SurfControl E-mail Filter for SMTP v5.5 Starter Guide

Transcription

Version 5.5
SurfControl E-mail Filter for SMTP
Starter Guide
™
Notices
NOTICES
Copyright © 2006 SurfControl plc. All rights reserved.
No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by
any means, electronic, mechanical, photocopying, recording, or otherwise, without the prior permission of
the copyright owner.
This product includes software developed by the Apache Software Foundation (http://www.apache.org/).
SurfControl is a registered trademark, and SurfControl and the SurfControl logo are trademarks of
SurfControl plc. All other trademarks are property of their respective owners.
November 2006
COMMENTS ON THIS GUIDE?
You can view updated documentation and support information at
http://www.surfcontrol.com
Was this guide helpful? E-mail us at documentation@surfcontrol.com to suggest changes or make a
correction.
TECHNICAL SUPPORT
For the latest support information on SurfControl products, visit
http://www.surfcontrol.com/support
You can find the following information on the Technical Support Web pages:
•
Read the Top Issues – This page has a quick list that covers the most common support issues
encountered with SurfControl products.
•
Search our Knowledge Base – Our constantly updated Knowledge Base contains articles, FAQs and
glossary items to answer your questions about all SurfControl products.
http://kb.surfcontrol.com
•
If your question or problem cannot be answered by the Top Issues or is not in the Knowledge Base,
complete an On-line Support Request Form.
•
Telephone Support numbers – If you would like to speak with a Technical Support Representative, our
excellent SurfControl Technical Support is just a phone call away.
Starter Guide
i
SurfControl Sales
SURFCONTROL SALES
For product and pricing information, or to place an order, contact SurfControl. To find your nearest
SurfControl office, please visit our Web site.
http://www.surfcontrol.com
ii
Starter Guide
TABLE OF CONTENTS
Notices ..................................................................................................................................................................................................... i
Comments on this Guide? .................................................................................................................................................................... i
Technical Support .................................................................................................................................................................................. i
SurfControl Sales .................................................................................................................................................................................. ii
INTRODUCTION
About SurfControl E-mail Filter ........................................................................................................................................................ 2
About This Guide ................................................................................................................................................................................. 2
New Features in Version 5.5 ............................................................................................................................................................... 2
PRE-INSTALLATION
In This Chapter ..................................................................................................................................................................................... 6
Minimum Requirements ...................................................................................................................................................................... 6
Other Requirements ............................................................................................................................................................................. 8
Pre-installation Considerations ........................................................................................................................................................... 8
Inbound and Outbound Filtering ....................................................................................................................................... 8
Database Considerations ...................................................................................................................................................... 9
Installation Recommendations .........................................................................................................................................................13
Dedicated SurfControl E-mail Filter Installation ...........................................................................................................14
Dedicated E-mail Filter Installation Using a Demilitarized Zone (DMZ) .................................................................15
E-mail Filter Installed on a Windows-based E-mail Server ..........................................................................................16
Installing on Windows 2000 ..............................................................................................................................................17
Creating a Database to Import Users and Groups in Rules .........................................................................................................18
Implementing Rules Using These Users and Groups....................................................................................................18
INSTALLATION
In This Chapter ...................................................................................................................................................................................20
Installation Options ............................................................................................................................................................................20
Configuration After Installation .......................................................................................................................................................20
Upgrading E-mail Filter .....................................................................................................................................................................21
Installing E-mail Filter ........................................................................................................................................................................24
Installing the Administration Client .................................................................................................................................................36
Reinstalling Your Previous Version of E-mail Filter .....................................................................................................................40
Starter Guide
iii
iv
Starter Guide
1
Introduction
About SurfControl E-mail Filter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 2
New Features in Version 5.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 2
1
INTRODUCTION
About SurfControl E-mail Filter
ABOUT SURFCONTROL E-MAIL FILTER
SurfControl E-mail Filter is a complete filtering solution that enables you to automatically and intelligently
manage your organization’s use of e-mail and enforce your Acceptable Use Policy (AUP). By managing
e-mail traffic, you can significantly reduce the risks to productivity, network resources, legal liability and
security.
ABOUT THIS GUIDE
This Guide outlines the basic processes for installing SurfControl E-mail Filter. To filter e-mail correctly, it is
essential that you configure the product once you have installed it. For detailed guidance on how to
configure E-mail Filter for the best results, see the SurfControl E-mail Filter Administrator’s Guide.
If you are deploying E-mail Filter in a multi-server environment, you need to ensure that E-mail Filter is
correctly positioned for your system configuration. See the SurfControl E-mail Filter Deployment Guide on
the SurfControl Web site:
http://www.surfcontrol.com/general/assets/whitepapers/deploy_sef.pdf
NEW FEATURES IN VERSION 5.5
Table 1-1 describes the advances in functionality that version 5.5 delivers.
