Planning Your Installation

---

If you possess a working knowledge of Windows-based applications and operating systems, you will find that installing IMail Server is as quick and easy as installing some of our other popular software products. However, we recommend that you plan the installation to ensure an IMail Server configuration that works for your organization.

This section describes what you need to know about the primary host (the system on which you install IMail Server), and what decisions you need to make before running the installation.

Step 1: What Do You Need?

To get the best performance and the ability to expand your mail service, we recommend that you designate a computer to function as your e-mail server and you do not run other servers on the computer.

System Requirements

• An Intel Pentium processor or higher
• Microsoft Windows NT 4.0 or later with Service Pack 6; Windows 2000, Windows XP, and 2003.

For best performance it is recommended that the modern Server versions of the operating systems be employed.

Note: IMail Server is not compatible with Windows 95, Windows ME, Windows 98, or Win32s.

It is recommended that the NTFS (rather than FAT) file system be used for increased operability and security.

• Network interface card installed and configured to use Microsoft's TCP/IP for Windows NT or Windows 2000; OR a dial-up TCP/IP connection
• A full-time or dial-up connection to the Internet
• Modem (optional, but needed for mail-to-pager, mail-to-fax, and notifications)
• A static IP address

Hardware Environment

IMail Server runs properly on the minimum hardware requirements recommended by the installed operating system. Performance and capacity increases based on processor speed, RAM and disk space. As with all server applications, it is recommended that you install IMail Server alone, on the fastest and most powerful server that your budget allows.

Step 2: Create DNS Entries for Your Mail Server

Determine the Domain Name System (DNS) settings required for the system on which you will install IMail Server. Before you create DNS entries, you will need the following information from your Windows TCP/IP settings:

• Primary Host. The primary host is the system on which you install IMail Server.
• Host Name (of Primary Host). The host name for your e-mail server; for example, imailbox.
• IP Address (of Primary Host). The IP Address is a numerical address for the e-mail server host (i.e. 156.21.50.15).
• Domain Name. The domain name identifies the network that the host is on (i.e. domain.com).

To identify your mail host in the DNS, you will use the Host Name plus the Domain name; for example, imailbox.domain.com. This is also known as the Fully Qualified Domain Name (FQDN).

To get the DNS information on Windows NT system, double-click the Network icon in the Control Panel, select the Protocols tab, select TCP/IP Protocol, and then click Properties. The TCP/IP window appears. Click DNS to view the domain information.

To get the DNS information on a Windows 2000 system, click the System icon in the Control Panel, select the Network Identification tab, then click Properties. The Identification Changes dialog box shows the domain information.

The Host Name and Domain must be registered in the DNS (Domain Name System) if you want remote hosts (not on your local network) to communicate with your system.

To properly send and receive e-mail, the following records should be added to your DNS server. If an Internet Service Provider (ISP) is hosting your DNS server, contact your ISP to have the appropriate records added to the DNS server.

• MX Records. A Mail eXchanger (MX) record is used to identify the computer that processes mail for a domain. If you will host multiple domains, you'll need an MX record for each domain. The MX record points to the (fully qualified) host name of the IMail Server (the Primary Host). For example: domain.com IN MX 10 imailbox.domain.com
• A Records. You will need an Address (A) record for the IMail Server that has the IP address of the IMail Server (the Primary Host). Ex: imailbox.domain.com IN A 156.21.50.15
• PTR Records. A pointer (PTR) record is used for reverse lookups. You will need a PTR record that resolves the IP address of your IMail Server (the Primary Host) to the Official Host Name of your IMail domain. Ex: 156.21.50.15 in-addr.arpa. host=imailbox.domain.com

If you need more information about setting up the DNS entries, see:

• A primer with examples in "Mail Servers and DNS".
• DNS tutorials in the IMail Support Center at:

  /Support/IMail/dns.html

• Our Knowledge Base in the IMail Support Center at:

  /Support/IMail

  Note: You can use Ipswitch's WS_Ping ProPack to look up DNS information. An evaluation version is included on the IMail Server CD. For more information about looking up DNS information using WS_Ping ProPack, see "Step 1: Confirm your DNS Settings".

Step 3: Choose the Type of User Database

Identify the database used by the Primary Host to register and authenticate users. The Primary Host can use one of the following databases for registration and authentication: (Registration is the process by which user mail accounts are created. Authentication is the process by which user IDs and passwords are verified.)

• IMail Database. All user IDs and passwords for mail accounts are stored, separately from either the Windows NT or 2000 user database or any external database, in a proprietary database in the Windows registry.

You can also import Windows NT or 2000 users into an IMail user database, without having them linked to the Windows NT or 2000 user database. For details on importing Windows NT or 2000 users, refer to the IMail Server Users Guide "Importing NT Users" section in Chapter 4.

• Windows NT Database. This database provides automatic creation of user mail accounts for any user listed in the Windows NT or Windows 2000 user database on your host machine.

Please note that the Primary Mail Host needs access to the Windows NT or 2000 user database for your network.

