Zimbra offers Open Source email server software and shared calendar for Linux and the Mac
Go Back   Zimbra :: Forums > Zimbra Collaboration Suite > Administrators
Reload this Page Web Login IP Blocks

Welcome to the Zimbra :: Forums!
Welcome, if you would like to post a comment please register. We also encourage you to explore all things Zimbra with our team and members of the community.

Reply
 
LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 02-23-2009, 10:45 AM
Senior Member
  
Posts: 68
Default Web Login IP Blocks
I apologize if this has been asked many times over, but searched forums and not able to locate this exact question. Still in process of migrating our existing Web based mail system to Zimbra from external folks (Internal have been on Zimbra from about a year now and currently working to get our external folks that use only our outdated web based e-mail system to Zimbra...It has been a slow process...)
In our old system I was able to limit access to our e-mail Webmail page by using config lines in the apache.conf file. Can I do something similar in Zimbra and if so where? I want the blocks to be allow all->disallow select ip ranges.
We have had some issues in the past with folks from a certain Country (Starts with a 'Ni') loving to hack in and blast SPAM from us. I know I can do a firewall rule and will do if need be, just wondering if I can do that somewhere in the Zimbra setup.
Note: I did run across this thread:
Restricting external access
and it did not seem to be what I was looking for....That said maybe I am just an idiot.. :-o
Also, in Zimbra in what log do need to be looking to find HTTP access records, 'zimbra.log'? If Zimbra.log, what syntax do I need to grep for?
Thanks!
Reply With Quote
  #2 (permalink)  
Old 02-23-2009, 11:38 AM
Moderator
  
Posts: 1,554
Default
do you have any kind of firewall protecting your server? if so you could just use acl's there. if not you could run iptables on the server itself.

the audit.log is where you want to look for access log records. i'm not sure if it will tell you about failed login attempts or not.
Reply With Quote
  #3 (permalink)  
Old 02-23-2009, 11:58 AM
Senior Member
  
Posts: 68
Default
bdial,
Thanks for the quick reply!
I do have a PIX in front of that box and that is probally the way I will go. Just wondering if there was an 'easier' way in a Zimbra .conf file somewhere to do same thing. Thanks for the tip on the audit.log. Have it and looking at that now.
Reply With Quote
  #4 (permalink)  
Old 02-23-2009, 10:22 PM
Zimbra Consultant & Moderator
  
Posts: 20,313
Default
Using a firewall can get messy and might be too restrictive. You would be better off (IMO) using spamassassin to block any spam coming into your system. You could start with some of the techniques in this article, the reject_unlisted_recipients and some good RBLs plus modifying your tag/kill percentages would be a good start. If you specifically want to implement a Country ban then take a look at this feature - try one change at a time and see how you get on.
__________________
Regards


Bill
Reply With Quote
Reply

« Previous Thread | Today's Posts or Week's Posts | Next Thread »

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode


Similar Threads

Product Information

Why Join?

Registering let's you ask questions, makes it easier to search, displays any files attached to posts, and notifies you about replies.

blog.zimbra.com


Home - Blog - Contact Us - Archive - Top


 

SEO by vBSEO ©2011, Crawlability, Inc.