Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Connect » Webmail up for the load? Antivirus plugin prices?
  •  
TechFan

Messages: 27
Karma: 0
Send a private message to this user
I have been looking around at possible email solutions to replace our current aging one. Currently, essentially our entire user base uses citrix terminal servers via thinstations. . .and thus they currently use the limited webmail package that is part of our email server. I am looking for something that can handle this webmail load. We would expect around 200 webmail users and around 30 IMAP/POP over SSL users.

At the moment the machine we would have available would be a 2.0 GHz P4 Win2kPro/XP workstation.

I am seeing on the forums here that there are some compaints about the webmail. . .it looks nice and is what I would like to offer users, but I am wondering how it scales. . .since I can't test 200 concurrent users very well. . .I was hoping to ask.

I have also seen a few complaints about the McAfee AV not being that great. . .I have had some not so great experiences with McAfee in the past myself, but I will need to have an antivirus with our mail server, so I am wondering how the performance and prices compare for the AV solutions. . .we would be looking at around 250 users. We run TrendMicro on our workstations now and clamav runs on our current email server. . .it would be nice to be able to use these, but neither look possible at the moment.

Thanks a lot for any insight. . .to see if Kerio will work for us.
  •  
dbott

Messages: 47
Karma: 1
Send a private message to this user
Hi TechFan,

I've got a 270-user license for KMS 6.0.10 running on a dual 3.2 GHz Xeon processors (a Dell PowerEdge 2850). Only about 130 users active so far - about 100 of which are Webmail only, the others are a combination of IMAP and POP3..

Up until last month, I was running KMS 5.7.10 on an HP NetServer (P2-300, with 128 MB RAM running NT4!!!) for the same group of users. It was a little slow under heavy loads, but not too bad.

The new version is more demanding (plus requires Win2K or better) so we had to upgrade.

6.0.10 seems pretty stable so far (2 days running and no complaints from staff). Keeping things in perspective with regards to KMS 6, overall the product is very good and I would highly recommend it. The bottom line is that the WebMail interface is not quite a 100% replacement for Outlook users yet --- it's about 90% of the way there.

As for AV --- Each computer is running Norton Corp Edition to protect against viruses that may not come in via e-mail or to catch some of the Word macro style nasties, so I didn't feel the need to scan incoming e-mail as well. In order to protect against e-mail-bourne viruses, I just use the attachment filter. Basically, everything except document files (executables, batch, scripts, pifs, links, etc.) are bounced back with a message to the sender as to how to bypass the filter. I have created 1 custom rule to allow senders to bypass the filter --- zip it and include the name "whitelist" in the filename. I haven't had any issues with viruses.

If I can offer any more info, please let me know.

-Dave
  •  
peterj

Messages: 852
Karma: 1
Send a private message to this user
Hi, can you explain how you have achieved these results for attachment filtering.

I can't see how in KMS you can customise a bounce email for messages that have blocked attachments.

I'm also not sure how you have achieved the custom 'whitelist in subject' rule.

Would really love to know.

Many Thanks
  •  
dbott

Messages: 47
Karma: 1
Send a private message to this user
Hi Peter,

All of the messages that are automatically sent out are stored in the \reports\en (or appropriate language). For both types of messages, I "bounce" the sender's message back under the ACTION tab of the Antivirus and Spam Filter sections of the Kerio Console.

For the messages with prohibited attachments, I edited the avir-reject.rep file to include the following text:

<report name="avir-reject" lang="en" encoding="utf-8">
<variable name="subject">Invalid content in mail message (message rejected)</variable>
<variable name="label-problem">Problem</variable>
<variable name="label-mimetype">MIME type</variable>
<variable name="label-filename">File name</variable>
<variable name="label-virusname">Virus name</variable>
<variable name="label-error">Error</variable>
<variable name="label-antivirus">Antivirus</variable>
<variable name="problem-virus">Virus found</variable>
<variable name="problem-file">Prohibited file extension</variable>
<variable name="problem-mime">Prohibited MIME type</variable>
<variable name="problem-failed">File cannot be checked for viruses</variable>
<text>
This is an informative message sent by <value name="server-version"/> at <value name="server-hostname"/>.

