg yahoo com scsb msg yahoo com scsc msg yahoo com scsd msg yahoo com scse msg yahoo com scsf msg yahoo com scsg msg yahoo com scsh msg yahoo com Yahoo Messenger talk google com talkx l...

Page 29: ...e Ethernet jacks When you initialize your appliance you will need to configure separately each Ethernet jack you used depending on your appliance model Front panel indicators The two system identifica...

Page 30: ...Scanner setup To begin initialization 1 Unpack the appliance and either rackmount it or place it on a level surface and plug in AC power 2 Connect the appliance using one of the following methods Conn...

Page 31: ...r You might use a pair of words with punctuation inserted a passphrase an understandable sequence of words or the first letter of each word in a passphrase You are next asked for the host name 7 Type...

Page 32: ...vers or type NO and follow the steps in To specify the role of the appliance below 3 When prompted type the IP addresses of up to two DNS servers then continue with To specify the role of the applianc...

Page 33: ...sure that your network is configured to permit outbound connections to Symantec on port 443 For registration and ongoing operations the appliances communicate with Symantec Security Response over a se...

Page 34: ...ration page is displayed showing the license status of each feature 4 On the License Registration page click Browse to find your slf file 5 Select your slf file and click Open to return to the License...

Page 35: ...ng an appliance that is running a previous version of Symantec Mail Security is described in a separate section See Migrating to Symantec Mail Security 7 5 on page 49 Setting up a Control Center with...

Page 36: ...list check it and click Delete 4 For each domain or email address you add optionally specify that messages should be routed through a specific host and port You can optionally check Enable MX Lookup Y...

Page 37: ...ound Mail Filtering panel See To specify outbound mail filtering settings on page 38 2 On the Create Optional Virtual IP Address panel read the instructions and click Yes or No If you click Yes you wi...

Page 38: ...anel choose the IP address to use for outbound mail 2 If desired change the port specification for outbound mail In most cases this should be left as port 25 3 On the Outbound Mail Filtering Connectio...

Page 39: ...ary panel is displayed See To review and finalize settings on page 40 To specify IM settings 1 On the Configure IM interfaces panel under Internal IM Interface choose the Ethernet network for internal...

Page 40: ...Add Scanner Wizard to set up a Scanner appliance You run the Add Scanner Wizard from a Control Center that you previously set up Note None of the settings you specify using the wizard are final until...

Page 41: ...to be updated the Software Update page is displayed On the Software Update page you can Click Skip to update your software later Click Update to update your software now Note that if you updated your...

Page 42: ...pecification for inbound mail 6 On the Inbound Mail Filtering Connections panel specify the mail servers from which this Scanner will accept inbound mail You can choose All IP addresses or specify IP...

Page 43: ...nable MX lookup for this host you must specify a host name not an IP address for that server 5 On the Outbound Mail Filtering Nonlocal Relay panel specify how you want to relay outbound mail after fil...

Page 44: ...e than one network the primary internal IP address and external IP address are probably going to be different The primary IP address would then be dedicated to listening for IM messages and the extern...

Page 45: ...ntec Mail Security Appliance Administration Guide for more information The default virus policy is to clean the message The default worm policy is to delete the message No default content compliance p...

Page 46: ...ssage 2 If you see a security alert message accept the self signed certificate to continue The Control Center log in page is displayed 3 You may choose the language in which you want to operate the Qu...

Page 47: ...other languages are displayed underlined and highlighted Click on the name of another language to use that language instead 4 In the User name box type your full email address for example kris example...

Page 48: ...where hostname is the hostname you designated for your appliance during initialization Or you can use the IP address in place of hostname You may see a security alert message 2 If you see a security a...

Page 49: ...ference between kris Kris and KRIS You are automatically logged out if you don t use the Control Center for 30 minutes If it happens log in again Migrating to Symantec Mail Security 7 5 This section i...

Page 50: ...grate to Symantec Mail Security 7 5 unchanged Data such as Spam Quarantine logs and report data will migrate to Symantec Mail Security 7 5 unchanged Policies may be changed slightly and the behavior o...

Page 51: ...p on the command line interface To back up your existing data 1 It s a good idea to reduce the amount of data to be backed up For example these measures can reduce the amount of data backed up Reduce...

Page 52: ...il Security 7 5 and are updating Scanners click Administration Hosts Version and then click the Updates tab 3 Select a Control Center or Scanner host See Migration planning on page 50 4 Click the 7 5...

Page 53: ...y 14 15 models 14 multi tier gateway 16 post gateway 17 DNS settings 31 E Environmental factors that affect performance 19 Ethernet interfaces 31 jacks 29 F Factors that affect performance 19 Filterin...

Page 54: ...t for 29 ports reserved 21 positioning with other filtering products 12 post gateway deployment 17 advantages 17 considerations 17 Q Quarantine performance considerations 21 R registration initial 33...