Initial Setup

The following document is used to describe the first configuration steps with the REDDOXX Appliance.
Further information is linked in the corresponding sections.
The configuration steps are also available as Screencasts:

These settings can be found in Webinterface => Configuration => Settings

Enter the e-mail address of the REDDOXX Appliance.
The e-mail address of the REDDOXX Appliance must be an e-mail address of a valid e-mail domain and also received by the REDDOXX Appliance.
This e-mail address may not be used for other purposes
Enter the e-mail address of the administrator.
To this email address the administrator receives messages from the appliance, e.g. when the backup was not finished correctly.

These settings can be found in Webinterface => Configuration => Network

Please check the network configuration
In the network interface tab, a second ip can be assigned if for example a storage Network has to be connected to the appliance
Static routes if needed, are configured in the static routes tab
Configure the company wide used time servers in the time server tab
If necessary, configure Proxy settings in the proxy tab
The tab SNMP is used to configure the appliance for access via monitoring software
A SMB/CIFS share via the appliance can be enabled in the SMB/CIFS tab (in order to integrate the archiv in existing backup plans)

These settings can be found in Webinterface => Configuration => E-Mail Transport
If, instead of STMP Mailflow, POP3 fetching is required, see the corresponding POP3 Quick Guide.

Screencast SMTP Mailflow with MS Exchange:

SMTP Settings

Configure the Appliance FQDN as well as authenticating / tls parameters if needed
In the smtp client settings, the connection parameters and smtp relay (if outgoing mail has to be send via relay) can be configured
The tab BATV allows configuration for Bounce Adress Tag Validation as anti-spam feature and the corresponding exceptions for recipients

Local Domains

In the local domains, all domains have to be configured that are to be accepted by the appliance
"LDAP" for auto creating Users and recipient check can also be configured
For auto creating users, a realm Needs to be configured in the user and Groups configuration (Administration -> User and Groups -> Realms)
If spam filtering via CISS has to be used, the CISS Theme for each domain can be selected

Trusted Networks

In the trusted networks, the internal systems (servers) are configured that are allowed to send mails via the appliance (single hosts with netmask 255.255.255.255)

Transport Rules

For each configured local domain, a transport rule for a target server has to be configured
Additionally transport rules can be used for domainsif they have to be different to a DNS Query

Network Restrictions

In the network restrictions, black and whitelist entries for networks can be configured to adjust the allowed / disallowed servers that communicate with the appliance

Storage
These settings can be found in Webinterface => Configuration => Storage

A storage needs to be configured either for backup or archiving purpose
It is recommended to use iSCSI or Local Disc as Storage, CIFS is not recommended

Backup
These settings can be found in Webinterface => Administration => Backup and Restore

Configure the internal backups with a backup plan (this backup covers the appliance configuration only, not the mailarchive!)

These settings can be found in Webinterface => Maildepot
Additionally, further documentation is provided in quick guides to cover different archiving scenarios depending on the systems used in your company.

Screencast SMTP Mailflow with MS Exchange:

Archiving can be enabled / disabled in the settings
For archving, an archiv container is required that is set as default via rightclick -> "set default"
Prior to create an archive container, a storage needs to be configured
With archive policies exceptions to archiving can be created
Categories and archive tasks are used to automatically process archived mail (e.g. add to categories or move)
Via audit sessions, revision tasks for authorized users can be created
The maildepot connectors can be used to access journaling mailboxes for archiving internal mails

These settings can be found in Webinterface => Spamfinder

In the spamfinder settings, storage time and quarantine Report can be adjusted
In the filter settings, the used filters (Realtime Blacklist Filter, Virus Scanner, CISS, Fuzzy) can be configured as well as using the default profile instead of the built in profile
In the filter profiles, profiles can be added and adjusted
Filter profiles are assigned to users via e-mail adresses

These settings can be found in Webinterface => MailSealer

Choose if MailSealer or / and MailSealer Light should be used to encrypt / sign Messages

When using MailSealer Light	When using MailSealer
adjust the Passphrase in MailSealer Light Settings	provide incoming and outgoing Policies to define for which E-Mail Addresses the MailSealer should be used
	Upload private certificates for your mail sending users
	Upload public certificates for your external recipients
	Upload certificates authorities to complete the certificate chains for both your senders as well as your recipients
	Validate the private and public certificates as well as authoritie certificates. They should all be valid if the certificate chain is correct
	Select, if Licenses should be automatically assigned in the MailSealer settings
	Select, if untrusted certificates should also be collected in the MailSealer settings

When using the REDDOXX CA instead of own private certificates, the root certificate needs to be created in the REDDOXX CA settings

These settings can be found in Webinterface => Diagnose Center

Activate the hourly selftests that fit your needs via "enable selftest"
Disable the selftests that you do not need (e.g. cluster diagnose, when no REDDOXX Cluster is used)
Enable at least the firmware diagnose and check if Hotfixes are available (Hotfixes: "Check")
If Hotfixes are available, run the firmware diagnose again with Hotfixes: "Install" selected