su linux install mail server

untuk melihat hard disk

df

setting ethernet
1. ifconfig
2. cd /etc/sysconfig/network-scripts
3. vi ifcfg-eth0 atau eth1

install apache server

4. cd /root/bin
5. ./apmtools

buat file rsync.sh

6. cd /usr/local/src
7. vi rsync.sh

#!/bin/sh
#1. Basic
mkdir /usr/local/src/setup
mkdir /usr/local/src/rsync
rm -rf /usr/local/src/rsync/*
rsync -avz 202.152.166.167::RSYNC /usr/local/src/rsync

8. chmod +x rsync.sh
9. ./rsync.sh
10 cd rsync

install tools untuk mail server

11. cd /usr/local/src/rsync
12. ./basic
13. ./netqmail
14. ./netqmail.clamav ----> refisi anti virus
15. ./spam
16. ./squrrelmail
17. ./webmin

install utility basic

18. cd /usr/local/src/basic
19. ./date.jkt
20. ./clientmail.install
21. ./basic

install utility netqmail

22. cd /usr/local/src/netqmail
23. baca README dulu (vi README)
24. vi netqmail.install ( rubah domainnya dulu )
25. ./netqmail.install
26. ganti domai lagi
$cd /home/vpopmail
$ls
$cd bin
$ls
$./vadddomain namadomain.com
 27. vi /home/vpopmail/domains/domainanda.com/.qmail-default
28. ubah tulisan menjadi -> |/home/vpopmail/bin/vdelivermail" delete
29. crontab -e
untuk pengisian crontab copylah semua file yang ada di mailserver yang
lain
misal punya mail.haengsung.co.id

rubahlah domainnya pada baris

rm -rf
/home/vpopmail/domains/domainanda.com/postmaster/maildir/new/*>/dev/null2>&1

install qscan

30. cd /usr/local/src/qscan
31. vi install
ganti domainnya ->nasiputih.net diganti domainanda.com
32. ./install
33. vi /var/qmail/bin/qmail-queue.pl
ganti $QS_RELAYCLIENT=1 dirubah $QS_RELAYCLIENT=0 pada line 421
34. hilangkan juga "spamassassin" pada code my
@scanner_array=("alamdscan_scanner","spamassassin")

install spam

35. cd /usr/local/src/spam
36. ./qmail.spamassassin
37. ./qmail.procmailrc
38. vi /etc/init.d/spamassasin
edit /etc/init.d/spamassassin SPAMDOPTIONS="-d -m5 -x -v -u vpopmail"
39. vi /etc/sysconfig/spamassassin
edit /etc/sysconfig/spamassasin SPAMDOPTIONS="-d -m5 -x -v -u vpopmail"

install squirrelmail

40. cs /usr/local/src/squirrelmail
41. ls
42. vi config.php
edit $domain=nasiputih.net -> $domain=domainanda.com
43. ./install.forqmail

install webmin

44. cd /usr/local/src/webmin
45. ls
46. ./install =====> ganti port nya 10000 menjdi 10001

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
++++

47. vi /etc/hosts ===> merubah domain local(localhosta)

124.195.3.62 domainanda.com domainanda

penambahan ip address agar dapat di remote dari luar

 48. vi /etc/hosts.allow
124.195.3.0 ikutin yang udah ada
124.195.4.0
124.195.5.0
114.4.6.0
192.168.15.0
192.168.25.0

49. vi hosts.deny
ALL:ALL

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Bikin Router dan rrdtool

tambah dns

50. vi /etc/resolv.conf
servername 202.195....

localnes

51. cd /usr/local/nes
52. vi ipnes
padaline 13,14 kasih tanda # agar eth2 dan eth3 gak di pakai

ip nes ferwall

53 vi ipnsfw
pada bagian #block port scanning tambahkan ip 124.195.0.0/16,114.4.6.0/16
slashnya ikutin yang diatas

#Filter private ip (tambahkan tanda # di depan ip dibawah ini)

/sbin/iptables -A INPUT -i eth0 -s 10.0.0.0/8 -j DROP
/sbin/iptables -A INPUT -i eth0 -s 0.0.0.0/8 -j DROP
/sbin/iptables -A INPUT -i eth0 -s 192.0.0.0/16 -j DROP

/sbin/iptables -A OUTPUT -i eth0 -s 10.0.0.0/8 -j DROP

/sbin/iptables -A OUTPUT -i eth0 -s 0.0.0.0/8 -j DROP
/sbin/iptables -A OOUTPUT -i eth0 -s 192.0.0.0/16 -j DROP

/sbin/iptables -A FORWARD -i eth0 -s 10.0.0.0/8 -j DROP

/sbin/iptables -A FORWARD -i eth0 -s 0.0.0.0/8 -j DROP
/sbin/iptables -A FORWARD -i eth0 -s 192.0.0.0/16 -j DROP

install rrdtool

54. cd /usr/local/HotSaNIC
55. ls
56. ./settingcopy
57. ls
58. cd modules/traffic
59. ls
60. vi settings
 #SCALE="-1000"
SCALE="200000"
61. cd /usr/local/HotSaNIC/modules/networks
62. ls
63. vi settings
ubah seperti contoh ini
DEVINT="192.168.0.0/24,domainanda total e-mail taffic"

64. cd /usr/local/HotSaNIC
65.ls
66. ./makeindex.pl
67. ./rrdgraph restart

pengaturan bw

68. cd /etc/sysconfig/htb
69 ls

70. vi eth0-2.root
# root class containing total bandwidth
RATE=80Mbit
#RATE=1Mbit
BURST=15k

71.vi eth0-2:888.other
#256k Group I
RATE=80Mbit
#CEIL=256Kbit
BURST=15k
LEAF=sfq
#MARK=0x5
PRIO=3
#RULE=10.12.1.201

72. vi eth1-2.root
# root class containing total bandwidth
RATE=80Mbit
#RATE=1Mbit
BURST=15k

73. vi eth1-2:888.other
#256k Group I
RATE=80Mbit
#CEIL=256Kbit
BURST=15k
LEAF=sfq
#MARK=0x5
PRIO=3
#RULE=10.12.1.201

ip mangle nes

74. vi ipmgl.nes
copy /sbin/iptables -t mangle -A PREROUTING -p icmp -j MARK --set-mark 2
75. vi htb.nes
paste di sini dan ahir mark nya di rubah 0x1
/sbin/iptables -t mangle -A PREROUTING -p icmp -j MARK --set-mark 0x1
76. vi eth0-2:30.icmp
 # default class for unclassified traffic
RATE=1024Kbit
#CEIL=256Kbit
BURST=15k
LEAF=sfq
PRIO=1
MARK=0x1
#RULE=10.11.1.0/24

77. vi eth1-2:30.icmp
# default class for unclassified traffic
RATE=1024Kbit
#CEIL=256Kbit
BURST=15k
LEAF=sfq
PRIO=1
MARK=0x1
#RULE=10.11.1.0/24

78. ./htb.nes