Table Of ContentAdministrAtion
guide
Version 5.0
modusGate™ v5.0
Administration Guide
Latest revision: May 2009
The contents of this manual is for informational use only and is subject to change without notice. Neither Vircom nor anyone else who has been involved in the creation or production of this
manual assumes any responsibility or liability for any errors or inaccuracies that may occur in this manual, nor for any loss of anticipated profit or benefits, resulting from the use of this manual.
This manual is protected by copyright laws and international treaties. Your right to copy this manual is limited by copyright law and the terms of your software license agreement. As the soft-
ware licensee, you may make a reasonable number of copies or printouts, provided they are for your own use. Making unauthorized copies, adaptations, compilations or derivative works for any
type of distribution is prohibited and constitutes a punishable violation of the law.
Any references to names of actual companies, products, people and/or data used in screenshots are fictitious and are in no way intended to represent any real individual, company, product, event
and/or data unless otherwise noted.
VOP, Vircom Online Platform, VOP Mail, modus™, modusMail™, modusGate™, modus Sieve™, SCA™ and VOP Radius are trademarks of Vircom, Inc. Norman Virus Control and NVC are
trademarks of Norman® Data Defense Inc. Windows®, Windows® NT, Windows® 2000, Windows® Server 2003, IIS, Internet Information Server and Data Access Components are either reg-
istered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. Platypus, RODOPI, Emerald, EcoBuilder, Logisense and Worldgroup are trademarks of
their respective owners. All other products or services mentioned in this document are identified by the trademarks or service marks of their respective companies or organizations.
McAfee® and NetScan are registered trademarks of Network Associates, Inc. and/or its affiliates in the US and/or other countries. ©2006 Networks Associates Technology, Inc. All Rights
Reserved.
Portions of this software are based, in part, on ImageMagick, Copyright © 1999-2006, ImageMagick Studio LLC.
modusMail™ is based on the Professional Internet Mail Services product licensed from the University of Edinburgh.
Certain algorithms used in parts of this software are derived from the RSA Data Security, Inc. MD5 Message-Digest Algorithm.
Copyright © 1995-2010 Vircom Inc.
Vircom Inc., 460 St. Catherine W, Suite 600, Montreal, QC, Canada, H3B 1A7
For more information, contact Customer Support at +1 514.845.8474; Sales at +1.514.845.1666, Ext. 1; or visit our website at www.vircom.com.
Table of Contents
Introduction ..................................................1 modusGate™ Administration ...................28
Foreword ............................................................................2 Administration Overview .............................................29
About This User Guide ...................................................3 Find ....................................................................................30
Notes of Interest ....................................................................3 Find – Admin: All Versions .................................................30
Reading Section Titles .....................................................4 Find – Quarantine: modusGate™ AS, AV & ASV Versions
..................................................................................................31
Online Help and Support ................................................5
Domains ..........................................................................32
Knowledge Base ......................................................................5
Add, Modify or Delete Domains ......................................32
Introduction to modusGate™ ....................6 Domains – Preferences – Aliases .....................................32
Domains – Preferences – Footer .....................................33
modusGate™ Basics ........................................................7
Domains – Preferences – Reporting: AS, AV & ASV
Administration Console ........................................................7
Versions .................................................................................33
Override Functionality ...........................................................8
Domains – Preferences – Attachments: AS, AV & ASV
Authorization and Web Administration ............................9
Versions .................................................................................36
WebQuarantine ......................................................................9
Domains – Preferences – Phishing: AS & ASV Versions .