Table 1-1 New features in version 5.5
Feature
Description
Message Search
The addition of multiple search criteria enables you to quickly search for
messages based on sender, recipient and/or date-range information. You
can search for inbound and/or outbound e-mails within supplied, selectable
date ranges, or your own custom date range. You can also select to search
using friendly names and/or e-mail addresses.
You can also restrict which remote administrators have access to the
Message Search function. This gives you greater control of system
administration.
Message History
2
Starter Guide
You can examine the details of an individual e-mail. This could be useful for
helping your Support department or Helpdesk to track problems with e-mail
processing. You can also save this information to various formats (such as
HTML, TXT, and so on), which enables you to forward the details to other
interested parties.
INTRODUCTION
New Features in Version 5.5
1
Table 1-1 New features in version 5.5 (Continued)
Feature
Description
Administrator Alerts
You can select to notify an e-mail administrator if the number of e-mails in
the Receive, Rules and Send folders is reached. This can enable your
administrators to control system resources.
Improved Message Administrator
Interface
The Message Administrator now has an easier to use interface in a logical,
intuitive display. This helps you to navigate more easily through queues
and logs.
Auditing of Queues
You can select to use a queue for auditing. This can be used to log actions
that have been carried out on e-mails and for example, to prove a breach
of your AUP. The details are stored in the Audit Log.
Policy Types in Rule Groups
The Rules Administrator displays policy types (Confidential, Network
Security, Virus, and so on) for each Rule Group. Policy Types enable you
to quickly determine the categories of e-mails within E-mail Filter queues
and logs, and the number of e-mails within specific categories.
These Policy Types are also used by the SurfControl Report Central (SRC)
and Personal E-mail Manager (PEM).
Easier Navigation of Logs
Existing Traffic Log has been split into three areas:
•
Denied Connections - for Directory Harvest Detection, Denial of
Service, and so on;
•
Receive log
•
Audit log - An entry is created when a user deletes or releases an email from a queue.
You can view logs for various time periods; today, last 7 days, and so on.
The Policy Type is always displayed in the logs.
You can limit the number of pages of logs that are displayed, and the
number of logs within each page. This ensures that you have full control
over the display.
Compatible with SurfControl Report
Central (SRC) v2.5
The new features of SurfControl E-mail Filter v5.5 enable you to take
advantage of the enhanced reporting capabilities of SurfControl Report
Central v2.5, which includes drill-down reporting.
See the SurfControl Report Central v2.5 Administrator’s Guide for details
of E-mail Filter reports.
Compatible with SurfControl
Personal E-mail Manager (PEM)
v1.0
The new features of SurfControl E-mail Filter v5.5 enable you to take
advantage of the enhanced blocked e-mail controls in SurfControl Personal
E-mail Manager v1.0, which includes assigning E-mail Filter queues for
PEM, enabling your users to have control of their own blocked e-mails, and
so on.
See the SurfControl Report Central v2.5 Administrator’s Guide for details.
Starter Guide
3
1
4
INTRODUCTION
New Features in Version 5.5
Starter Guide
2
Pre-installation
In This Chapter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 6
Minimum Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 6
Other Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 8
Pre-installation Considerations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 8
Installation Recommendations. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 13
Creating a Database to Import Users and Groups in Rules . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 18
2
PRE-INSTALLATION
In This Chapter
IN THIS CHAPTER
This section contains information to help you install SurfControl E-mail Filter successfully.
This version of SurfControl E-mail Filter is for SMTP only.
MINIMUM REQUIREMENTS
During installation, the System Checker will check your system to see if it meets the minimum
requirements for SurfControl E-mail Filter to be installed correctly. The minimum requirements are detailed
in Table 2-1 and Table 2-2.
Table 2-1 SurfControl E-mail Filter for SMTP - minimum requirements
Component
Requirement
Processor
Intel Pentium IV processor 1.4 GHz or higher
Memory
512 MB RAM minimum, 1024 MB recommended
Operating System
Windows Server 2000 Service Pack 4
Windows Advanced Server 2000 Service Pack 4
Windows Server 2003 Standard Edition Service Pack 1
Windows Server 2003 Enterprise Edition Service Pack 1
Windows 2003 R2 Enterprise Edition
Disk Space
1.7 GB minimum, 2.2 GB recommended.
Display
Super VGA (800 x 600) or higher resolution video adaptor and monitor
Web Browser
Microsoft Internet Explorer 5.0 or later
Networking
TCP/IP installed and configured with an Internet connection
DNS
Internal or External DNS configured
E-mail
E-mail system with SMTP gateway or MTA installed
MDAC
Microsoft Data Access Components MDAC 2.7 (Service Pack 2) or later
Database
Microsoft SQL Server 2000 or 2005.
If this is not installed on your system, SurfControl E-mail Filter will automatically install SQL
Express 2005 Service Pack 1.
SQL Server is recommended for larger sites, as it handles large volumes of data more easily.
6
Starter Guide
PRE-INSTALLATION
Minimum Requirements
2
Table 2-2 SurfControl E-mail Filter for SMTP Administration client - minimum requirements
Component
Requirement
Processor
Intel Pentium III processor 600MHz or higher.
