Installation (Zimbra): Difference between revisions

From vwiki
Jump to navigation Jump to search
(Re-write for v7 install - further updates required still)
(Updated post install section (continuation of rewrite))
Line 49: Line 49:
Once the install is completed, login to administer the exchange server using a URL similar to https://your-mail-svr:7071
Once the install is completed, login to administer the exchange server using a URL similar to https://your-mail-svr:7071


To enforce https for Zimbra Desktop clients use the following commands (requires a restart to take effect)...
== Post Install Config ==
<pre>
=== Enforce HTTPS for Clients ===
su - zimbra
To enforce user connections using Zimbra Desktop or the web client to [[Acronyms#H|HTTPS]] use the following command as the zimbra user (EG <code> su -zimbra </code>)
zmtlsctl https
zmtlsctl https
</pre>


=== High CPU Workaround ===
Requires a restart to take effect...
Zimbra seems to have some real issues with constant high CPU spikes every minute, to limit reduce the logging retention and failed process checking.
zmcontrol restart
<pre>
su - zimbra
zmlocalconfig -e zmmtaconfig_interval=6000
zmprov mcf zimbraLogRawLifetime 7d
zmprov mcf zimbraLogSummaryLifetime 30d
/opt/zimbra/libexec/zmlogprocess


crontab -e
For more info see http://wiki.zimbra.com/wiki/CLI_zmtlsctl_to_set_Web_Server_Mode
*/60 * * * * /opt/zimbra/libexec/zmstatuslog
</pre>


* <code> zmlocalconfig -e zmmtaconfig_interval=6000 </code>
=== High CPU Workaround ===
** Increase service failure watchdog interval to 6000 secs
Zimbra seems to have some reoccurring issues with regular high CPU spikes, some as often as every minute, caused by background maintenance tasks.  With the increasing prevalence of virtualisation, this appears to be being noticed more frequently by users, and can a reoccurring thread in the forums.  The following can aid in reducing this, which look to limit and reduce the logging retention and failed process checking that occurs.  The config changes are relatively aggressive, so you may wish to alter less from the default.
{| class="vwikitable"
! Command !! Comments !! Default
|-
| <code> zmlocalconfig -e zmmtaconfig_interval=600 </code> || Increase service failure watchdog interval to 600 secs (10 mins) || <code>60</code>
|-
| <code> zmprov mcf zimbraLogRawLifetime 7d </code> || Reduce raw log retention to 7 days || <code>31d</code>
|-
| <code> zmprov mcf zimbraLogSummaryLifetime 30d </code> || Reduce summary log retention to 30 days || <code>730d</code>
|-
| <code> zmprov ms <hostname> -zimbraServiceEnabled logger </code> || Toggles/disables the logger service - I don't do this myself, seems too drastic <br>
Replace <code><hostname></code> with [[Acronyms#F|FQDN]] of your Zimbra server <br>
To check services enabled  <code> zmprov gs <hostname> <nowiki>|</nowiki> grep zimbraServiceEnabled </code>
| Enabled
|}


'''Above seems to help, but doesn't fix things...!'''
Additionally its common to tune down the frequency of scheduled tasks (edit config file with <code> crontab -e </code>, some lines in table below truncated with <code>...</code>)
Additionally, to disable the logging process, maybe (uncomplete)
{| class="vwikitable"
<pre>
! Original !! Change to !! Comments
su - zimbra
|-
hostname                # Gives your server's hostname
| <code> */2 * * * * /opt/zimbra/libexec/zmstatuslog </code> || <code> */60 * * * * /opt/zimbra/libexec/zmstatuslog </code> || Reduce status logging to hourly (from every 2 mins)
zmprov ms <hostname> -zimbraServiceEnabled logger
Will cause a bigger CPU spike on the hour.
</pre>
|-
| <code> 00,10,20,30,40,50 * * * * /opt/zimbra/libexec/zmlogprocess ...</code> || <code> */15 * * * * /opt/zimbra/libexec/zmlogprocess ...</code> || Reduce log processing to every 15 mins
|}


== References ==
== References ==

Revision as of 11:24, 19 June 2012

Zimbra FOSS Installation Guide

This procedure was originally written for a Zimbra v6 installation, using the Zimbra Wiki site as a guide[1]. It's since been updated whilst installing v7 (the installation process hasn't changed). Note that if you are installing on a server with a private address that is to be NAT'ed to a publicly accessible address you'll need ensure that you've got Split-DNS set-up, and I'd recommend a quick read through the DNS requirements regardless.