Browser Compatibility ..........................................................9 37
Customer Support ................................................................10 Domains – Preferences – Virus: AV & ASV Versions ..37
Anti-Virus Engine ............................................................11 Domains – Preferences – Spam: AS & ASV Versions .38
Domains – Preferences – Trusted Senders: AS & ASV
Installing modusGate™ .............................12 Versions ..................................................................................38
System Requirements ....................................................13 Domains – Preferences – Blocked Senders: AS & ASV
Versions ..................................................................................39
A Word About RAID ..........................................................14
Domains – Preferences – Message Audit .......................39
Third-Party Anti-Virus Software .......................................14
Domains – Preferences – Language Filters: AS & ASV
Firewalls ..................................................................................14
Versions .................................................................................40
License Keys ....................................................................15
Domains – WebAdmin – Privileges .................................40
Installation Guide ............................................................16
Domains – WebAdmin – Administrators .......................40
Before You Begin ..................................................................16
Users .................................................................................41
ODBC Drivers .............................................................................16
Users – Preferences – General .........................................41
Outbound Ports ...........................................................................17
Users – Preferences – Footer ...........................................42
Microsoft® Internet Information Server (IIS) .......................17
Users – Preferences – Reporting: AS, AV & ASV Versions
SQL Extended Databases ...........................................................17
..................................................................................................42
Message Audit Log and SQL Server ........................................17
Users – Preferences – Attachments: AS, AV & ASV
Database Formats ........................................................................18
Versions .................................................................................43
Installation Procedures ........................................................19
Users – Preferences – Phishing: AS & ASV Versions ..43
.NET Framework .........................................................................19
MDAC 2.8 ......................................................................................20 Users – Preferences – Virus: AV & ASV Versions .......44
Installing modusGate™ Server ..........................................20 Users – Preferences – Spam: AS & ASV Versions .......45
Deployment Strategy 1 ...............................................................20 Users – Preferences – Trusted Senders: AS & ASV
Deployment Strategy 2 ...............................................................20 Versions .................................................................................45
Destination Folders .....................................................................21 Users – Preferences – Blocked Senders: AS & ASV
Folder Permissions ......................................................................21 Versions .................................................................................45
Deployment Strategies ........................................................21 Users – Preferences – Aliases ...........................................46
Default Configuration .................................................................21 Users – Preferences – Message Audit .............................47
Deployment Strategy 1 ...............................................................22 Users – Preferences – Language Filter: AS & ASV
Deployment Strategy 2 ...............................................................23 Versions ..................................................................................47
Web Configuration ...............................................................24 Users – WebAdmin – Administrators ............................48
WebQuarantine ...........................................................................24
Quarantine .......................................................................49
WebAdmin ....................................................................................24
Using Quarantine ..................................................................50
WebMonitor .................................................................................25
Quarantine – Properties – Message .................................51
WebAdmin URL ...........................................................................25
Quarantine – Properties – Headers ................................51
Creating Routes ....................................................................26
Quarantine – Properties – Raw Source ..........................51
Remote Administration Console ......................................26
Uninstalling modusGate™ ..................................................27
modusGate™ Shields .................................52
i
Table of Contents
Threats Overview ..........................................................53 Configuration Overview ............................................102
modusGate™ AS, AV & ASV Versions: ..........................53 System ............................................................................103
Security .............................................................................54 System – Properties – License Key ................................103
Security – Properties – Protocol Filter ...........................54 System – Properties – Agents .........................................105
Security – Properties – SMTP Security ............................55 System – Properties – Footer .........................................106
Security – Properties – Mail Relay ....................................58 System – Properties – Scanning Order: AV and ASV
Security – Properties – Block Scan Attack .....................58 Versions ................................................................................106
Security – Properties – Sender Reputation ....................60 System – Properties – Services .......................................106
Sender Reputation System (SRS) ..............................................60 System – Properties – Global Aliases ............................109
Sender Validation (Greylisting & SPF) .....................................60 System – Properties – Settings ........................................110
Security – Properties – Real-Time Blacklist ...................64 System – Properties – Mail Delivery ..............................112
Security – Properties – Connection Limits ....................65 System - Properties - System Databases ......................112
Security – Properties – Connections ...............................66 Individual Databases ..................................................................114
Security – Properties – Trusted Address List ................66 System – Properties – Performance ..............................116
Mask Lists .......................................................................................67 System – Properties – Quarantine Reports .................117
Security – Properties – Encryption & Certificates ........68 System – Properties – Proxy ...........................................120
Encrypt Message Transmission .................................................68 System – Properties – Custom Errors ..........................120
Encrypt Message Content ..........................................................70 Connections ..................................................................121
Security - Properties - Domain Keys ...............................73
Creating Routes ..................................................................121
Virus ...................................................................................77
Requirements for Microsoft® Exchange 2000/2003 .........126
Virus – Properties – General .............................................77 Interacting with Exchange 2000/2003 ...................................127
