elmau
/
iredmail-doc
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Update en_US/howto/1-enable.smtps.md to mention how to open port 465 with firewalld on RHEL/CentOS 7.

This commit is contained in:
Zhang Huangbin 2015-08-14 08:51:29 +08:00
parent cf35d54b95
commit 3e4c11bfad
8 changed files with 128 additions and 27 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
README.md
View File

@ -2,7 +2,7 @@ Please visit [http://www.iredmail.org/docs/](http://www.iredmail.org/docs/)
to read converted documents in HTML format, get support in our forum:
[http://www.iredmail.org/forum/](http://www.iredmail.org/forum/).
= How to translate and contribute
# How to translate and contribute
* Create a new directory and name it to the short language code. e.g. for
Germany, please name it `de_DE`.

70
en_US/howto/1-enable.smtps.md
View File

@ -37,27 +37,69 @@ Uncomment first 4 lines, but leave the last one commented out (because iRedMail
Restart Postfix service to enable SMTPS.
### Open port 465 in iptables
### Open port `465` in firewall
On RHEL/CentOS, please update iptables rule file `/etc/sysconfig/iptables`, add one rule (third line in below code) for port 465, then restart iptables service.
#### On RHEL/CentOS
# File: /etc/sysconfig/iptables
-A INPUT -p tcp --dport 25 -j ACCEPT
-A INPUT -p tcp --dport 587 -j ACCEPT
-A INPUT -p tcp --dport 465 -j ACCEPT
* on RHEL/CentOS 6, please update iptables rule file `/etc/sysconfig/iptables`, add one rule (third line in below code) for port 465, then restart iptables service.
```
# Part of file: /etc/sysconfig/iptables
-A INPUT -p tcp --dport 25 -j ACCEPT
-A INPUT -p tcp --dport 587 -j ACCEPT
-A INPUT -p tcp --dport 465 -j ACCEPT
```
* on RHEL/CentOS 7, please add file `/etc/firewalld/services/smtps.xml`, with content below
```
<?xml version="1.0" encoding="utf-8"?>
<service>
<short>Enable SMTPS</short>
<description>Enable SMTPS.</description>
<port protocol="tcp" port="465"/>
</service>
```
Update file `/etc/firewalld/zones/iredmail.xml`, enable smtps service by
inserting line `<service name="smtps"/>` inside `<zone></zone>` block like
below:
```
<zone>
...
<service name="smtps"/>
</zone>
```
Restart firewalld service:
```
# firewall-cmd --complete-reload
```
#### on Debian/Ubuntu
On Debian/Ubuntu, if you use iptables rule file provided by iRedMail, please update `/etc/default/iptables`, add one rule (third line in below code) for port 465, then restart iptables service.
File: /etc/sysconfig/iptables
-A INPUT -p tcp --dport 25 -j ACCEPT
-A INPUT -p tcp --dport 587 -j ACCEPT
-A INPUT -p tcp --dport 465 -j ACCEPT
```
# Part of file: /etc/default/iptables
-A INPUT -p tcp --dport 25 -j ACCEPT
-A INPUT -p tcp --dport 587 -j ACCEPT
-A INPUT -p tcp --dport 465 -j ACCEPT
```
On OpenBSD, please append service 'smtps' in `/etc/pf.conf`, parameter `mail_services=`:
#### on OpenBSD
File: /etc/pf.conf
mail_services="{www, https, submission, imap, imaps, pop3, pop3s, ssh, smtps}"
On OpenBSD, please append service `smtps` in `/etc/pf.conf`, parameter `mail_services=`:
```
# Part of file: /etc/pf.conf
mail_services="{www, https, submission, imap, imaps, pop3, pop3s, ssh, smtps}"
```
Reload PF rule file:
# pfctl -f /etc/pf.conf
```
# pfctl -f /etc/pf.conf
```

2
en_US/howto/ldap.add.mail.alias.md
View File

@ -1,5 +1,7 @@
# LDAP: Add a mail alias account
[TOC]
## Add mail alias with iRedAdmin-Pro
With iRedAdmin-Pro, please click menu in main navigation bar: `Add -> Mail Alias'.

