zimbra proxy - redirect to ssl cert name

go to:

/opt/zimbra/conf/nginx/templates

make the following lines in these files have an fqdn instead of $host:

nginx.conf.web.http.mode-mixed.template:            set $sslhost mailtest.scad.edu;
nginx.conf.web.http.mode-redirect.template:            set $sslhost mailtest.scad.edu;

August 12, 2009. Uncategorized. No Comments.

zimbra - proxy redirect

zmprov ms mailtest.scad.edu zimbraReverseProxyMailMode redirect

July 31, 2009. zimbra. No Comments.

zimbra - certs

cat 4-EssentialSSLCA_2.crt 3-ComodoUTNSGCCA.crt 2-UTNAddTrustSGCCA.crt 1-AddTrustExternalCARoot.crt > bundle.crt

/opt/zimbra/bin/zmcertmgr deploycrt comm /home/dscoggan/certs/mailtest_scad_edu.crt /home/dscoggan/certs/bundle.crt

July 31, 2009. zimbra. No Comments.

zimbra branding

deploy scad skin

zmprov -s %servernames% mcf +zimbraInstalledSkin scad

replace favicon.ico

cd /opt/zimbra/jetty/webapps/zimbra

find . -name *.ico

overwrite the .ico’s that you find (zmail doesn’t matter, since we disable that theme)

copy the scad .png files to /opt/zimbra/jetty/webapps/zimbra and chown them to zimbra

to brand the title pages:

cd /opt/zimbra/jetty/webapps/zimbra/WEB-INF/classes/messages

edit:ZmMsg.properties and ZhMsg_en.properties

(on each server)

see:

http://wiki.zimbra.com/index.php?title=Changing_the_Page_Title as a reference

July 31, 2009. Uncategorized. No Comments.

zimbra install/early configuration

sav-mta

install with proxy

post config:

performance:

[zimbra@sav-mta ~]$ zmlocalconfig -e postfix_lmtp_destination_concurrency_limit=20

enable ssl for ldap

su - zimbra
zmlocalconfig -e ldap_master_url = ldaps://mymaster.somewhere.com:636
zmlocalconfig -e ldap_url = ldaps://myreplica.somewhere.com:636
zmlocalconfig -e ldap_starttls_supported = 0
zmlocalconfig -e ldap_port = 636

tune ldap:
/opt/zimbra/openldap-data/DB_CONFIG
(give it a 500mb cache instead of 50mb)
set_cachesize 0 524288000 1

sav-mbox-a/sav-mbox-b

performance changes:

[zimbra@sav-mbox-a ~]$ zmprov ms sav-mbox-a.scad.edu zimbraHttpNumThreads 250
[zimbra@sav-mbox-a ~]$ zmprov ms sav-mbox-b.scad.edu zimbraHttpNumThreads 250
[zimbra@sav-mbox-a ~]$ zmprov ms sav-mbox-b.scad.edu zimbraImapNumThreads 1000
[zimbra@sav-mbox-a ~]$ zmprov ms sav-mbox-a.scad.edu zimbraImapNumThreads 1000

[zimbra@sav-mbox-a ~]$ zmprov ms sav-mbox-a.scad.edu zimbraLmtpNumThreads 40

[zimbra@sav-mbox-a ~]$ zmprov ms sav-mbox-b.scad.edu zimbraLmtpNumThreads 40

zmlocalconfig -e mailboxd_java_heap_memory_percent=20(on each mbox)

zmlocalconfig -e mysql_memory_percent=40 (on each mbox)

on each box, put in the recommended java changes:

no ldap,no mta,no archiving,yes proxy

zmprov gs sav-mta.scad.edu | grep -i serviceEnabled

tune the mailboxd java environment to the latest recommendations:

zmlocalconfig -e mailboxd_java_options=”-server \
-XX:NewRatio=2 \
-Djava.awt.headless=true \
-XX:MaxPermSize=128m \
-XX:SoftRefLRUPolicyMSPerMB=1 \
-verbose:gc \
-XX:+UseParallelGC \
-XX:+PrintGCDetails \
-XX:+PrintGCTimeStamps \
-XX:+PrintGCApplicationStoppedTime \
-XX:+HeapDumpOnOutOfMemoryError \
-XX:HeapDumpPath=/opt/zimbra/log/errors”

increase message cache size

[zimbra@sav-mbox-a ~]$ zmprov ms sav-mbox-a.scad.edu zimbraMessageCacheSize 104857600
[zimbra@sav-mbox-a ~]$ zmprov ms sav-mbox-b.scad.edu zimbraMessageCacheSize 104857600
turn off:

July 20, 2009. zimbra. No Comments.

Protected: webcheck-hm.scad.edu -0H, -2M, -1L

This post is password protected. To view it please enter your password below:

Password:

June 4, 2009. Systems Security Reports. No Comments.

Protected: webcheck-06.scad.edu -5H, -3M, -1L

This post is password protected. To view it please enter your password below:

Password:

June 4, 2009. Systems Security Reports. No Comments.

Protected: vz64-1.scad.edu -0H, -5M, -1L

This post is password protected. To view it please enter your password below:

Password:

June 4, 2009. Systems Security Reports. No Comments.

Protected: steamserver.sfdm.scad.edu -1H, -0M, -0L

This post is password protected. To view it please enter your password below:

Password:

June 4, 2009. Systems Security Reports. No Comments.

Protected: render.sfdm.scad.edu -0H, -1M, -0L

This post is password protected. To view it please enter your password below:

Password:

June 4, 2009. Systems Security Reports. No Comments.

Older Entries

Copyright Doug Scoggan’s Blog, 2005-2009.
Theme by Jeff Wheeler. Powered by WordPress. Packaged by Edublogs - education blogs.