Zimbra adalah sofware open source untuk email server dan kolaborasi (groupware) yang menyediakan solusi email server yang powerfull, penjadwalan, kalender, group, kotak dan manejemen penyimpanan dokumen via Web. Zimbra tersedia untuk linux dan mac os
*Persiapan
- Centos 7
- Zimbra 8.8.12
- Domain
- IP Public – Nat IP Publik ke IP Local
- Server / VPS
*Langkah-langkah
1.Instalasi paket yang
dibutuhkan
|
yum install nano wget bind bind-utils telnet perl
firewalld –y
|
2. Atur TimeZone Centos
|
timedatectl set-timezone Asia/Jakarta
|
|
|
|
3. Atur Hostname Centos
hostnamectl set-hostname mail.adinurrohkhi.my.id
4. Stop dan Disable
Postfix
|
systemctl stop postfix
systemctl disable postfix
|
5. Ubah Hosts Centos
|
nano /etc/hosts
|
Masukkan IP Address Centos
(Cek Dengan Perintah: ip a) IP Contoh: 192.168.3.1. Save dengan Ctrl+o
|
192.168.3.1 mail.adinurrohkhim.my.id
|
6. Ubah Konfigurasi
resolv.conf
|
nano /etc/resolv.conf
|
Tambahkan baris berikut,
di paling atas. Save dengan Ctrl+o
|
nameserver 192.168.3.1
|
Membuat DNS Server Local
7. Create zone di dns
server bind
|
nano /etc/named.conf
|
Ubah
|
options {
listen-on
port 53 { 127.0.0.1; };
listen-on-v6
port 53 { ::1; };
directory
"/var/named";
dump-file
"/var/named/data/cache_dump.db";
statistics-file
"/var/named/data/named_stats.txt";
memstatistics-file
"/var/named/data/named_mem_stats.txt";
allow-query
{ localhost; };
|
Menjadi
|
options {
listen-on
port 53 { any; };
listen-on-v6
port 53 { ::1; };
directory
"/var/named";
dump-file
"/var/named/data/cache_dump.db";
statistics-file
"/var/named/data/named_stats.txt";
memstatistics-file
"/var/named/data/named_mem_stats.txt";
allow-query
{ any; };
|
Tambahkan baris berikut
setelah session-keyfile “/run/named/session.key”;
bisa juga diganti menggunakan IP Address DNS Server ISP.
bisa juga diganti menggunakan IP Address DNS Server ISP.
|
forwarders {
8.8.8.8;
8.8.4.4;
};
|
Tambahkan berikut pada
baris paling bawah
Simpan perubahan menggunakan Ctrl+o
Simpan perubahan menggunakan Ctrl+o
|
zone "adinurrohkhi.my.id" {
type
master;
file
"/var/named/adinurrohkhim.my.id.hosts";
};
|
8. Create
latihanzimbra.ga.hosts
|
nano /var/named/latihanzimbra.ga.hosts
|
Isi dengan baris dibawah
(silahkan diubah sesuai nama domain dan IP Address yang digunakan)
|
$ttl 38400
adinurrohkhim.my.id.
IN SOA
mail.adinurrohkhi.my.id. admin.adinurrohkhi.my.id. (
1520401032
10800
3600
604800
38400
)
adinurrohkhim.my.id. IN
NS mail.adinurrohkhi.my.id.
mail.adinurrohkhi.my.id. IN
A 192.168.3.1
adinurrohkhim.my.id. IN
MX 10 mail
|
9.Restart dns server bind
|
systemctl restart named
|
10
Check lookup
|
nslookup mail.adinurrohkhim.my.id
|
Bila respon seperti
dibawah, konfigurasi sudah benar
|
[root@latihanzimbra etc]# nslookup mail.adinurrohkhim.my.id
Server: 192.168.3.1
Address:
192.168.3.1#53
Name: mail.adinurrohkhim.my.id
Address: 192.168.3.1
|
Download dan Install
Zimbra Mail Server
1. Download Paket zimbra mail server
|
cd /opt/
wget
|
2. Ekstrak Paket
|
tar -zxvf zcs-8.8.12_GA_3794.RHEL7_64.20190329045002.tgz
cd zcs-8.8.12_GA_3794.RHEL7_64.20190329045002
|
3. Install Zimbra Mail
Server
|
./install.sh
|
4. Ketik y kemudian enter
|
----------------------------------------------------------------------
PLEASE READ THIS AGREEMENT CAREFULLY BEFORE USING THE
SOFTWARE.