Your mail message did not pass the server content filter:

<value name="message-header"/>

<value name="problem-list"/>


****************************************************************************

If you did not send an e-mail to this recipient, it is possible that:

1. Your e-mail address has been spoofed 

Many e-mail viruses now use random e-mail addresses from an infected computer's address book in the FROM and TO fields of messages the virus sends. Most likely the virus on someone else's computer has found your e-mail address in an address book and used it in the FROM field as the virus replicates itself via e-mail. The messages look like they came from you, but they did not. This is called e-mail spoofing.

2. Your computer is infected with a virus 

To verify that your computer is not infected with a virus, please read the following:
http://www.stcatharines.library.on.ca/techtalk/antivirus.htm

****************************************************************************

If you intended to send an attachment to this recipient, our mail server has been set to block unsafe attachments.  Any e-mail that contains a restricted attachment will automatically be blocked and sent back to the sender, without notifying the intended recipient.


Bypassing the Attachment Filter
-------------------------------

Most normal document types are permitted such as .doc, .pdf, rtf, .txt, .xls, however, we are currently blocking .zip files due to the high number of viruses that are being spread through this format.  

If you wish to send a restricted file-type, please compress the file into .zip format and rename the file to include the word "whitelist" in the filename.

For further information, please read the following document:

http://www.stcatharines.library.on.ca/techtalk/antispam.htm

or contact us at:

St. Catharines Public Library
54 Church St.
St. Catharines, ON
L2R 7K2
905-688-6103


</text>
</report>



I did the same when I reject a message flagged as SPAM. I edited the antispam-reject.rep file to include the following:


<report name="antispam-reject" lang="en" encoding="utf-8">
<variable name="subject">Mail message detected as spam</variable>
<text>
This is an automated message sent by <value name="server-version"/> 
at <value name="server-hostname"/> (The St. Catharines Public Library).

** Please do not reply to this e-mail as it is an unmonitored alias. **

Your mail message:

<value name="message-header"/>

was considered as an unsolicited message (spam) by the receiving mail
server and was not delivered. If this is a mistake, please resend the
e-mail and change the SUBJECT LINE to: WHITELIST

Our filters will then automatically route your message to the correct 
recipient.

If you have further questions or difficulties, please read this document:

http://www.stcatharines.library.on.ca/techtalk/antispam.htm

or contact us at:

St. Catharines Public Library
54 Church St.
St. Catharines, ON
L2R 7K2
905-688-6103 x212

</text>
</report>


Here is a snippet from my mailserver.cfg file that contains the attachment filter & the bypass rules.

1. Back up your mailserver.cfg file
2. Cut & paste these sections into your mailserver.cfg file in the appropriate sections -or- do a search for *whitelist*.zip to see the section on how I bypass the Attachment Filter and add that part to the end of your "AttachFilter" section:

<list name="AttachFilter">
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.exe</variable>
    <variable name="Action">1</variable>
    <variable name="Order">13</variable>
    <variable name="Description">EXE files</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.com</variable>
    <variable name="Action">1</variable>
    <variable name="Order">9</variable>
    <variable name="Description">COM files</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.vbs</variable>
    <variable name="Action">1</variable>
    <variable name="Order">40</variable>
    <variable name="Description">Visual Basic scripts</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.{*}*</variable>
    <variable name="Action">1</variable>
    <variable name="Order">3</variable>
    <variable name="Description">CLSID extension vulnerability</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">1</variable>
    <variable name="Pattern">audio/x-wav</variable>
    <variable name="Action">1</variable>
    <variable name="Order">2</variable>
    <variable name="Description">MSIE vulnerability</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">1</variable>
    <variable name="Pattern">audio/x-midi</variable>
    <variable name="Action">1</variable>
    <variable name="Order">1</variable>
    <variable name="Description">MSIE vulnerability</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.bat</variable>
    <variable name="Action">1</variable>
    <variable name="Order">7</variable>
    <variable name="Description">Batch Files</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.pif</variable>
    <variable name="Action">1</variable>
    <variable name="Order">30</variable>
    <variable name="Description">PIF Files</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.lnk</variable>
    <variable name="Action">1</variable>
    <variable name="Order">22</variable>
    <variable name="Description">LNK Files (Shortcuts)</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.ade</variable>
    <variable name="Action">1</variable>
    <variable name="Order">5</variable>
    <variable name="Description">Microsoft Access Project Extension</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.adp</variable>
    <variable name="Action">1</variable>
    <variable name="Order">4</variable>
    <variable name="Description">Microsoft Access Project</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.bas</variable>
    <variable name="Action">1</variable>
    <variable name="Order">6</variable>
    <variable name="Description">Microsoft Visual Basic Class Module</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.chm</variable>
    <variable name="Action">1</variable>
    <variable name="Order">8</variable>
    <variable name="Description">Compiled HTML Help File</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.cpl</variable>
    <variable name="Action">1</variable>
    <variable name="Order">10</variable>
    <variable name="Description">Control Panel Extension</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.crt</variable>
    <variable name="Action">1</variable>
    <variable name="Order">11</variable>
    <variable name="Description">Security Certificate</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.hlp</variable>
    <variable name="Action">1</variable>
    <variable name="Order">14</variable>
    <variable name="Description">Help File</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.hta</variable>
    <variable name="Action">1</variable>
    <variable name="Order">15</variable>
    <variable name="Description">HTML Program</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.inf</variable>
    <variable name="Action">1</variable>
    <variable name="Order">16</variable>
    <variable name="Description">Setup Information</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.ins</variable>
    <variable name="Action">1</variable>
    <variable name="Order">17</variable>
    <variable name="Description">Internet Naming Service</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.isp</variable>
    <variable name="Action">1</variable>
    <variable name="Order">19</variable>
    <variable name="Description">Internet Communication Settings</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.js</variable>
    <variable name="Action">1</variable>
    <variable name="Order">20</variable>
    <variable name="Description">Jscript File</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.jse</variable>
    <variable name="Action">1</variable>
    <variable name="Order">21</variable>
    <variable name="Description">Jscript Encoded Script</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.mdb</variable>
    <variable name="Action">1</variable>
    <variable name="Order">23</variable>
    <variable name="Description">Microsoft Access Program</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.mde</variable>
    <variable name="Action">1</variable>
    <variable name="Order">24</variable>
    <variable name="Description">Microsoft Access MDE Database</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.msc</variable>
    <variable name="Action">1</variable>
    <variable name="Order">25</variable>
    <variable name="Description">Microsoft Console Document</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.msi</variable>
    <variable name="Action">1</variable>
    <variable name="Order">26</variable>
    <variable name="Description">Microsoft Windows Installer Package</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.msp</variable>
    <variable name="Action">1</variable>
    <variable name="Order">27</variable>
    <variable name="Description">Microsoft Windows Installer Patch</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.mst</variable>
    <variable name="Action">1</variable>
    <variable name="Order">28</variable>
    <variable name="Description">Microsoft Visual Test Source Files</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.pcd</variable>
    <variable name="Action">1</variable>
    <variable name="Order">29</variable>
    <variable name="Description">Microsoft Visual Compiled Script</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.reg</variable>
    <variable name="Action">1</variable>
    <variable name="Order">31</variable>
    <variable name="Description">Registry Entry</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.scr</variable>
    <variable name="Action">1</variable>
    <variable name="Order">32</variable>
    <variable name="Description">Screen Saver</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.sct</variable>
    <variable name="Action">1</variable>