4
en_US/howto/ldap.user.mail.forwarding.md
View File

@ -1,4 +1,6 @@
# LDAP: User mail forwarding.
# LDAP: User mail forwarding
[TOC]
## Set mail forwarding with iRedAdmin-Pro

53
html/enable.smtps.html
View File

@ -17,7 +17,12 @@
<li><a href="#why-iredmail-doesnt-enable-smtps-smtp-over-ssl-by-default">Why iRedMail doesn't enable SMTPS (SMTP over SSL) by default</a></li>
<li><a href="#why-enable-smtps-since-its-depreciated">Why enable SMTPS since it's depreciated</a></li>
<li><a href="#how-to-enable-smtps">How to enable SMTPS</a></li>
<li><a href="#open-port-465-in-iptables">Open port 465 in iptables</a></li>
<li><a href="#open-port-465-in-firewall">Open port 465 in firewall</a><ul>
<li><a href="#on-rhelcentos">On RHEL/CentOS</a></li>
<li><a href="#on-debianubuntu">on Debian/Ubuntu</a></li>
<li><a href="#on-openbsd">on OpenBSD</a></li>
</ul>
</li>
</ul>
</li>
</ul>
@ -50,23 +55,55 @@ Quote from <a href="http://en.wikipedia.org/wiki/SMTPS">wikipedia.org</a></p>
# -o milter_macro_daemon_name=ORIGINATING
</code></pre>
<p>Restart Postfix service to enable SMTPS.</p>
<h3 id="open-port-465-in-iptables">Open port 465 in iptables</h3>
<p>On RHEL/CentOS, please update iptables rule file <code>/etc/sysconfig/iptables</code>, add one rule (third line in below code) for port 465, then restart iptables service.</p>
<pre><code># File: /etc/sysconfig/iptables
<h3 id="open-port-465-in-firewall">Open port <code>465</code> in firewall</h3>
<h4 id="on-rhelcentos">On RHEL/CentOS</h4>
<ul>
<li>on RHEL/CentOS 6, please update iptables rule file <code>/etc/sysconfig/iptables</code>, add one rule (third line in below code) for port 465, then restart iptables service.</li>
</ul>
<pre><code># Part of file: /etc/sysconfig/iptables
-A INPUT -p tcp --dport 25 -j ACCEPT
-A INPUT -p tcp --dport 587 -j ACCEPT
-A INPUT -p tcp --dport 465 -j ACCEPT
</code></pre>
<ul>
<li>on RHEL/CentOS 7, please add file <code>/etc/firewalld/services/smtps.xml</code>, with content below</li>
</ul>
<pre><code>&lt;?xml version=&quot;1.0&quot; encoding=&quot;utf-8&quot;?&gt;
&lt;service&gt;
&lt;short&gt;Enable SMTPS&lt;/short&gt;
&lt;description&gt;Enable SMTPS.&lt;/description&gt;
&lt;port protocol=&quot;tcp&quot; port=&quot;465&quot;/&gt;
&lt;/service&gt;
</code></pre>
<p>Update file <code>/etc/firewalld/zones/iredmail.xml</code>, enable smtps service by
inserting line <code>&lt;service name="smtps"/&gt;</code> inside <code>&lt;zone&gt;&lt;/zone&gt;</code> block like
below:</p>
<pre><code>&lt;zone&gt;
...
&lt;service name=&quot;smtps&quot;/&gt;
&lt;/zone&gt;
</code></pre>
<p>Restart firewalld service:</p>
<pre><code># firewall-cmd --complete-reload
</code></pre>
<h4 id="on-debianubuntu">on Debian/Ubuntu</h4>
<p>On Debian/Ubuntu, if you use iptables rule file provided by iRedMail, please update <code>/etc/default/iptables</code>, add one rule (third line in below code) for port 465, then restart iptables service.</p>
<pre><code>File: /etc/sysconfig/iptables
<pre><code># Part of file: /etc/default/iptables
-A INPUT -p tcp --dport 25 -j ACCEPT
-A INPUT -p tcp --dport 587 -j ACCEPT
-A INPUT -p tcp --dport 465 -j ACCEPT
</code></pre>
<p>On OpenBSD, please append service 'smtps' in <code>/etc/pf.conf</code>, parameter <code>mail_services=</code>:</p>
<pre><code>File: /etc/pf.conf
mail_services="{www, https, submission, imap, imaps, pop3, pop3s, ssh, smtps}"
<h4 id="on-openbsd">on OpenBSD</h4>
<p>On OpenBSD, please append service <code>smtps</code> in <code>/etc/pf.conf</code>, parameter <code>mail_services=</code>:</p>
<pre><code># Part of file: /etc/pf.conf
mail_services=&quot;{www, https, submission, imap, imaps, pop3, pop3s, ssh, smtps}&quot;
</code></pre>
<p>Reload PF rule file:</p>
<pre><code># pfctl -f /etc/pf.conf
</code></pre><p style="text-align: center; color: grey;">Document published under a <a href="http://creativecommons.org/licenses/by-nd/3.0/us/" target="_blank">CC BY-ND 3.0</a> license. If you found something wrong, please do <a href="http://www.iredmail.org/contact.html">contact us</a> to fix it.<script>