Virus – Properties – Auto-Updates ..................................78 Testing Connections .................................................................128
Virus – Properties – Auto-Cleanup ..................................78 WebQuarantine Setup .............................................................128
Virus – Properties – Performance ....................................79 WebQuarantine Configuration for Non-Standard
Virus – Properties – Postmaster .......................................79 Installations .................................................................................129
Web ................................................................................131
Virus – Preferences – Options ..........................................80
Virus – Preferences – Alert Sender ..................................80 Web – WebAdmin – Privileges .......................................132
Virus – Preferences – Alert Recipients ............................81 Web – WebQuarantine – Options ................................133
Phishing .............................................................................83 Web – Quarantine – Advanced ......................................134
Logs .................................................................................135
Phishing – Preferences – Options .....................................83
Spam ..................................................................................84 Logs – Properties – File Config .......................................136
Logs – Properties – Statistics Config .............................137
Spam – Properties – General .............................................84
Logs – Properties – Server Flags ....................................138
Spam – Properties – Auto-Updates ..................................85
Logs – Properties – Operation Flags .............................139
Spam – Properties – Auto-Cleanup ..................................85
Logs – Properties – Error Flags ......................................140
Spam – Preferences – Options ..........................................85
Logs – Properties – Security Flags ..................................140
Spam – Preferences – System Trusted Senders ............86
Logs – Properties – Authentication Flags .....................141
Spam – Preferences – System Blocked Senders ............87
Logs – Properties – Message Audit ................................142
Spam – Preferences – SURBL (Spam Links) ...................88
Logs – Properties – Spam Flags: AS and ASV Versions ....
Forbidden Attachments (F.A.) .....................................89
143
Attachments – Properties – General ...............................89
Logs – Properties – Virus Flags: AV and ASV Versions ...
Attachments – Properties – Forbidden Attachments ..89
143
Attachments – Properties – Auto-Cleanup ....................90
Attachments – Properties – Postmaster .........................90 Troubleshooting .......................................144
Attachments – Preferences – Options ............................90
Troubleshooting ...........................................................145
Attachments – Preferences – Alert Sender ....................91
Outside Mail Delivery Problems ............................................145
Attachments – Preferences – Alert Recipients ..............92
Mail Spool Directories .............................................................146
Rules ..................................................................................94
Diagnosing Problems Using Spool Directory Contents ...147
Rules – Properties – Custom Filter ..................................94 Third-Party Anti-Virus Blocks Messages Prematurely and
Custom Filters Explained ...........................................................97 Locks Files ...................................................................................148
Rules – Properties – Performance ....................................98 Resolving Backlogs in the Holding and Domains Folders 148
Rules – Properties – Language Filter ................................99 Invirus Buildup and/or Server Freezes at Regular Intervals ...
149
modusGate™ Configuration ...................101 Web Application Troubleshooting ........................................150
ii
Table of Contents
Appendices ...............................................152 Configuring Exchange Server 5.5 Using LDAP: ..................259
Additional Methods to Configure Mailbox Lookup and
Appendix A: Web Applications ................................153
Authentication .....................................................................260
WebMonitor ........................................................................153
Exchange Server 2003 ..............................................................260
System Health ............................................................................154
Exchange Server 5.5 .................................................................261
Reporting ....................................................................................157
Microsoft® Small Business Server 2003 .......................262
Message Audit ............................................................................166
Descriptions of Default Behaviors .................................262
WebAdmin ...........................................................................170
Troubleshooting .................................................................263
Domains ......................................................................................171
Appendix L: Trusted and Blocked Senders Behaviors
Specific Domain View ..............................................................171
265
Users ............................................................................................172
Specific User View ....................................................................173 Appendix M: Configuring the PGP® Email Gateway .
Customizing Quarantine Reports ...................................174 267
Customizing WebQuarantine ..........................................179 Network Topology ............................................................267
Basic Customization to Custom.Config ...............................180 Configuring the PGP® Email Gateway ..........................267
Domain Customization ............................................................182
WebQuarantine Message Customization ............................187 Glossary & List of Figures ........................272
Miscellaneous Customizations ...............................................187
Glossary .........................................................................273
Appendix B: Performance Counters .......................189
List of Figures ...............................................................278
SMTPRS Object ...................................................................189
SMTPDS Object ..................................................................189
MAILMS Object ...................................................................190
MODUSCAN Object .........................................................190
Appendix C: Formal Command Syntax ..................191
Appendix D: Protocol Specifications ......................192
SMTP Receiver ....................................................................192
POP3 Server ........................................................................192
IMAP4 Server .......................................................................192
MAILMS Server ....................................................................193
Appendix E: Maintaining a Microsoft® SQL Server
Database ........................................................................194
Appendix F: Resolving Database Configuration
Problems ........................................................................197
Appendix G: Extended Database Schema ..............201
Appendix H: Event Log Descriptions ......................209
Appendix I: modus™ SNMP and MIB Counters ..227
Appendix J: Sieve Scripts ............................................229
Sieve Scripts Explained ......................................................229
Additional Sieve Actions ...................................................233
Sieve Variables Extension ........................................................242
Sieve EDITHEADER Extension ..............................................247
Appendix K: Deployment with Microsoft® Exchange
Server .............................................................................250
Active Directory and LDAP: Overview .........................251
modusGate™/Exchange Server Deployment Strategies .
