Initial Setup

The following document is used to describe the first configuration steps with the REDDOXX Appliance.
Further information is linked in the corresponding sections.
The configuration steps are also available as Screencasts:

These settings can be found in Webinterface => Configuration => Settings

  • Enter the e-mail address of the REDDOXX Appliance.
    The e-mail address of the REDDOXX Appliance must be an e-mail address of a valid e-mail domain and also received by the REDDOXX Appliance.
    This e-mail address may not be used for other purposes
  • Enter the e-mail address of the administrator.
    To this email address the administrator receives messages from the appliance, e.g. when the backup was not finished correctly.

These settings can be found in Webinterface => Configuration => Network

  • Please check the network configuration
  • In the network interface tab, a second ip can be assigned if for example a storage Network has to be connected to the appliance
  • Static routes if needed, are configured in the static routes tab
  • Configure the company wide used time servers in the time server tab
  • If necessary, configure Proxy settings in the proxy tab
  • The tab SNMP is used to configure the appliance for access via monitoring software
  • A SMB/CIFS share via the appliance can be enabled in the SMB/CIFS tab (in order to integrate the archiv in existing backup plans)

These settings can be found in Webinterface => Configuration => E-Mail Transport
If, instead of STMP Mailflow, POP3 fetching is required, see the corresponding POP3 Quick Guide.

Screencast SMTP Mailflow with MS Exchange:

SMTP Settings

  • Configure the Appliance FQDN as well as authenticating / tls parameters if needed
  • In the smtp client settings, the connection parameters and smtp relay (if outgoing mail has to be send via relay) can be configured
  • The tab BATV allows configuration for Bounce Adress Tag Validation as anti-spam feature and the corresponding exceptions for recipients

Local Domains

  • In the local domains, all domains have to be configured that are to be accepted by the appliance
  • "LDAP" for auto creating Users and recipient check can also be configured
    For auto creating users, a realm Needs to be configured in the user and Groups configuration (Administration -> User and Groups -> Realms)
  • If spam filtering via CISS has to be used, the CISS Theme for each domain can be selected

Trusted Networks

  • In the trusted networks, the internal systems (servers) are configured that are allowed to send mails via the appliance (single hosts with netmask

Transport Rules

  • For each configured local domain, a transport rule for a target server has to be configured
  • Additionally transport rules can be used for domainsif they have to be different to a DNS Query

Network Restrictions

  • In the network restrictions, black and whitelist entries for networks can be configured to adjust the allowed / disallowed servers that communicate with the appliance

These settings can be found in Webinterface => Configuration => Storage

  • A storage needs to be configured either for backup or archiving purpose
  • It is recommended to use iSCSI or Local Disc as Storage, CIFS is not recommended

These settings can be found in Webinterface => Administration => Backup and Restore

  • Configure the internal backups with a backup plan (this backup covers the appliance configuration only, not the mailarchive!)

These settings can be found in Webinterface => Maildepot
Additionally, further documentation is provided in quick guides to cover different archiving scenarios depending on the systems used in your company.

Screencast SMTP Mailflow with MS Exchange:

  • Archiving can be enabled / disabled in the settings
  • For archving, an archiv container is required that is set as default via rightclick -> "set default"
  • Prior to create an archive container, a storage needs to be configured
  • With archive policies exceptions to archiving can be created
  • Categories and archive tasks are used to automatically process archived mail (e.g. add to categories or move)
  • Via audit sessions, revision tasks for authorized users can be created
  • The maildepot connectors can be used to access journaling mailboxes for archiving internal mails

These settings can be found in Webinterface => Spamfinder

  • In the spamfinder settings, storage time and quarantine Report can be adjusted
  • In the filter settings, the used filters (Realtime Blacklist Filter, Virus Scanner, CISS, Fuzzy) can be configured as well as using the default profile instead of the built in profile
  • In the filter profiles, profiles can be added and adjusted
  • Filter profiles are assigned to users via e-mail adresses

These settings can be found in Webinterface => MailSealer

  • Choose if MailSealer or / and MailSealer Light should be used to encrypt / sign Messages
When using MailSealer Light When using MailSealer
adjust the Passphrase in MailSealer Light Settings provide incoming and outgoing Policies to define for which E-Mail Addresses the MailSealer should be used
  Upload private certificates for your mail sending users
  Upload public certificates for your external recipients
  Upload certificates authorities to complete the certificate chains for both your senders as well as your recipients
  Validate the private and public certificates as well as authoritie certificates.
They should all be valid if the certificate chain is correct
  Select, if Licenses should be automatically assigned in the MailSealer settings
  Select, if untrusted certificates should also be collected in the MailSealer settings
  • When using the REDDOXX CA instead of own private certificates, the root certificate needs to be created in the REDDOXX CA settings

These settings can be found in Webinterface => Diagnose Center

  • Activate the hourly selftests that fit your needs via "enable selftest"
  • Disable the selftests that you do not need (e.g. cluster diagnose, when no REDDOXX Cluster is used)
  • Enable at least the firmware diagnose and check if Hotfixes are available (Hotfixes: "Check")
  • If Hotfixes are available, run the firmware diagnose again with Hotfixes: "Install" selected