Installation (Zimbra): Difference between revisions
(Re-write for v7 install - further updates required still) |
(Updated post install section (continuation of rewrite)) |
||
Line 49: | Line 49: | ||
Once the install is completed, login to administer the exchange server using a URL similar to https://your-mail-svr:7071 | Once the install is completed, login to administer the exchange server using a URL similar to https://your-mail-svr:7071 | ||
To enforce | == Post Install Config == | ||
< | === Enforce HTTPS for Clients === | ||
su - zimbra | To enforce user connections using Zimbra Desktop or the web client to [[Acronyms#H|HTTPS]] use the following command as the zimbra user (EG <code> su -zimbra </code>) | ||
zmtlsctl https | zmtlsctl https | ||
Requires a restart to take effect... | |||
zmcontrol restart | |||
For more info see http://wiki.zimbra.com/wiki/CLI_zmtlsctl_to_set_Web_Server_Mode | |||
=== High CPU Workaround === | |||
Zimbra seems to have some reoccurring issues with regular high CPU spikes, some as often as every minute, caused by background maintenance tasks. With the increasing prevalence of virtualisation, this appears to be being noticed more frequently by users, and can a reoccurring thread in the forums. The following can aid in reducing this, which look to limit and reduce the logging retention and failed process checking that occurs. The config changes are relatively aggressive, so you may wish to alter less from the default. | |||
{| class="vwikitable" | |||
! Command !! Comments !! Default | |||
|- | |||
| <code> zmlocalconfig -e zmmtaconfig_interval=600 </code> || Increase service failure watchdog interval to 600 secs (10 mins) || <code>60</code> | |||
|- | |||
| <code> zmprov mcf zimbraLogRawLifetime 7d </code> || Reduce raw log retention to 7 days || <code>31d</code> | |||
|- | |||
| <code> zmprov mcf zimbraLogSummaryLifetime 30d </code> || Reduce summary log retention to 30 days || <code>730d</code> | |||
|- | |||
| <code> zmprov ms <hostname> -zimbraServiceEnabled logger </code> || Toggles/disables the logger service - I don't do this myself, seems too drastic <br> | |||
Replace <code><hostname></code> with [[Acronyms#F|FQDN]] of your Zimbra server <br> | |||
To check services enabled <code> zmprov gs <hostname> <nowiki>|</nowiki> grep zimbraServiceEnabled </code> | |||
| Enabled | |||
|} | |||
Additionally its common to tune down the frequency of scheduled tasks (edit config file with <code> crontab -e </code>, some lines in table below truncated with <code>...</code>) | |||
{| class="vwikitable" | |||
< | ! Original !! Change to !! Comments | ||
|- | |||
| <code> */2 * * * * /opt/zimbra/libexec/zmstatuslog </code> || <code> */60 * * * * /opt/zimbra/libexec/zmstatuslog </code> || Reduce status logging to hourly (from every 2 mins) | |||
Will cause a bigger CPU spike on the hour. | |||
</ | |- | ||
| <code> 00,10,20,30,40,50 * * * * /opt/zimbra/libexec/zmlogprocess ...</code> || <code> */15 * * * * /opt/zimbra/libexec/zmlogprocess ...</code> || Reduce log processing to every 15 mins | |||
|} | |||
== References == | == References == |
Revision as of 11:24, 19 June 2012
Zimbra FOSS Installation Guide
This procedure was originally written for a Zimbra v6 installation, using the Zimbra Wiki site as a guide[1]. It's since been updated whilst installing v7 (the installation process hasn't changed). Note that if you are installing on a server with a private address that is to be NAT'ed to a publicly accessible address you'll need ensure that you've got Split-DNS set-up, and I'd recommend a quick read through the DNS requirements regardless.
Pre-Requisites
- Working Ubuntu LTS Server installation - see Ubuntu Installation for further install info, and http://www.zimbra.com/downloads/os-downloads.html for supported OS versions
- Base install with OpenSSH Server
- DNS Server - Only required if you need to use Split DNS and need to provide resolution of the internal IP address of the server (EG you don't have an existing local DNS Server under your control that you can add your Zimbra server in to)
- Internet/public IP address
- Can be shared with other services so long as there's no TCP port conflicts and you have a router that can perform the appropriate NAT'ing
- See http://wiki.zimbra.com/wiki/Ports#External_Access for required TCP ports
- Can be shared with other services so long as there's no TCP port conflicts and you have a router that can perform the appropriate NAT'ing
- MX (Mail Exchange) DNS record pointing to public IP address
- Additionally an internal only MX record pointing to the server's internal/private IP address - only if you need to use SplitDNS
Server Specification[2]
Specification | CPU | Memory | Free Disk | Comments |
---|---|---|---|---|
Eval / Test | 1 x 1.5 GHz | 1 GB | 5 GB | Could be used for low-user count (< 10 active accounts) production environments - but certain operations will be slow. |
Minimum | 1 x 2.0 GHz | 2 GB | 10 GB | Absolute minimum production spec advised by Zimbra |
Recommended | 2 x 2.0 GHz | 4 GB | 10 GB | Recommended minimum production spec advised by Zimbra |
Note: Free Disk does not include allocation for mail storage So you will need additional free space for users data.