    <variable name="Order">33</variable>
    <variable name="Description">Windows Script Component</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.shb</variable>
    <variable name="Action">1</variable>
    <variable name="Order">34</variable>
    <variable name="Description">Shell Scrap object</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.shs</variable>
    <variable name="Action">1</variable>
    <variable name="Order">35</variable>
    <variable name="Description">Shell Scrap object</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.url</variable>
    <variable name="Action">1</variable>
    <variable name="Order">37</variable>
    <variable name="Description">Internet Shortcut</variable>
    <variable name="Enabled">0</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.vb</variable>
    <variable name="Action">1</variable>
    <variable name="Order">38</variable>
    <variable name="Description">VBScript File</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.vbe</variable>
    <variable name="Action">1</variable>
    <variable name="Order">39</variable>
    <variable name="Description">VBScript Encoded File</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.wsc</variable>
    <variable name="Action">1</variable>
    <variable name="Order">41</variable>
    <variable name="Description">Windows Script Component</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.wsf</variable>
    <variable name="Action">1</variable>
    <variable name="Order">42</variable>
    <variable name="Description">Windows Script File</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.wsh</variable>
    <variable name="Action">1</variable>
    <variable name="Order">43</variable>
    <variable name="Description">Windows Script Host Settings</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.dll</variable>
    <variable name="Action">1</variable>
    <variable name="Order">12</variable>
    <variable name="Description">Dynamic Link Library</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.sys</variable>
    <variable name="Action">1</variable>
    <variable name="Order">36</variable>
    <variable name="Description">Driver File</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.zip</variable>
    <variable name="Action">1</variable>
    <variable name="Order">44</variable>
    <variable name="Description">W32.Novarg.A<_at_>mm</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.rar</variable>
    <variable name="Action">1</variable>
    <variable name="Order">45</variable>
    <variable name="Description">RAR Files</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.job</variable>
    <variable name="Action">1</variable>
    <variable name="Order">18</variable>
    <variable name="Description">Task Scheduler Vulnerability</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*whitelist*.zip</variable>
    <variable name="Action">0</variable>
    <variable name="Order">0</variable>
    <variable name="Description">Allow Zip Attachment</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.app</variable>
    <variable name="Action">1</variable>
    <variable name="Order">48</variable>
    <variable name="Description">OS X Executable Application</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.asd</variable>
    <variable name="Action">1</variable>
    <variable name="Order">49</variable>
    <variable name="Description">Microsoft Advanced Streaming Format Description</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.asf</variable>
    <variable name="Action">1</variable>
    <variable name="Order">50</variable>
    <variable name="Description">Microsoft Advanced Streaming Format</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.asx</variable>
    <variable name="Action">1</variable>
    <variable name="Order">51</variable>
    <variable name="Description">Microsoft Advanced Stream Redirector File</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.cmd</variable>
    <variable name="Action">1</variable>
    <variable name="Order">55</variable>
    <variable name="Description">Microsoft Command File for Windows</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.fxp</variable>
    <variable name="Action">1</variable>
    <variable name="Order">60</variable>
    <variable name="Description">FoxPro Compiled Source</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.hto</variable>
    <variable name="Action">1</variable>
    <variable name="Order">63</variable>
    <variable name="Description">Hierarchical Tagged Objects</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.ini</variable>
    <variable name="Action">1</variable>
    <variable name="Order">65</variable>
    <variable name="Description">Initialization/Configuration File</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.lib</variable>
    <variable name="Action">1</variable>
    <variable name="Order">69</variable>
    <variable name="Description">Program Library Common Object File Format (COFF)</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.ocx</variable>
    <variable name="Action">1</variable>
    <variable name="Order">76</variable>
    <variable name="Description">Microsoft Object Linking and Embedding (OLE) Control Extension</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.sh</variable>
    <variable name="Action">1</variable>
    <variable name="Order">82</variable>
    <variable name="Description">UNIX/LINUX Shell Script</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.vb?</variable>
    <variable name="Action">1</variable>
    <variable name="Order">88</variable>
    <variable name="Description">VBScript Script File</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.vcs</variable>
    <variable name="Action">1</variable>
    <variable name="Order">89</variable>
    <variable name="Description">vCalendar</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.vxd</variable>
    <variable name="Action">1</variable>
    <variable name="Order">90</variable>
    <variable name="Description">Virtual Device Driver</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.wm?</variable>
    <variable name="Action">1</variable>
    <variable name="Order">91</variable>
    <variable name="Description">Microsoft Windows Media Download File</variable>
    <variable name="Enabled">1</variable>
  </listitem>
  <listitem>
    <variable name="Type">0</variable>
    <variable name="Pattern">*.ws?</variable>
    <variable name="Action">1</variable>
    <variable name="Order">92</variable>
    <variable name="Description">Microsoft Windows Script</variable>
    <variable name="Enabled">1</variable>
  </listitem>
</list>