Disk Space
100 MB minimum, 300 MB recommended.
Operating System
Windows 2000 Service Pack 4
Windows 2003 Enterprise Edition Service Pack 1
Windows XP Service Pack 2
Display
Super VGA (800 x 600) or higher resolution video adaptor and monitor.
Web Browser
Microsoft Internet Explorer 5.0 or later.
MDAC
Microsoft Data Access Components MDAC 2.7 (Service Pack 2) or later.
Starter Guide
7
2
PRE-INSTALLATION
Other Requirements
OTHER REQUIREMENTS
Please note these requirements:
•
You must have full administrative rights to install E-mail Filter.
•
If you will be installing SQL 2005 Express, you first need to install Windows Installer 3.1 and .NET
Framework 2.0.
•
You need the following information:
–
Your mail system’s pre-registered domain name
–
The IP address or host name of your e-mail system’s SMTP gateway or MTA.
–
The e-mail address of your e-mail system security administrator.
–
Your Activation Key as supplied by SurfControl.
–
The HTTP port number (default 8181) to install and start the Administration service.
–
The IP address of the relay host (for example your ISP) if you are not using MX records.
PRE-INSTALLATION CONSIDERATIONS
This section discusses the following pre-installation considerations:
•
Inbound and outbound filtering
•
Database considerations (size and placement)
•
Load balancing methods
•
Server size.
INBOUND AND OUTBOUND FILTERING
SurfControl E-mail Filter stops spam at the gateway, which reduces the load on network resources. If your
main focus is to stop spam and other unwanted content from entering your network, configure SurfControl
E-mail Filter for inbound filtering only.
However, SurfControl E-mail Filter provides significant benefits if you also configure it to perform outbound
filtering. Outbound filtering can scan for confidential or potentially liable information before routing the
e-mail to the intended recipient. Also, SurfControl can add customizable footers or banners to an e-mail
before it leaves your network.
In addition, many policies can apply to both inbound and outbound traffic. For example, with a single policy,
you can stop inbound and outbound viruses.
8
Starter Guide
PRE-INSTALLATION
Pre-installation Considerations
2
DATABASE CONSIDERATIONS
SurfControl E-mail Filter creates the following SQL databases:
•
STEMConfig – Stores all configuration data and filtering policies.
•
STEMLog – Stores all logging data. This database has a default size of 1.5 GB.
•
STEMFriendlyName – Stores the details of the friendly name aliases of e-mail addresses.
SQL or MSDE
MSDE is the run-time version of SQL. MSDE databases have a 2 GB size limit and few management tools,
but are an effective database for small environments.
Although you can install a SQL database onto the SurfControl server, SurfControl recommends that large
environments install a fully licensed version of SQL onto a separate, dedicated server. The capacity of an
SQL 2005 Express database is 4 GB.
Dedicated or Centralized
If your network requires multiple SurfControl servers, you have two database options: dedicated or
centralized. A dedicated database stores data for a single SurfControl server in a single database; a
centralized database stores the data for multiple SurfControl servers in a single database.
Many customers choose to use the centralized database option, which provides the advantages of
centralized policy management and message administration, plus the ability to run reports from a single
repository.
However, the size of a centralized database grows in direct relation to the number of SurfControl servers
that write to it. Depending on the size of your environment and the number of e-mails that pass through
your network, a centralized database can require additional administration. In this case, you may choose to
use a dedicated database for each SurfControl E-mail Filter server.
Database Size
The size of the database correlates to the number of e-mails your organization receives per day, and to the
length of time you plan to retain the logged data, which is used for message administration and reporting.
To size your database appropriately, SurfControl estimates that each e-mail generates approximately 1 KB
of log data stored in the database. This calculation can also be helpful when determining whether MSDE,
SQL 2005 Express or full SQL is appropriate for your environment.
The server on which you store the SurfControl E-mail Filter data must have as much RAM as the
anticipated size of the database. For example, a 1 GB database requires 1 GB of RAM (Microsoft
recommendations for optimal performance).
Starter Guide
9
2
PRE-INSTALLATION
Load Balancing Methods
You can load balance SurfControl E-mail Filter using MX records. On the DNS server hosting your domain,
create an MX record for each primary SurfControl server using the same MX preference, while giving the
failover server a higher number (which gives it a lower preference). Table 2-3 provides an example of MX
preference assignments for load-balancing and failover using MX records. Figure 2-1 further shows this
method.
Table 2-3 MX Records for load balancing
Mail Exchanger
IP Address
MX Preference
mx1.siteA.com
208.126.216.20
5
mx2.siteA.com
208.126.216.21
5
mx3.siteA.com
208.126.216.22
5
mx4.siteA.com
197.201.56.201
10
mx1.siteB.com
197.201.56.201
5
mx2.siteB.com
197.201.56.202
5
mx3.siteB.com
197.201.56.203
5
mx4.siteB.com
208.126.216.20
10
Site A
Site B
10
Starter Guide
PRE-INSTALLATION
Figure 2-1
2
Using MX records for load balancing
In Figure 2-1, e-mail sent to siteA.com round-robins between mail exchangers 1, 2, and 3, because each
SurfControl server has the same MX preference of 5. A lower MX preference number means that it has a
higher priority – 5 having a higher priority than 10. The same thing happens for e-mails sent to siteB.com.