Memory seems to be the main choke point for Zimbra, and will run a bit faster if you can spare a bit more. The less RAM the server has, less data can be cached into memory, and so the more disk IO that is required, and consequently the higher demand there will be on getting good IO throughput from the servers disks.[3]
Procedure
- Locate the appropriate download URL at http://www.zimbra.com/downloads/os-downloads.html, a copy the link to the download
- Download the target of the link to your server (eg here downloading to
tmp
folder - Uncompress the package
tar -xzf zcs-7.2.0_GA_2669.UBUNTU10_64.20120410002303.tgz
- Start the install
./install.sh
- Acceprt the EULA, the install will fail due to missing packages! Note which are missing.
- Install the missing prerequisite packages
- EG
apt-get install libperl5.10 sysstat sqlite3
- EG
- Restart the install, accepting the default packages to install
- Once the packages are installed the installer may complain about your domain not having a DNS record -
DNS ERROR resolving MX for ...
- Change the domain to your publicly registered domain (without server hostname, so
sandfordit.com
rather thanmail.sandfordit.com
- If this fails to resolve the error, there is a problem with your network/DNS setup
- Change the domain to your publicly registered domain (without server hostname, so
- At the end of the base install, address the unconfigured item (ie an admin password)
- Write the config to disk and allow the system to be configured
Once the install is completed, login to administer the exchange server using a URL similar to https://your-mail-svr:7071
Post Install Config
Enforce HTTPS for Clients
To enforce user connections using Zimbra Desktop or the web client to HTTPS use the following command as the zimbra user (EG su -zimbra
)
zmtlsctl https
Requires a restart to take effect...
zmcontrol restart
For more info see http://wiki.zimbra.com/wiki/CLI_zmtlsctl_to_set_Web_Server_Mode
High CPU Workaround
Zimbra seems to have some reoccurring issues with regular high CPU spikes, some as often as every minute, caused by background maintenance tasks. With the increasing prevalence of virtualisation, this appears to be being noticed more frequently by users, and can a reoccurring thread in the forums. The following can aid in reducing this, which look to limit and reduce the logging retention and failed process checking that occurs. The config changes are relatively aggressive, so you may wish to alter less from the default.
Command | Comments | Default |
---|---|---|
zmlocalconfig -e zmmtaconfig_interval=600 |
Increase service failure watchdog interval to 600 secs (10 mins) | 60
|
zmprov mcf zimbraLogRawLifetime 7d |
Reduce raw log retention to 7 days | 31d
|
zmprov mcf zimbraLogSummaryLifetime 30d |
Reduce summary log retention to 30 days | 730d
|
zmprov ms <hostname> -zimbraServiceEnabled logger |
Toggles/disables the logger service - I don't do this myself, seems too drastic Replace |
Enabled |
Additionally its common to tune down the frequency of scheduled tasks (edit config file with crontab -e
, some lines in table below truncated with ...
)
Original | Change to | Comments |
---|---|---|
*/2 * * * * /opt/zimbra/libexec/zmstatuslog |
*/60 * * * * /opt/zimbra/libexec/zmstatuslog |
Reduce status logging to hourly (from every 2 mins)
Will cause a bigger CPU spike on the hour. |
00,10,20,30,40,50 * * * * /opt/zimbra/libexec/zmlogprocess ... |
*/15 * * * * /opt/zimbra/libexec/zmlogprocess ... |
Reduce log processing to every 15 mins |
References
- ↑ Especially http://wiki.zimbra.com/index.php?title=Ubuntu_8.04_LTS_Server_%28Hardy_Heron%29_Install_Guide
- ↑ Zimbra System Requirements for v7.1 - http://www.zimbra.com/docs/shared/7.1/system_requirements/wwhelp/wwhimpl/js/html/wwhelp.htm#href=System_Requirements_7_1.System_Requirements.html
- ↑ Zimbra Performance Tuning - http://wiki.zimbra.com/wiki/Performance_Tuning_Guidelines_for_Large_Deployments