Setting up a MTA scanner

From GWAVA4

Jump to: navigation, search

A MTA scanner is used to intercept and process mail going through a target MTA in realtime. All mail going through the MTA, whether it is internal or Internet mail will be scanned.

You should consider installing an MTA scanner on every server that runs a GroupWise MTA. You must have GWAVA installed on this machine before proceeding, but you can proceed with the installation steps while logged into the Web UI of any server in the GWAVA system.

Although running the GWAVA scanner engine and MTA interface components on the same server is not strictly necessary, it is by far the most common scenario.

If this is the first time you are entering the GWAVA Management Console, you should select the Run Scanner Setup Wizard on the Startup Assistance page to get started.

Image:StartAssist3.jpg

Otherwise, to install a scanner for GWAVA, select the server object you wish to install a scanner on, and select Wizards, then Install/create new scanner.

Image:GMANInstallNewScannerWizard.jpg

Contents

[edit]

Scanner Setup Wizard

Image:WizardSelectionOfAgents.jpg

Select GroupWise MTA Mail Interface. If you wish to deploy a POA or GWIA scanner, refer to the appropriate section of this manual.


Review the necessary prerequisites so you have the information handy during the installation, then click continue.


Image:2s-CreateNew.jpg

You will need to enter several pieces of information:

  • Scanner Name - this is the name of the scanner that will appear underneath the Manage Scanners section of the selected server object. Use a descriptive, unique name.
  • Select what server it will be installed under.
  • Path to the MTA startup file - On Linux, this is generally a file located under the /opt/novell/groupwise/agents/share directory. Typing /etc/init.d/grpwise print at the command line will show the MTA installed on the server and its startup file. On Windows or Netware, this setting can vary widely.
  • The GWMTA program file location, including a trailing /. On Linux, this is almost always /opt/novell/groupwise/agents/bin/ and is filled out for you. On Windows or Netware, this can widely vary.
  • GroupWise Library Programs Location, used only on Linux machines is where shared libraries for GroupWise are installed. The default, /opt/novell/groupwise/agents/lib/ is normally correct and filled out for you.


Image:3s-CreateScanPaths.jpg


Review the settings your entered. If they are incorrect, click the back button in your browser to edit the settings. If the settings are correct, click Install. For more detailed information, click the Show Install procedures link.


Image:4s-InstallProc.jpg

For ease of use, GWAVA can automatically set up most common settings to automatically prevent and block Virus and Spam. You may override any of these settings later when refining your scanner configuration

Click Continue to begin the scanner installation.

Note: 'Stop Virus' not only turns on Antivirus protection (Stopping viruses but also turns on Fingerprinting and Attachment Filename filtering (inserting the most common malware patterns). By default, for example, this means all 'EXE' files will be blocked. 'Stop Spam' not only activates the Antispam System, but also enables the SURBL and RBL site checking (inserting some of the most common reliable SURBL/RBL sites by default).


Image:5s-SetupWizard.jpg


The following dialog is displayed upon completion.


Image:6s-ScnrInstFin.jpg


Once the installation is completed, you will need to

  1. Restart the MTA to activate the scanner. Without this step, GWAVA will not be actively scanning the MTA.
  2. Refresh the tree view by toggling the Manage Scanners selection under your server until the new scanner appears.
  3. Examine the new scanner configuration to make sure all choices are appropriate for your system. For example, the 'Stop Virus' Wizard automatically sets up a block for all 'EXE' files, which may or may not be appropriate for your system and individual requirements.


Image:6a-ScnrInstFinRestart.jpg


To see if the scanner is active, click on the scanner, expand the folders down to the Scanner Information section and click on the Status button.


Image:ScnrStat.jpg

[edit]

Advanced Information

The MTA installation performs the following tasks

  1. creates associate Engine, Interface, and Scanner objects Servers,Interfaces, Engines, & Scanners - Basic_Objects
  2. sets the Engine object to have a default configuration and runs the auto-setup wizard if Stop Virus or Stop Spam are selected
  3. modifies the MTA startup file to add various switches such as /vsscan that are required both to configure the GroupWise MTA to automatically load the GWAVA MTA Interface.
  4. copies gwavamta.xml to the GroupWise Program directory. This is a small XML file containing the object ID of the GWAVA MTA Interface, used when the GWAVA MTA Interface is loaded by the MTA so it can bootstrap into GWAVAMAN
  5. creates symbolic links in the Library location and in /lib pointing to /opt/beginfinite/gwava/assets/bin/libgwvsmod.so. This is the actual GWAVA MTA Interface program loaded by gwmtavs which is in turn loaded by gwmta.


[edit]

Verifying correct installation

After restarting the MTA, verify both the gwmta and gwmtavs programs are loaded by typing

ps -e | grep gw

from a command line terminal shell.


[edit]

Important Note

Each time that you apply updates to GWAVA 4, make sure that you restart the MTA afterwards to ensure it is running the most current code. Otherwise the server will likely keep an older version in memory.

Retrieved from "http://gwavasupport.securesites.net/wiki/index.php/Setting_up_a_MTA_scanner"
Personal tools