SYNACOR, INC. ("SYNACOR") WILL ONLY LICENSE THIS
SOFTWARE TO YOU IF YOU
FIRST ACCEPT THE TERMS OF THIS AGREEMENT. BY DOWNLOADING
OR INSTALLING
THE SOFTWARE, OR USING THE PRODUCT, YOU ARE CONSENTING TO
BE BOUND BY
THIS AGREEMENT. IF YOU DO NOT AGREE TO ALL OF THE TERMS OF
THIS
AGREEMENT, THEN DO NOT DOWNLOAD, INSTALL OR USE THE
PRODUCT.
License Terms for this Zimbra Collaboration Suite
Software:
----------------------------------------------------------------------
Do you agree with the terms of the software license
agreement? [N] y
|
5. Ketik y Enter
|
Use Zimbra's package repository [Y] y
|
Ketik y atau n sesuai
contoh dibawah
|
Select the packages to install
Install zimbra-ldap [Y] y
Install zimbra-logger [Y] y
Install zimbra-mta [Y] y
Install zimbra-dnscache [Y] n
Install zimbra-snmp [Y] y
Install zimbra-store [Y] y
Install zimbra-apache [Y] y
Install zimbra-spell [Y] y
Install zimbra-memcached [Y] y
Install zimbra-proxy [Y] y
Install zimbra-drive [Y] y
Install zimbra-imapd (BETA - for evaluation only) [N] n
Install zimbra-chat [Y] y
|
6. Ketik y kemudian enter
|
Installing:
zimbra-core
zimbra-ldap
zimbra-logger
zimbra-mta
zimbra-snmp
zimbra-store
zimbra-apache
zimbra-spell
zimbra-memcached
zimbra-proxy
zimbra-drive
zimbra-patch
zimbra-mta-patch
zimbra-proxy-patch
zimbra-chat
The system will be modified. Continue? [N] y
|
7. Ketik y, kemudian
masukkan nama domain. (tanpa mail. di depan) ikuti contoh dibawah
|
DNS ERROR resolving MX for mail.adinurrohkhim.my.id
It is suggested that the domain name have an MX record
configured in DNS
Change domain name? [Yes] y
Create domain: [mail.adinurrohkhim.my.id].adinurrohkhim.my.id
|
8. Ubah password admin
zimbra, ketik 6 kemudian enter
|
Main menu
1) Common Configuration:
2)
zimbra-ldap:
Enabled
3)
zimbra-logger:
Enabled
4)
zimbra-mta:
Enabled
5)
zimbra-snmp:
Enabled
6)
zimbra-store:
Enabled
+Create
Admin
User:
yes
+Admin
user to create:
admin@adinurrohkhim.my.id
******* +Admin
Password
UNSET
+Anti-virus
quarantine user:
virus-quarantine.vqn1ugcv8y@adinurrohkhim.my.id
+Enable
automated spam training: yes
+Spam
training
user:
spam.nl5jjee2@latihanzimbra.ga
+Non-spam(Ham)
training user:
ham.wdw5m0ki@latihanzimbra.ga
+SMTP
host:
mail.latihanzimbra.ga
+Web
server HTTP
port:
8080
+Web
server HTTPS
port:
8443
+Web
server
mode:
https
+IMAP
server
port:
7143
+IMAP
server SSL
port:
7993
+POP
server
port:
7110
+POP
server SSL
port:
7995
+Use spell
check
server:
yes
+Spell
server
URL:
http://mail.adinurrohkhim.my.id:7780/aspell.php
+Enable
version update checks: TRUE
+Enable
version update notifications: TRUE
+Version
update notification email: admin@adinurrohkhim.my.id
+Version
update source email:
admin@adinurrohkhim.my.id
+Install
mailstore (service webapp): yes
+Install
UI (zimbra,zimbraAdmin webapps): yes
7)
zimbra-spell:
Enabled
8)
zimbra-proxy:
Enabled
9) Default Class of Service
Configuration:
s) Save config to file
x) Expand menu
q) Quit