If site A is unavailable (for example, with a network failure), the sending mail server will route e-mail to the
fourth (failover) MX record, which is the address of a server in a different physical location.
For the described failover to work properly, SurfControl servers in site A are configured to accept
messages for site B, and SurfControl servers in site B are configured to accept messages for site A. The
failover servers also have static routes configured so that SurfControl knows where to route the e-mails.
In addition to load balancing and failover using MX records, there are also sophisticated load balancing
switches that can be used for these purposes. These switches offer a variety of load balancing algorithms,
in addition to round-robin delivery, which provide efficient load distribution and timely failover. Although this
is not a required component for a SurfControl implementation, the use of load balancing switches may
improve the overall efficiency of your SMTP infrastructure.
Starter Guide
11
2
PRE-INSTALLATION
Server Size
SurfControl E-mail Filter requires Windows 2000 Server SP3 or greater, or Windows 2003 Server.
Advanced Server is recommended for high-volume e-mail environments. Table 2-4 shows SurfControl’s
server recommendations, depending on how many e-mails per hour your organization typically handles.
Table 2-4 Server recommendations
E-mails per hour
Server recommendations
< 10K
PIII 1Ghz + 1 GB RAM
< 25K
Dual Xeon 2GB RAM
<40K
Quad Xeon, 2GB RAM, 3 or more HDDs (10,000 +
RPM) for e-mail processing
< 120K
3-Quad Xeon, 2GB RAM, 3 or more HDDs (10,000 +
< 240K
6-Quad Xeon, 2GB RAM, 3 or more HDDs (10,000 +
Actual processing speeds are dependent on several factors: number of rules processing threads, number
of enabled rules, size of e-mails, and complexity of the e-mails (such as, attachments, embedded files, and
so on).
Partitioning the Server. Optimize SurfControl performance by installing onto a server capable of fast
disk I/O and configured to support multiple HDDs. Figure 2-2 shows the optimal HDD and partitioning
configuration for SurfControl.Because SurfControl frequently reads from and writes to disk as it processes
e-mail, SurfControl recommends that you have a server capable of fast disk I/O.
Figure 2-2 shows a server with five SCSI HDDs. Two of the HDDs are in a RAID1 configuration and are
divided into three partitions: a partition for the operating system, a partition for the page file, and a partition
for the SurfControl application.
The other three HDDs each have a single partition and are capable of fast disk I/O. The first drive contains
the In folder where SurfControl stores the received e-mails. The second drive contains the Work
folder.SurfControl retrieves e-mails from the In folder and moves them to the Work folder, where the
e-mails are processed against the configured rule set. SurfControl then moves the e-mail to a quarantine
folder for review or to the \Out folder for delivery. The third drive contains the \Out folder where SurfControl
relays processed messages to the intended recipient.
12
Starter Guide
PRE-INSTALLATION
Installation Recommendations
Figure 2-2
2
Partitioning the SurfControl server
INSTALLATION RECOMMENDATIONS
SurfControl recommends that you install E-mail Filter on a dedicated server. To enable E-mail Filter to
process e-mail immediately, do not use this server either as an e-mail server or a Web server. See the
following sections for details of various installation options:
•
Dedicated SurfControl E-mail Filter Installation on page 14.
•
Dedicated E-mail Filter Installation Using a Demilitarized Zone (DMZ) on page 15.
•
E-mail Filter Installed on a Windows-based E-mail Server on page 16.
•
Installing on Windows 2000 on page 17.
Starter Guide
13
2
PRE-INSTALLATION
DEDICATED SURFCONTROL E-MAIL FILTER INSTALLATION
Figure 2-3
E-mail Filter on a dedicated server
Outbound Connections
When using a dedicated server, you should:
•
Direct any internal SMTP traffic on port 25 to the IP address of the E-mail Filter.
•
Allow through the firewall only traffic that is sent from the E-mail Filter.
Inbound Connections
To ensure that your system is correctly configured:
•
On your SMTP Gateway, direct all e-mail to SurfControl E-mail Filter
•
On your firewall, re-direct the existing inbound (port 25) tunnel from your existing SMTP Gateway to
SurfControl E-mail Filter.
Relaying E-mail
In this installation, the existing mail server is configured to forward all e-mail to the SurfControl E-mail
Filter. Changes to e-mail clients should not be required. Any POP clients using external e-mail servers
should have their SMTP host set to SurfControl E-mail Filter.
Make sure your firewall allows SurfControl E-mail Filter to access sites outside the Internet with both
port 25 and port 53 to support SMTP and DNS requests. You do not need to allow port 53 if you have an
internal DNS or are not using MX records.