In order to have access to the user databases, IMail Server must be installed on a Primary Domain Controller (PDC) or a Backup Domain Controller (BDC).

To view a current listing of users in your Windows NT or 2000 user database, use the appropriate administrative tool as described in your Windows documentation.

You will not be able to add or delete users using IMail Administrator. Instead, you must use the appropriate Windows administrative tool (these are different for Windows NT and Windows 2000).

A mailbox and other user files are created for a user when the mail server receives a message for that user, or when a user first accesses the IMail Server through a mail client.

• External Database. IMail Server can use an external database to register and authenticate users. This option lets you specify an existing ODBC-compliant user database and lets you add and delete users either from the IMail Administrator or the external database. IMail Server supports Microsoft SQL Server or Microsoft Access.

If you will use an external database, make sure you have set up the database connection in the Windows ODBC Data Source Administrator. Before you start the IMail Server installation, you will need the ODBC System DSN name for the database and the User ID and password for logging on to the database.

Notes: If you want to use a different ODBC database, you can modify IMail Server's ODBCUser.dll file to support it. For more information, read the ODBC topics in our Knowledge Base at: http://support.ipswitch.com/kb To display the topics, enter ODBC in the Search for box, select IMail Server from the product list, then click Search. You can download the source code for the ODBCUser.dll from: http://ftp.ipswitch.com/Ipswitch/Product_Support/IMail/odbcuser7.zip

Step 4: What E-Mail Services Do You Want to Provide?

Besides the basic SMTP service, identify the other services you would like your e-mail server to provide. For example:

• Service Monitoring (IMail Monitor Service) lets the mail administrator monitor the status of all IMail Services (SMTP, POP3, IMAP, Web Messaging).
• Web Messaging lets users read mail from the server and send mail using a web browser.
• POP3 service lets users retrieve mail and send mail using clients like Qualcomm's Eudora Pro and Microsoft's Outlook. With POP3, user mail is usually stored on the user's PC.
• IMAP4 service lets users read mail from the server and send mail using clients like Qualcomm's Eudora Pro and Microsoft's Outlook. With IMAP4, mail is usually stored on the mail server.

  Note: You can specify these services and more during installation.

Step 5: Determine Security Levels and Access Control

Identify the levels of security and access control needed to ensure the integrity of your mail server. IMail Server provides several ways to secure your e-mail server; for example:

SMTP Mail Relay options

The mail relay options allow you to set appropriate security that determines who can use your mail server and who cannot. IMail Server provides five options for mail relay:

Note: During installation, you can select from four options: Relay for select addresses, No mail relay, Relay mail for anyone, and when upgrading: Do not change my existing local mail relay settings. After installation, you can change the relay setting in the SMTP Security tab in IMail Administrator.

• Relay Mail For Anyone (not recommended)

Selecting this option will cause the SMTP server to accept mail from any host that is destined for any other host. This option is the least secure; it allows your server to be used by anyone to send mail to anyone.

If you select this option your server may be blacklisted for running an open relay. To prevent this you should choose the previous option of "Relay for Select Addresses".

• No Mail Relay (recommended)

The server will refuse to accept mail destined for other hosts (any host not on the IMail Server machine). If all of your users send and receive mail from the same host that IMail Server is on, or if they use Web Messaging to access mail, you can select this option. If you select this option, you should immediately change it after installation, otherwise, your mail server will not deliver mail.

There are several other mail relay options available after installation including "Relay for Select Addresses", "Relay for Local Hosts Only", and "Relay for Local Users Only".

"No Mail Relay" is the best option if you are unable to "Relay for select Addresses" because your users dial up using dynamic IP addresses, or if you are concerned that "Relay Mail for Local User" and "Relay Mail for Local Hosts" can be easily spoofed.

For more information on Mail Relay options and other security features, see the IMail Server User's Guide.

SMTP Authentication

SMTP Authentication lets you verify each user who attempts to send mail through your mail server. SMTP Authentication is always enabled on the IMail Server. Users need to set their mail clients to do an SMTP login; for example, in Microsoft's Outlook, select the option My outgoing mail server requires authentication.

SMTP Authentication is used in the following cases:

• If you use the No Mail Relay option for SMTP relay.
• If you use the Relay for select Addresses option, SMTP Authentication enables users who send from IP addresses that you do not list; for example, users who are travelling and do not have a static IP address.

Secure Sockets Layer (SSL)

SSL provides user authentication and encryption for your Web Messaging and Web Calendaring communications.

For more information about SSL, see the help file for the IMail SSL Configuration Utility (available from Start->Programs-> IMail menu). The Introduction topic provides background information on SSL and how it works.

Step 6: One Mail Host or Multiple Hosts?

You can have multiple hosts on one IMail Server system, with each host handling the mail for a single domain. This feature lets you provide separate mail services for separate organizations.

Hosts can be added to the IMail Server after you have completed the installation of the primary host.

For information about setting up additional hosts and information about other advanced configuration options, see the IMail Server User's Guide.

Ipswitch, Inc. http://www.ipswitch.com

©Ipswitch 2004