Address unconfigured (**) items (? - help) 6
|
ketik 4 kemudian enter
|
Store configuration
1)
Status:
Enabled
2) Create Admin
User:
yes
3) Admin user to
create:
admin@adinurrohkhim.my.id
** 4) Admin
Password
UNSET
5) Anti-virus quarantine
user:
virus-quarantine.vqn1ugcv8y@adinurrohkhim.my.id
6) Enable automated spam
training: yes
7) Spam training
user:
spam.nl5jjee2@adinurrohkhim.my.id
8) Non-spam(Ham) training
user:
ham.wdw5m0ki@ adinurrohkhim.my.id
9) SMTP
host:
mail.adinurrohkhim.my.id
10) Web server HTTP
port:
8080
11) Web server HTTPS
port:
8443
12) Web server
mode:
https
13) IMAP server
port:
7143
14) IMAP server SSL
port:
7993
15) POP server
port:
7110
16) POP server SSL
port:
7995
17) Use spell check
server:
yes
18) Spell server
URL:
http://mail.adinurrohkhim.my.id:7780/aspell.php
19) Enable version update
checks: TRUE
20) Enable version update
notifications: TRUE
21) Version update notification
email: admin@ adinurrohkhim.my.id
22) Version update source
email:
admin@ adinurrohkhim.my.id
23) Install mailstore (service
webapp): yes
24) Install UI (zimbra,zimbraAdmin webapps):
yes
Select, or 'r' for previous menu [r] 4
|
Masukkan password admin
(contoh: adinurrohkhim.my.id)
|
Password for admin@latihanzimbra.ga (min 6 characters):
[Gp023iETas] adinurrohkhim
|
9. Ketik r kemudian enter
|
Store configuration
1)
Status:
Enabled
2) Create Admin
User:
yes
3) Admin user to
create:
admin@ adinurrohkhim.my.id
4) Admin
Password
set
5) Anti-virus quarantine
user:
virus-quarantine.vqn1ugcv8y@adinurrohkhim.my.id
6) Enable automated spam
training: yes
7) Spam training
user:
spam.nl5jjee2@ adinurrohkhim.my.id
8) Non-spam(Ham) training
user:
ham.wdw5m0ki@ adinurrohkhim.my.id
9) SMTP
host:
mail.adinurrohkhim.my.id
10) Web server HTTP
port:
8080
11) Web server HTTPS
port:
8443
12) Web server
mode:
https
13) IMAP server
port:
7143
14) IMAP server SSL
port:
7993
15) POP server
port:
7110
16) POP server SSL
port:
7995
17) Use spell check
server:
yes
18) Spell server
URL:
http://mail.adinurrohkhim.my.id:7780/aspell.php
19) Enable version update
checks:
TRUE
20) Enable version update
notifications: TRUE
21) Version update notification
email: admin@adinurrohkhim.my.id
22) Version update source
email:
admin@adinurrohkhim.my.id
23) Install mailstore (service
webapp): yes
24) Install UI (zimbra,zimbraAdmin webapps):
yes
Select, or 'r' for previous menu [r] r
|
10. Ikutin sesuai petunjuk
dibawah
|
Main menu
1) Common Configuration:
2)
zimbra-ldap:
Enabled
3)
zimbra-logger:
Enabled
4)
zimbra-mta:
Enabled
5)
zimbra-snmp:
Enabled
6)
zimbra-store:
Enabled
7)
zimbra-spell:
Enabled
8)
zimbra-proxy:
Enabled
9) Default Class of Service
Configuration:
s) Save config to file
x) Expand menu
q) Quit
*** CONFIGURATION COMPLETE - press 'a' to apply
Select from menu, or press 'a' to apply config (? - help)
a
Save configuration data to a file? [Yes] y
Save config in file: [/opt/zimbra/config.10132]
Saving config in /opt/zimbra/config.10132...done.