14
Starter Guide
PRE-INSTALLATION
2
DEDICATED E-MAIL FILTER INSTALLATION USING A DEMILITARIZED
ZONE (DMZ)
Figure 2-4
E-mail Filter with a DMZ
Outbound Connections
The firewall has a tunnel configured for port 25 from the e-mail Host to the SurfControl E-mail server in the
DMZ. A tunnel for port 25 is configured from the SurfControl E-mail server in the DMZ to the Internet.
Inbound Connections
The firewall has the inbound port 25 tunnel configured to the SurfControl E-mail Filter server IP address (in
the DMZ). A tunnel on port 25 from the SurfControl E-mail Filter server to the e-mail host is also
configured.
Relaying E-mail
The existing e-mail host is configured to relay all e-mail through SurfControl E-mail Filter. Changes to the
e-mail Clients should not be required. Any POP Clients using external e-mail servers should have their
SMTP host set to the SurfControl E-mail Filter server.
Starter Guide
15
2
PRE-INSTALLATION
E-MAIL FILTER INSTALLED ON A WINDOWS-BASED E-MAIL SERVER
Figure 2-5
E-mail Filter on an existing mail server
Outbound connections
The firewall is configured to only accept internal SMTP connections from the SurfControl E-mail Filter host.
A tunnel for port 25 is configured from the SurfControl E-mail Filter server to the Internet.
Inbound Connections
The firewall has the inbound port 25 tunnel configured to the SurfControl E-mail Filter server IP address.
The existing e-mail host is configured to relay all e-mail to itself, through the SurfControl E-mail Filter
server, on another port (for example, port 26). Changes to the e-mail Clients should not be required.
Relaying E-mail
Any POP clients using external e-mail servers should have their SMTP host set to the SurfControl E-mail
Filter.
SurfControl do not recommended placing the existing e-mail server in the DMZ or Packet Switching
Network, as this may be a data security risk. However, some POP configurations may require this
configuration.
16
Starter Guide
PRE-INSTALLATION
2
INSTALLING ON WINDOWS 2000
Caution: If you are installing SurfControl E-mail Filter on an Exchange 2000 server, do not
disable and stop the SMTP service.
When installing E-mail Filter on a Windows 2000 computer, you need to disable and stop services in the
following circumstances:
•
Disable and stop the SMTP service before you install E-mail Filter – The SMTP service uses
port 25, which is the port that E-mail Filter uses. Therefore, you must disable and stop the SMTP
service before you install E-mail Filter, otherwise E-mail Filter will not start.
•
You can install E-mail Filter on any port, but you must first stop and disable any service using that port.
•
Windows 2000 uses a Web publishing service on port 80. Unless you are using this service,
SurfControl recommend that you disable this service.
In the following procedure, the SMTP service is disabled and stopped, but you can use this procedure to
disable and stop any service. To disable and stop the SMTP service, follow Procedure 2-1.
Procedure 2-1 Disable and stop the SMTP service
Step
1
Action
In the Windows Control Panel, select
Administrative Tools > Services
2
From the list of services, double-click the service
Simple Mail Transport Protocol (SMTP)
3
The properties dialog box is displayed.
Click the General tab.
4
From the Startup type: drop-down list, select
Disabled.
5
Click Stop.
6
Click OK.
Starter Guide
17
2
PRE-INSTALLATION
Creating a Database to Import Users and Groups in Rules
CREATING A DATABASE TO IMPORT USERS AND
GROUPS IN RULES
You can create a database that contains users and groups to be imported into the Rules Administrator
when setting up rules.
To set up the database:
1
Run the batch file ScoutGroupDB.bat to create the ScoutGroupDB database, which contains a single
table, named EmailAddress. If you have installed E-mail Filter using the default path, this file is in
C:\Program Files\SurfControl E-mail Filter\Database
2
Create System Data Source Name (DSN) ScoutGroup on the same computer as E-mail Filter:
i
Select Control Panel > Administrative Tools > Data Sources (ODBC)
ii
Select the System DSN tab, and then click Add.
iii
Select SQL Server from the list, and then click Finish.
iv
Enter the details of the data source, and then click Next.
v
Use the same login authentication details as the E-mail Filter server, and then click Next.
vi
Select options as required in the Wizard screens.
vii Ensure that the configuration in the final screen is correct, and then click OK.
The PlugIns will use the same authentication details as the E-mail Filter setup.
3
4
Enter the relevant users and groups details in the following EmailAddress table fields:
–
[Email] – Enter the e-mail address of the user. For example, bill@company1.com
–
[EmURules] – Enter the group names for the user. This is semicolon delimited. For example,
Sales;Marketing;Admin.
Add more users and groups to the database as needed.
IMPLEMENTING RULES USING THESE USERS AND GROUPS
To use these Exchange users and groups in the E-mail Filter rules, follow the instructions in the
SurfControl Administrator’s Guide, Chapter 6 - Rules Objects, section ‘Who Objects’, sub-section
‘Retrieving Information from a Data Source’.