Here is the rule that allows messages to bypass any SPAM filtering:

<list name="HeaderFilter">
  <listitem>
    <variable name="Header">Subject</variable>
    <variable name="Type">4</variable>
    <variable name="Content">WHITELIST</variable>
    <variable name="Action">1</variable>
    <variable name="Score">0</variable>
    <variable name="ScoreNegative">0</variable>
    <variable name="Order">46</variable>
    <variable name="Description">Allows e-mail to bypass SPAM filter</variable>
    <variable name="Enabled">1</variable>
    <variable name="LastHitTimeStamp">1116035321</variable>
  </listitem>
</list>


A couple of notes about editing the report files:

Every upgrade over-writes my customized messages, so I have 3 versions of the file:

1. avir-reject.rep (the actual message that gets sent out when an attachment is blocked).
2. avir-reject.rep.orig (a copy of the Kerio default message)
3. avir-reject.rep.scpl (a copy of my customized message)

Whenever I do an upgrade, I just open my customized "avir-reject.rep.scpl" message, copy the text and then paste it into "avir-reject.rep"

I hope that helps.

-Dave

[Updated on: Sat, 14 May 2005 22:55]

  •  
peterj

Messages: 852
Karma: 1
Send a private message to this user

Thanks Dave.

Thats fantastic info & a great idea cunningly put into practice.

Perhaps we should suggest that Kerio add a feature to allow you to achieve this easily from the admin console.

What do you think?

Thanks Again...
  •  
TechFan

Messages: 27
Karma: 0
Send a private message to this user
Thanks for the answer and excellent info Dave. My biggest concern at this point is the performance of the webmail since essentially all users will be using it. It might not be 100% replacement for Outlook, but we don't have MS Office installed on our computers for licensing cost reasons, so this webmail will be a lot more complete email/contact solution than our current webmail solution. In your opinion, a single processor 2.0 GHz P4 with 512+ MB RAM running XP Pro would be sufficient for our demands?

I can see your points about AV scanning. . .with the attachment blocking, most all virus's should be stopped (especially since you are blocking zip files as well), but since essentially all email will be opened on the terminal servers, I am a bit concerned about not using a server-side email scanner. . . Our email server currently uses clamav and we also are using Norton corp on the desktops (need to actually switch to Tremd since we didn't update Norton. . .trend saved us a huge bunch).

I should evaluate more, but Kerio looks like a nice solution. I would like to have our email server on windows. . .would make it much simpler to backup with our existing backup solution. It would also be nice to run on identical desktop hardware (which we have other identical units) in case of hardware probs.

Thanks.

[Updated on: Sun, 15 May 2005 02:38]

  •  
dbott

Messages: 47
Karma: 1
Send a private message to this user
Hi TechFan,

Personally, I think Kerio is an excellent product. The Webmail component may not be quite "there" yet, but it is very close. There are a few features missing/incomplete (such as the subject search you posted about, as well as composing in rich text in Webmail) but overall, the product is evolving and should be the "Exchange/Outlook" killer that many of us have been looking for. With positive & constructive feedback from the user base, I think the the developers will be there within the next few updates.