2
html/index.html
View File

@ -94,7 +94,7 @@ repository</a>.</p>
<li><a href="ldap.add.catch-all.html">LDAP: Add per-domain catch-all account</a></li>
<li><a href="ldap.add.mail.alias.html">LDAP: Add a mail alias account</a></li>
<li><a href="ldap.add.mail.list.html">LDAP: Add a mail list account</a></li>
<li><a href="ldap.user.mail.forwarding.html">LDAP: User mail forwarding.</a></li>
<li><a href="ldap.user.mail.forwarding.html">LDAP: User mail forwarding</a></li>
<li><a href="mailbox.sharing.html">Mailbox sharing (Sharing IMAP folder with other users)</a></li>
<li><a href="monitor.incoming.and.outgoing.mails.with.bcc.html">Monitor incoming and outgoing mails with BCC</a></li>
<li><a href="move.detected.spam.to.junk.folder.html">Move detected spam to Junk folder</a></li>

9
html/ldap.add.mail.alias.html
View File

@ -11,6 +11,15 @@
// <a href="./index.html">Document Index</a>
</div><h1 id="ldap-add-a-mail-alias-account">LDAP: Add a mail alias account</h1>
<div class="toc">
<ul>
<li><a href="#ldap-add-a-mail-alias-account">LDAP: Add a mail alias account</a><ul>
<li><a href="#add-mail-alias-with-iredadmin-pro">Add mail alias with iRedAdmin-Pro</a></li>
<li><a href="#add-mail-alias-with-phpldapadmin">Add mail alias with phpLDAPadmin</a></li>
</ul>
</li>
</ul>
</div>
<h2 id="add-mail-alias-with-iredadmin-pro">Add mail alias with iRedAdmin-Pro</h2>
<p>With iRedAdmin-Pro, please click menu in main navigation bar: `Add -&gt; Mail Alias'.
Screenshot:</p>

13
html/ldap.user.mail.forwarding.html
View File

@ -1,7 +1,7 @@
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>LDAP: User mail forwarding.</title>
<title>LDAP: User mail forwarding</title>
<link rel="stylesheet" type="text/css" href="./css/markdown.css" />
</head>
<body>
@ -10,7 +10,16 @@
<a href="http://www.iredmail.org" target="_blank">iRedMail web site</a>
// <a href="./index.html">Document Index</a>
</div><h1 id="ldap-user-mail-forwarding">LDAP: User mail forwarding.</h1>
</div><h1 id="ldap-user-mail-forwarding">LDAP: User mail forwarding</h1>
<div class="toc">
<ul>
<li><a href="#ldap-user-mail-forwarding">LDAP: User mail forwarding</a><ul>
<li><a href="#set-mail-forwarding-with-iredadmin-pro">Set mail forwarding with iRedAdmin-Pro</a></li>
<li><a href="#set-mail-forwarding-with-phpldapadmin">Set mail forwarding with phpLDAPadmin</a></li>
</ul>
</li>
</ul>
</div>
<h2 id="set-mail-forwarding-with-iredadmin-pro">Set mail forwarding with iRedAdmin-Pro</h2>
<p>With iRedAdmin-Pro, you can simply add mail forwarding addresses in user
profile page, under tab <code>Forwarding</code>.</p>