Pre-Requisites

  • Working Ubuntu LTS Server installation - see Ubuntu Installation for further install info, and http://www.zimbra.com/downloads/os-downloads.html for supported OS versions
    • Base install with OpenSSH Server
    • DNS Server - Only required if you need to use Split DNS and need to provide resolution of the internal IP address of the server (EG you don't have an existing local DNS Server under your control that you can add your Zimbra server in to)
  • Internet/public IP address
  • MX (Mail Exchange) DNS record pointing to public IP address
    • Additionally an internal only MX record pointing to the server's internal/private IP address - only if you need to use SplitDNS

Server Specification[2]

Specification CPU Memory Free Disk Comments
Eval / Test 1 x 1.5 GHz 1 GB 5 GB Could be used for low-user count (< 10 active accounts) production environments - but certain operations will be slow.
Minimum 1 x 2.0 GHz 2 GB 10 GB Absolute minimum production spec advised by Zimbra
Recommended 2 x 2.0 GHz 4 GB 10 GB Recommended minimum production spec advised by Zimbra

Note: Free Disk does not include allocation for mail storage So you will need additional free space for users data.

Memory seems to be the main choke point for Zimbra, and will run a bit faster if you can spare a bit more. The less RAM the server has, less data can be cached into memory, and so the more disk IO that is required, and consequently the higher demand there will be on getting good IO throughput from the servers disks.[3]

Procedure

  1. Locate the appropriate download URL at http://www.zimbra.com/downloads/os-downloads.html, a copy the link to the download
  2. Download the target of the link to your server (eg here downloading to tmp folder
  3. Uncompress the package
    • tar -xzf zcs-7.2.0_GA_2669.UBUNTU10_64.20120410002303.tgz
  4. Start the install
    • ./install.sh
    • Acceprt the EULA, the install will fail due to missing packages! Note which are missing.
  5. Install the missing prerequisite packages
    • EG apt-get install libperl5.10 sysstat sqlite3
  6. Restart the install, accepting the default packages to install
  7. Once the packages are installed the installer may complain about your domain not having a DNS record - DNS ERROR resolving MX for ...
    • Change the domain to your publicly registered domain (without server hostname, so sandfordit.com rather than mail.sandfordit.com
    • If this fails to resolve the error, there is a problem with your network/DNS setup
  8. At the end of the base install, address the unconfigured item (ie an admin password)
  9. Write the config to disk and allow the system to be configured

Once the install is completed, login to administer the exchange server using a URL similar to https://your-mail-svr:7071

Post Install Config

Enforce HTTPS for Clients

To enforce user connections using Zimbra Desktop or the web client to HTTPS use the following command as the zimbra user (EG su -zimbra )

zmtlsctl https

Requires a restart to take effect...

zmcontrol restart

For more info see http://wiki.zimbra.com/wiki/CLI_zmtlsctl_to_set_Web_Server_Mode

High CPU Workaround

Zimbra seems to have some reoccurring issues with regular high CPU spikes, some as often as every minute, caused by background maintenance tasks. With the increasing prevalence of virtualisation, this appears to be being noticed more frequently by users, and can a reoccurring thread in the forums. The following can aid in reducing this, which look to limit and reduce the logging retention and failed process checking that occurs. The config changes are relatively aggressive, so you may wish to alter less from the default.

Command Comments Default
zmlocalconfig -e zmmtaconfig_interval=600 Increase service failure watchdog interval to 600 secs (10 mins) 60
zmprov mcf zimbraLogRawLifetime 7d Reduce raw log retention to 7 days 31d
zmprov mcf zimbraLogSummaryLifetime 30d Reduce summary log retention to 30 days 730d
zmprov ms <hostname> -zimbraServiceEnabled logger Toggles/disables the logger service - I don't do this myself, seems too drastic

Replace <hostname> with FQDN of your Zimbra server
To check services enabled zmprov gs <hostname> | grep zimbraServiceEnabled

Enabled

Additionally its common to tune down the frequency of scheduled tasks (edit config file with crontab -e , some lines in table below truncated with ...)

Original Change to Comments
*/2 * * * * /opt/zimbra/libexec/zmstatuslog */60 * * * * /opt/zimbra/libexec/zmstatuslog Reduce status logging to hourly (from every 2 mins)

Will cause a bigger CPU spike on the hour.

00,10,20,30,40,50 * * * * /opt/zimbra/libexec/zmlogprocess ... */15 * * * * /opt/zimbra/libexec/zmlogprocess ... Reduce log processing to every 15 mins

References