18
Starter Guide
3
Installation
In This Chapter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 20
Installation Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 20
Configuration After Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 20
Upgrading E-mail Filter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 21
Installing E-mail Filter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 24
Installing the Administration Client . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 36
Reinstalling Your Previous Version of E-mail Filter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .page 40
3
INSTALLATION
In This Chapter
IN THIS CHAPTER
This chapter describes the upgrade process, the installation options, and explains how to install each one,
and how to reinstall (‘rollback’) to your previous version of E-mail Filter.
INSTALLATION OPTIONS
You can install the following components for SurfControl E-mail Filter:
•
E-mail Filter Server – A complete installation of all components.
•
Administration Client only – To install only specific components of E-mail Filter for remote monitoring
and/or administration of the E-mail Filter server.
The Administration Client is part of a standard installation. You can only install this separately if you
select a custom installation.
Throughout the installation process you can click:
•
Next to go to the next part of the process.
•
Back to go back to the previous screen.
•
Cancel to abort an installation.
CONFIGURATION AFTER INSTALLATION
For details of how you can configure E-mail Filter after installation, see the SurfControl E-mail Filter
Administrator’s Guide.
20
Starter Guide
INSTALLATION
Upgrading E-mail Filter
3
UPGRADING E-MAIL FILTER
If you are upgrading from a previous version of E-mail Filter, follow Procedure 3-1.
Procedure 3-1 Upgrading from a previous version of E-mail Filter
Step
1
Action
If you attempt to install a later version of E-mail
Filter over an existing installation, you can either:
•
Upgrade to the later version, or
•
Uninstall the earlier version before installing
the later version.
2
Select Upgrade to..., and then click Next.
3
If you want to continue with the upgrade, click
Yes in the confirmation request.
4
The E-mail Filter services are stopped and the
existing databases and files are backed up. This
may take a short time.
The Setup Status screen shows the progress of
the setup.
Starter Guide
21
3
INSTALLATION
Procedure 3-1 Upgrading from a previous version of E-mail Filter (Continued)
Step
5
Action
E-mail Filter downloads the latest content for
specific E-mail Filter functions.
When the downloads have completed
successfully, click Next.
6
The Perform Log Database Synchronization
screen enables you to synchronize your queues,
which enables you to access existing isolated
e-mails in Message Administrator.
•
Yes – Starts the process for E-mail Filter to
create a new log database and synchronize
queues to regenerate records for isolated email.
When the process is complete the Upgrade
Complete screen is displayed. See step 8.
•
22
No – The synchronization is canceled, and
the Skip Log Database Synchronization
screen is displayed. See step 7.
Starter Guide
INSTALLATION
3
Procedure 3-1 Upgrading from a previous version of E-mail Filter (Continued)
Step
7
Action
If you have chosen to skip the queue
synchronization, the Skip Log Database
Synchronization screen is displayed.
This screens tells you how to synchronize your
queues after installation to enable you to access
your old isolated e-mails.
8
In the Upgrade Complete screen, click Finish.
Starter Guide
23
3
INSTALLATION
Installing E-mail Filter
INSTALLING E-MAIL FILTER
For a complete installation of all the E-mail Filter components, follow Procedure 3-2.
Procedure 3-2 Installing E-mail Filter
Step
1
2
Action
Select the folder in which to save the installation
files. Either:
•
Click Next to save to the default folder
displayed, or
•
Enter or change to a different folder, and
then click Next.
The InstallShield Wizard extracts files and
prepares the setup.
Note: If some files already exist on your
system, an ‘Overwrite Protection’ pop-up
message is displayed.
3
The Setup Welcome screen is displayed. You
can open:
•
Readme – Contains details of
enhancements and technical improvements
for this release.
•
Getting Started Guide – This Installation
Guide in PDF.
Click Next.
24
Starter Guide
INSTALLATION
3
Procedure 3-2 Installing E-mail Filter (Continued)
Step
Action
SurfControl License Agreement
4
If you accept the terms of the license agreement,
select I accept the terms of the license
agreement.
5
Click Next.
GNU License Agreement
6
agreement.
7
Click Next.
Setup Type
8
You can either select a typical or custom
installation:
•
Typical – Installs all the core components of
E-mail Filter.
•
Custom – Enables you to install only the
components you need.
For example, if you do not want to install
parts of the Administration Client.
Click Next.
Starter Guide
25
3
INSTALLATION
Step
Action
Select Components (Custom installation only)
9
If you have selected a ‘Custom’ installation, the
component selection screen is displayed.
You can select or clear any of the check boxes.
Click Next.
Your system is checked for its suitability against
minimum and recommended requirements.
System Check
10
If your system does not meet either the minimum
or recommended requirements, one of these
messages is displayed:
•
Error – A required component is missing
and the installation must be cancelled. An
incorrect Operating System or Service Pack
level will cause this message.
