zimbra 8.6 cbpolicyd : A Practical Example

-

Introduction

The cbpolicyd service in Zimbra is a powerful policy daemon that helps administrators control email traffic, implement rate limiting, and prevent spam. By setting up cbpolicyd with customized policies, you can enhance the security and efficiency of your email system. In this article, we will provide an example configuration for cbpolicyd in Zimbra 8.6, guiding you through the process to help you optimize your email server's performance and security.


Links to below you maybe likes:

zimbra 8.6 cbpolicyd


How to use cbpolicyd to configure 120 message from sender in last 30s.
in order configure in zimbra cbpolicyd
policies -->policy_members -->quotas -->quotas_limits

To create zimbra-example.sql file
BEGIN TRANSACTION;
INSERT INTO "policies" (ID,Name,Priority,Description) VALUES(6,'Example CBPolicyd Policies', 0, 'Example CBPolicyd Policies');
INSERT INTO "policy_members" (ID,PolicyID,Source,Destination) VALUES(10,6, 'user@domain', '!%internal_domains');
INSERT INTO "quotas" (ID,PolicyID,Name,Track,Period,Verdict,Data) VALUES (14,10, 'Sender:user@domain','Sender:user@domain', 30, 'REJECT', 'Rejected from CBPolicyd: Too many messages from sender in last 30s');
INSERT INTO "quotas_limits" (ID,QuotasID,Type,CounterLimit) VALUES(16,14, 'MessageCount', 120);
COMMIT;

To import zimbra-example.sql file into cbpolicyd.sqlitedb
su - zimbra
cd /opt/zimbra/data/cbpolicyd/db
sqlite3 /opt/zimbra/data/cbpolicyd/db/cbpolicyd.sqlitedb < zimbra-example.sql
zmmtactl restart
zmcbpolicydctl restart


To check rules zimbra cbpolicyd
su - zimbra
cd /opt/zimbra/data/cbpolicyd/db
sqlite3 cbpolicyd.sqlitedb
sqlite> select * from policies;
sqlite> select * from policy_members;
sqlite> select * from quotas;
sqlite> select * from quotas_limits;

How to update "quotas_limits" 60 messages count. we are create zimbra-update.sql as bellow
BEGIN TRANSACTION;
delete from quotas_limits where ID=16;
INSERT INTO "quotas_limits" (ID,QuotasID,Type,CounterLimit) VALUES(16,14, 'MessageCount', 60);
COMMIT;

After, import databases and cbpolicyd restart.
sqlite3 /opt/zimbra/data/cbpolicyd/db/cbpolicyd.sqlitedb < zimbra-update.sql
zmcbpolicydctl restart

To check log of zimbra cbpolicyd
tailf /opt/zimbra/log/cbpolicyd.log | egrep ERROR
tailf /opt/zimbra/log/cbpolicyd.log

Conclusion

Implementing cbpolicyd in Zimbra 8.6 can significantly improve your email system's security and efficiency. By following the example configuration provided in this guide, you can effectively manage email traffic and prevent abuse. We hope this article has been helpful and encourage you to explore our website for more tips and best practices in managing your Zimbra email system. thank you for reading the huuphan.com page!


Comments

Post a Comment

Popular posts from this blog

zimbra some services are not running [Solve problem]

-
Introduction How to solved zimbra some services are not running. That after, to installed zimbra mail server. The display a some admin console status red in environment multiple server ( zimbra ldap, zimbra mailbox, zimbra mta etc.). Link to below you maybe likes: How to install and configure zimbra multi server.   How to restrict to user sending mail on zimbra 8.6. How to Restrict Sending to Distribution list in zimbra mail. How to change last login time for all accounts in zimbra ldap. How to zimbra reject authenticated sender login mismatch. Error zimbra some services are not running as bellow Step by step guide the solve problem zimbra some services are not running To restart and enable cron service the permanently. service crond restart chkconfig crond on Opening rsyslog.conf file and uncomment the following. vim /etc/rsyslog.conf Uncomment these two lines $modload imupd $UDPServerRun514   To restart and enable rsyslog service the permanently. servic...
Read more

Bash script list all IP addresses connected to Server with Country Information

-
Introduction This script is designed to list all IP addresses connected to your server, retrieve geographical information for each IP using ipinfo.io , and display the results in a clean format. This guide will walk you through the script, explaining each part in detail, and ensuring you understand how to implement and use it effectively. What is Bash? Bash (Bourne Again Shell) is a Unix shell and command language written by Brian Fox for the GNU Project as a free software replacement for the Bourne shell. It has since become the default login shell for most Linux distributions. Bash can execute commands, read and execute commands from a file, and provide constructs for condition testing, looping, and functions. Prerequisites A Linux -based server with administrative privileges. Internet connection for accessing ipinfo.io . Basic knowledge of Bash scripting. List all IP addresses connected to Server us Bash Script Running to bash script list all IP addresses connected to Server ./stu...
Read more

Zimbra Client host rejected Access denied fixed

-
Introduction While using Zimbra , you might encounter the "Client host rejected: Access denied" error, which can disrupt your workflow. This is a common issue that can be resolved easily if you understand the causes and the solutions. This article provides a detailed guide on how to fix this error on Zimbra, helping you quickly resume your work smoothly. Zimbra client host rejected Access denied error log Dec 19 01:21:28 mail postfix/amavisd/smtpd[5106]: NOQUEUE: reject: CONNECT from unknown[192.168.1.113]: 554 5.7.1 <unknown[192.168.1.113]>: Client host rejected: Access denied; proto=SMTP Dec 19 01:21:28 mail postfix/amavisd/smtpd[5106]: lost connection after CONNECT from unknown[192.168.1.113] Dec 19 01:21:28 mail postfix/amavisd/smtpd[5106]: disconnect from unknown[192.168.1.113] Allow the network " 192.168.1.0/24 " of client host for zimbraMtaMyNetworks attribute [zimbra@mail ~]$ zmprov ms `zmhostname` zimbraMtaMyNetworks "127.0.0.0/8 192.1...
Read more