252
Basic Requirements for modusGate™ & Exchange Server
Deployments: .............................................................................252
Strategy 1: modusGate™ in DMZ ........................................254
Strategy 2: modusGate™ on the Same Subnet as the
Exchange Server ........................................................................255
Strategy 3: modusGate™ Installed on the Same PC as
Exchange Server ........................................................................256
Creating a modusGate™ Connection .................................257
Configuring LDAP with Exchange Server 2000/2003 .......258
iii
Introduction
Introduction Foreword
Foreword
Thank you for purchasing modusGate™, Vircom’s comprehensive secure email gateway,
designed to fit seamlessly with existing email servers. Its flexible design provides the email
assurance capabilities necessary to meet today’s threats as well as the essential flexibility
and scalability to meet tomorrow’s.
This guide provides instructions required to install, configure and customize modusGate™ to meet your
business requirements. The guide includes documentation for the four versions of modusGate™:
modusGate™ L Software Package
• Email gateway with network-level security
• Protects against dictionary attacks, denial of service attacks and server flooding from
spammers
modusGate™ AS Software Package & Spam Updates
• Email relay gateway with network-level security
• Extensive spam protection, attachment blocking and custom sieve scripts
• Comes with a full year of SCA™ spam engine updates
modusGate™ AV Software Package & Virus Service
• Email relay gateway with network-level security
• Comes with a full year of virus protection from McAfee® or Norman® Data Defense
modusGate™ ASVSoftware Package, Spam Updates & Virus Service
• Email relay gateway with network-level security
• Provides content scanning for Spam, Phishing, Viruses and Forbidden Attachments
• Comes with a full year of SCA™ spam engine updates and a full year of virus protection from
McAfee® or Norman® Data Defense
2
Introduction About This User Guide
About This User Guide
This guide presents all of the modusGate™ features in a systematic approach to facilitate
finding the information and learning it quickly. The information is structured around the
modusGate™ Administration Console.
The Table of Contents itemizes the features found in modusGate™. The guide also includes several
Appendices and a Glossary.
Notes of Interest
Notes of interest, supplementing section information, have been placed throughout the guide. They are
identified by the following icons:
Indicates that the information is something you must know and upon which you may
possibly want to act.
Provides additional information that may be of interest.
Provides an alternative method or indicates how the system will respond to your
actions.
3
Introduction Reading Section Titles
Reading Section Titles
Sections discussing Console features are identified as they appear in the Console and the format for
the section title refers to the panel in the Console.
The following figure shows how the section titles were conceived:
Domains - Properties - Info
Figure 1: Section Titles
4
Introduction Online Help and Support
Online Help and Support
The modusGate™ Administration Guide is accessible, at all times, from the Console by clicking on Help
– Contents or by pressing F1. Acrobat Reader must be installed on the computer to read the guide.
To download Acrobat Reader, go to http://www.adobe.com/products/acrobat/readstep2.html.
If the information you are looking for is not in the guide or should you have a question about a
particular feature, you may send a report to Customer Support:
• Click on Help – Support
• Enter the required information
• Click on Send Report
An email is automatically forwarded to Vircom’s Customer Support team
Figure 2: Customer Support Form
Knowledge Base
For additional information, you can consult Vircom’s Knowledge Base by going to http://kb.vircom.com/
Kbase. In addition to the most recent versions of all modusGate™ documents, the Knowledge Base also
includes bulletins, fixes and patches, known issues and configuration information.
5
Description:VOP, Vircom Online Platform, VOP Mail, modus™, modusMail™, modusGate™, modus Sieve™, SCA™ and VOP Radius are trademarks of Vircom,