•
Warning – A warning is displayed if you
have the minimum, but not the
recommended, memory or disk space. The
installation is not stopped.
•
Install – A component, such as an MDAC
component, has not been detected and will
be installed as part of the process. As part of
this process you may be instructed to
reboot.
Please see Minimum Requirements on page 6.
If your system meets the minimum requirements,
this screen is not displayed.
Click Next.
26
Starter Guide
INSTALLATION
3
Step
11
Action
E-mail Filter uses a relational database to store
rules, system configuration and dictionaries.
You can create the E-mail Filter databases on
either:
•
Your local computer – You need to have
SQL server installed already, or
•
A remote computer – E-mail Filter installs
tools on your local computer that enable you
to connect to the remote SQL server
database. See step 13.
If no SQL compatible server is detected on the
local computer, there is an option to install SQL
Server 2005 Express.
Note: To install SQL Server 2005 Express, you
must first install Microsoft Windows
Installer 3.1 and Microsoft .NET
Framework 2.0.
12
Click Next.
13
You can connect to an SQL server instance in
two ways:
•
If you have selected to use a local SQL
instance, click Next to accept the defaults.
•
If you have selected to connect to a remote
SQL instance, select or type the name. This
can be in either of the following formats:
<computer name>, or
<computer name>\<SQL instance name>
For example:
MYPC_1, or
MYPC_1\SQL_2005
If you select SQL authentication, enter the
login ID and password.
Make sure the SQL Server is running in
mixed mode.
Click Next.
Starter Guide
27
3
INSTALLATION
Step
14
Action
A summary screen displays your selections and
the installation location of the components.
Click Next.
15
A progress bar shows the status of the setup.
16
An installation complete screen is displayed.
Select or clear the check box to view the
README file.
17
28
Click Finish.
Starter Guide
INSTALLATION
3
Step
18
Action
The Configuration wizard welcome screen
opens, which explains the configuration steps.
Note: Stages 3 and 4 are not available if you
are using an existing configuration
database.
The configuration screens contain useful
graphics that show exactly where you are in the
configuration process.
Click Next.
19
In the Customer Information screen, enter your
details, and then click Next.
Note: The Next button is not active until you
have entered all your details.
20
In the Licensing screen, you can select to
either:
•
evaluate E-mail Filter, or
•
activate E-mail Filter using the license that
you have bought.
If you have bought a license, select the option
I have purchased a license, and then enter the
license keys in this screen and the next.
21
Click Next.
Starter Guide
29
3
INSTALLATION
Step
22
Action
The System Details screen describes the
details that you have to enter in this section.
Click Next.
23
Enter the details of your Windows user account.
If your login details are incorrect, a pop-up
message asks you to enter your details again.
Click Next.
24
If you have selected to install the E-mail Filter
Administration client, enter a Web services port
that the E-mail Filter Administration client should
use to communicate with the E-mail Filter client
and the Web Administrator.
Default = 8181
Click Next.
30
Starter Guide
INSTALLATION
3
Step
25
Action
The Mail Routing screen describes the details
that you have to enter in this section.
Click Next.
For more information about how to set up
advanced threat protection, see the SurfControl
E-mail Filter System Administrator’s Guide.
26
E-mail Filter uses the SMTP port that receives
your e-mail traffic from the Internet.
Select either:
•
port 25, which is the default, or
•
a different port; enter the port number.
Click Next.
27
Enter the information about your primary e-mail
domain.
If you are unsure about the validity of the details,
click Test to test the connection.
Click Next.
For more information about how to configure
additional domains, see the SurfControl E-mail
Filter System Administrator’s Guide.
Starter Guide
31
3
INSTALLATION
Step
28
Action
Select how E-mail Filter will send outbound
e-mails:
•
Send directly to the Internet, resolving mail
servers by using DNS.
•
Send through an outbound mail server.
Enter the host name or IP address, and the
port number.
If you are unsure about the validity of the details,
click Test to test the connection.
Click Next.
For more information about how to add outbound
relay hosts, see the SurfControl E-mail Filter
System Administrator’s Guide.
29
The Filtering Options screen describes the
details that you have to enter in this section.
Click Next.
30
To enable you to start filtering your e-mail
immediately, E-mail Filter is supplied with
standard rule groups that deal with the most
common e-mail threats. All of these groups are
selected by default.
To remove filtering using a rule group, clear the
relevant check box.
32
Starter Guide
INSTALLATION
3
Step
31
Action
If an e-mail triggers a rule, you can isolate the
e-mail in a queue folder.
Either:
32
•
Click Next to use the default folder
displayed, or
•
Enter or browse to a folder, and then click
Next.
To prevent queues becoming too large, you can
select to delete e-mails from specific queues
after a specific time period.
For more information on queue management,
see the SurfControl E-mail Filter System
Click Next.
33
To prevent the logging database becoming too
large and to maintain performance, you can
select to purge this database regularly.
For more information on database management,
see the SurfControl E-mail Filter System
Click Next.