Yes, there are some annoying bugs for those that are looking for Kerio to be all things to all users --- seamless Outlook integration, full-featured webmail, etc. but for those environments that are only using basic e-mail functions, Kerio is very viable solution (don't get me wrong, either --- Kerio has far more functionality in KMS 6 than many other mail servers, it's just not all of them are there or there are some bugs that are causing some frustration). I can understand some of the frustration that users are feeling, as some of the features have been promised for a while now.

As for your situation, I forgot that you were using terminal services, so integrated AV would be an important consideration. I'm not sure what the impact/overhead would be on the server, but I would definitely recommend the AV scanner in your situation.

Overall, I think a 2 GHz CPU should be sufficient, but I would add more memory --- probably bump it up to 2 GB. XP Pro is also one of the supported platforms, so I don't know if switching to Win2K or 2003 (or linux, for that matter) would make any performance difference. I would just disable any unwanted/unneeded services & make sure the OS is patched & up-to-date.

You could always just setup your test KMS 6 server with your user accounts (map accounts in Active Directory) and have your users "beat the hell" out if it. Have all 200 users log on to Webmail & send test messages to other local KMS accounts and see what the impact is. I had about 70 Webmail users (as well as 30 or so POP3/IMAP users) consistently connecting to my KMS 5.7.10 server (a P2-300 with 128 MB RAM running NT4.0!!!) and it was a little sluggish, but not unusable.

Hopefully, someone with a similar setup can offer a little more insight than I can.

-Dave


  •  
TechFan

Messages: 27
Karma: 0
Send a private message to this user
Thanks again Dave,

I will try to evaluate it a bit more thoroughly. . .

I am not sure if anyone has done an evaluation of the antivirus option plugins. It would be great to know how they work and what they would cost for a 270 user installation. . .

Any suggestions about migration paths? We currently have a sendmail based solution. . .how could we move our users current email. . .how about addressbooks?? Can they be imported somehow?

Thanks again. . .
  •  
dbott

Messages: 47
Karma: 1
Send a private message to this user
Quote:

Any suggestions about migration paths? We currently have a sendmail based solution. . .how could we move our users current email. . .how about addressbooks?? Can they be imported somehow?


Are your users currently using Outlook Express or some other mail client? If so, I would assume that you're the accounts are all POP3 and the user's messages are stored locally.

If this is the case, just set up a 2nd account in their Outlook Express accounts profile that connects to the KMS server & make it IMAP. Then, each user should be able to drag & drop their messages from the 'local folders' to the IMAP folders. Keep in mind that they will have to create the folders themselves, as you cannot drag an entire folder (only its contents). This is the technique that I used when moving messages up to the KMS server from our old sendmail server.

As for the contacts, in KMS 5 there was a plug-in for Outlook Express that allowed users to sync their contacts, but I don't know if it's available (or if the old version works) in KMS6.

http://download.kerio.com/dwn/kms/kerio-oeext-5.6.6-win.exe


-Dave

[Updated on: Mon, 16 May 2005 17:56]

  •  
pwhodges

Messages: 144
Karma: 0
Send a private message to this user
TechFan wrote on Mon, 16 May 2005 04:30

I am not sure if anyone has done an evaluation of the antivirus option plugins.

I don't imagine anyone has. I got NOD32 as a special offer with Kerio, and I think it's still a bit cheaper than Kerio's price for McAfee. Anyway, NOD32 works perfectly for me; it checks for updates every hour, and seems to be one of the fastest to cover new threats - it also detects "phishing" emails as trojans, which is handy. OTOH, it has only detected about half a dozen viruses in the last year, because my attachment blocking (done in my front-end spam filter, running ASSP) stops virtually all modern viruses.

Paul
Previous Topic: How can i return back to 6.0.8 version of kerio mailserver?
Next Topic: E-Mail Template Files
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Mon Nov 20 03:18:18 CET 2017

Total time taken to generate the page: 0.00502 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.