The system will be modified - continue? [No] y
|
11. Ketik n kemudian enter
|
You have the option of notifying Zimbra of your
installation.
This helps us to track the uptake of the Zimbra
Collaboration Server.
The only information that will be transmitted is:
The
VERSION of zcs installed (8.8.12_GA_3794_RHEL7_64)
The ADMIN
EMAIL ADDRESS created (admin@latihanzimbra.ga)
Notify Zimbra of your installation? [Yes] n
|
12. Tekan Enter
|
Moving /tmp/zmsetup.20190411-102605.log to /opt/zimbra/log
Configuration complete - press return to exit
|
13. Jalankan firewalld
|
systemctl start firewalld
|
14. Masukkan perintah
berikut untuk membuka port akses zimbra, copy+paste kemudian enter
|
firewall-cmd --permanent --zone=public --add-port=25/tcp
firewall-cmd --permanent --zone=public --add-port=80/tcp
firewall-cmd --permanent --zone=public --add-port=110/tcp
firewall-cmd --permanent --zone=public --add-port=143/tcp
firewall-cmd --permanent --zone=public --add-port=443/tcp
firewall-cmd --permanent --zone=public --add-port=465/tcp
firewall-cmd --permanent --zone=public --add-port=587/tcp
firewall-cmd --permanent --zone=public --add-port=993/tcp
firewall-cmd --permanent --zone=public --add-port=995/tcp
firewall-cmd --permanent --zone=public --add-port=3443/tcp
firewall-cmd --permanent --zone=public --add-port=5222/tcp
firewall-cmd --permanent --zone=public --add-port=5223/tcp
firewall-cmd --permanent --zone=public --add-port=9071/tcp
firewall-cmd --permanent --zone=public --add-port=8443/tcp
firewall-cmd --permanent --zone=public --add-port=7071/tcp
firewall-cmd --permanent --zone=public --add-port=53/tcp
firewall-cmd --permanent --zone=public --add-port=53/udp
firewall-cmd --reload
|
Setting Reputasi Mail
Server (MX, A, SPF, DKIM, DMARC, rDNS)
Konfigurasi pada DNS
Public, cek lokasi dns disini masukkan
nama domain.
MX Record
MX Record
|
Mail Server: mail.adinurrohkhim.my.id
Preference/priority: 10
|
A Record
|
mail.adinurrohkhim.my.id IN
A 192.168.3.1
|
SPF Record
|
adinurrohkhim.my.id
IN TXT v=spf1 a mx ip4: 192.168.3.1
include:mail.adinurrohkhim.my.id -all
|
DKIM
|
su - zimbra
/opt/zimbra/libexec/zmdkimkeyutil -q -d adinurrohkhim.my.id
/opt/zimbra/libexec/zmdkimkeyutil -a -d adinurrohkhim.my.id
-s mail
|
Lakukkan point 3 pada
artikel berikut Check valid
DKIM/DomainKeys
DMARC
|
|
dmarc.adinurrohkhim.my.id IN TXT
v=DMARC1; p=none; rua=mailto:admin@adinurrohkhim.my.id
|
rDNS
Ajukan pada penyedia IP Public, arahkan 192.168.3.1 ke mail.adinurrohkhim.my.id
Ajukan pada penyedia IP Public, arahkan 192.168.3.1 ke mail.adinurrohkhim.my.id
#TERIMA_KASIH
