Hi. I have a ZCS 3.1.4 Open source edition running in a CentOS 4.5 box and aside it has only 1GB en RAM, i'm very happy with the product.
Recently I tried to improve the antispam system with a commercial RBL, it's called 'Mail Transfer Agent for Email Reputation Services (ERS)' (Solution Details)., formerly known as MAIL-ABUSE.
You must register in order to receive an activation code and then configure your MTA, using the instructions in this page: Email Reputation Services Standard - Trend Micro USA
In this case, we use Postfix, this is a extract of the instructions:
1. Find if we use 'hash' in the environment with 'postconf -m'.
2. Edit main.cf and add the RBL and rbl_reply_maps entries, with the structure '[ACTIVATION_CODE].r.mail-abuse.com' in 'smtpd_recipient_restrictions', like this:[zimbra@server ~]# postconf -m
3. Create the rbl_reply map and "postmap" itrbl_reply_maps = hash:/$config_directory/rbl_reply
smtpd_recipient_restrictions = permit_mynetworks,
4. Reload postfix with 'postfix reload'.
Since almost everything is controlled within Zimbra, I only added the RBL with zmprov along other restrictions, like this:
The others RBL are working fine, in /var/log/zimbra.log I found messages rejected by spamcop and abuseat but mail-abuse don't show any activity.[zimbra@server ~]# zmprov mcf zimbraMtaRestriction reject_invalid_hostname zimbraMtaRestriction reject_non_fqdn_sender zimbraMtaRestriction 'reject_rbl_client zen.spamhaus.org' zimbraMtaRestriction 'reject_rbl_client [ACTIVATION_CODE].r.mail-abuse.com' zimbraMtaRestriction 'reject_rbl_client bl.spamcop.net' zimbraMtaRestriction 'reject_rbl_client cbl.abuseat.org'
[zimbra@server ~]# zmprov gcf zimbraMtaRestriction
zimbraMtaRestriction: reject_rbl_client zen.spamhaus.org
zimbraMtaRestriction: reject_rbl_client [ACTIVATION_CODE].r.mail-abuse.com
zimbraMtaRestriction: reject_rbl_client bl.spamcop.net
zimbraMtaRestriction: reject_rbl_client cbl.abuseat.org
I sent this case to Trend Micro but since Zimbra rewrites the Postfix configuration, they couldn't give me recommendations about the issue. They asked me to verify if my server can find their servers and it worked.
So i'm stuck and my boss wants to use this RBL because he found it very powerful in MS Exchange, but I don't know what else to do.[zimbra@server ~]# nslookup
Please, help me. Best regards.