Starter Guide
33
3
INSTALLATION
Step
34
Action
To enable the system administrator to receive
e-mail notifications of system events, enter an
e-mail address.
Click Next.
35
The Configuration Wizard is now ready to
configure the tasks displayed in the list with the
details you specified.
Note: If you do not want the configuration
process to continue, click Cancel. The
Configuration Wizard will save your
settings up to this point so that you can
run the wizard another time.
Click Start to proceed with the configuration
process. The screen displays the progress of the
configuration.
If an event fails, do one of the following:
34
•
Click Back, and then amend the relevant
details.
•
Click Retry to retry the configuration of the
event without amending any details.
•
Click Skip to miss out the configuration of
the current event and continue the
configuration of the next events.
Starter Guide
INSTALLATION
3
Step
36
Action
To enable real-time anti-virus scanning that
protects your system against threats, your antivirus product must not scan the E-mail Filter
work folder.
To check if your folder will be scanned, click
Check Folders.
37
In the dialog box that is displayed, click Test.
38
If Test OK is displayed, click Close.
Note: If the test fails, SurfControl recommends
that you exclude all E-mail Filter
directories from real-time anti-virus
scanning.
39
40
Click OK.
A Configuration Complete screen is displayed.
Click Finish.
Starter Guide
35
3
INSTALLATION
Installing the Administration Client
INSTALLING THE ADMINISTRATION CLIENT
To install selected E-mail Filter components for use through remote administration, follow Procedure 3-3.
Procedure 3-3 Installing the Administration Client
Step
1
Action
From the Welcome screen, click Next.
SurfControl License Agreement
2
agreement.
3
Click Next.
GNU License Agreement
36
4
agreement.
5
Click Next.
Starter Guide
INSTALLATION
3
Procedure 3-3 Installing the Administration Client (Continued)
Step
Action
Setup Type
6
Select Custom. This enables you to install only
the components you need.
7
Click Next.
Select Components
8
Clear the Server Components check box.
The Administration Client and its
subcomponents are selected.
Clear any of the subcomponents that are not
needed.
9
Click Next.
Starter Guide
37
3
INSTALLATION
Step
Action
System Check
10
If your system does not meet either the minimum
or recommended requirements, one of these
messages is displayed:
•
Error – A required component is missing
and the installation must be cancelled. An
incorrect Operating System or Service Pack
level will cause this message.
•
Warning – A warning is displayed if you
have the minimum, but not the
recommended, memory or disk space. The
installation is not stopped.
•
Install – A component, such as an MDAC
component, has not been detected and will
be installed as part of the process. As part of
this process you may be instructed to
reboot.
Please see Minimum Requirements on page 6.
If your system meets the minimum requirements,
this screen is not displayed.
Click Next.
Configure Remote Access
11
Enter the details of your E-mail Filter server:
•
Server name or IP address
•
Port number
•
User name
•
Password.
These details enable users on this computer to
log on to the E-mail Filter server and use the
selected E-mail Filter administration tools.
12
38
Click Next.
Starter Guide
INSTALLATION
3
Step
Action
Installation Summary
13
A summary of your options is displayed.
Note: By default, the components will be
installed in the folder C:\Program
Files\SurfControl E-mail Filter.
If the options are correct, click Next.
If you need to change any details, click Back.
14
Click Next.
Finish
15
An Installation Complete screen is displayed.
Click Finish.
You can select to view the README file.
16
Click Finish.
Starter Guide
39
3
INSTALLATION
Reinstalling Your Previous Version of E-mail Filter
REINSTALLING YOUR PREVIOUS VERSION OF E-MAIL
FILTER
To remove the current version of E-mail Filter and reinstall (roll back to) your previous version, follow
Procedure 3-4.
A restart is needed if the files that need to be rolled back to a previous version are locked by other
processes.
Procedure 3-4 Rolling back to a previous version of E-mail Filter
Step
Action
1
Install the latest version of E-mail Filter.
2
If you decide to revert to an earlier version of
E-mail Filter, you can select to either:
•
Rollback to the earlier version, or
•
Uninstall the current version before installing
the earlier version.
3
Select Rollback to..., and then click Next.
4
If you want to continue with the rollback, click
Yes in the confirmation request.
The E-mail Filter services are stopped, existing
databases, files and registry settings are
restored. This may take a short time.
5
6
40
In the Rollback Complete screen, select to
either:
•
Restart your computer now, or
•
Restart your computer later.
Click Finish.
Starter Guide

SurfControl E-mail Filter for SMTP v5.5 Starter Guide

Transcription

Similar documents

Hydro-Filter™ - Phoenix Truckmounts

ecopure® dual stage filter

MADE IN THE USA - FreshWaterSystems.com

MADE IN THE USA - FreshWaterSystems.com

Brochure - Linis Pure Water Systems

vortronic

Clean Better, Live Smarter

FleetValue ™ Oil Filters

- Hydro One Marketing Sdn. Bhd