IRedMail 邮箱配置

下载
https://www.iredmail.com/download.html
配置
https://docs.iredmail.org/install.iredmail.on.rhel.html

配置注意事项：
1、主机名

hostnamectl set-hostname mail.IRedMail.com.cn 

2、安装数据库，配置权限，密码

yum -y install mysql
yum -y install mariadb-server
 grant all on *.* to root@'localhost' identified by '1234567890' with grant option ; 

3、一些配置
/data/vmail
iredmail.com.cn
1234567890

4、解决退信问题（iredmail 能发不能收 问题）
log错误信息
postfix/postscreen[11355]: NOQUEUE: reject: RCPT from [58.100.201.195]:55227: 550 5.7.1 Service unavailable; client [*.*.*.*] blocked using zen.spamhaus.org;
问题：被DNSBL拒绝了，中国很多邮件服务都被DNSBL列入黑名单，所以只要禁用DNSBL功能即可
步骤：vi /etc/postfix/master.cf   修改成如下图，然后重启systemctl restart postfix

现在可以收信，但是非常非常非常慢，还需关键一步

cd /opt/iredapd/tools/
python spf_to_greylist_whitelists.py outlook.com microsoft.com 126.com 163.com qq.com foxmail.com

具体解释url：https://blog.csdn.net/weixin_33743880/article/details/91722360

It queries SPF and MX records of specified mail domain names, then store all converted IP addresses/networks defined in SPF/MX records in SQL tableiredapd.greylisting_whitelists.

To whitelist IP addresses/networks of some mail domain, for example,outlook.com, microsoft.com, please run command like below:

# cd /opt/iredapd/tools/
# python spf_to_greylist_whitelists.py outlook.com microsoft.com

If you want to whitelist more mail domains, just run the command with the domain names like above sample.

Since iRedAPD-1.8.0, we have SQL table iredapd.greylisting_whitelist_domainsto store these mail domain names. if you run spf_to_greylist_whitelists.pywithout any argument, it will fetch all mail domains stored in sql table greylisting_whitelist_domains instead of fetching from command line arguments.

# python spf_to_greylist_whitelists.py

You should setup a cron job to run this script, so that it can keep the IP addresses/networks up to date. iRedMail sets up the cron job to run every 10 minutes, like below:

*/10   *   *   *   *   /usr/bin/python /opt/iredapd/tools/spf_to_greylist_whitelists.py &>/dev/null

5、解决 POP3/IMAP ,ssl/tls登录问题
默认客户端需要配置ssl/tls安全连接
否则错误提示：Plaintext authentication disallowed on non-secure (SSL/TLS) connections
解决办法： 修改/usr/local/etc/dovecot/dovecot.conf文件下面行，然后重启Dovecot服务

    disable_plaintext_auth=no
    ssl=yes

6、解决mailx等连接错误 smtp-server: 503 5.5.1 Error: authentication not enabled 问题
解决办法：修改/etc/postfix/main.cf 为如下行，重启服务systemctl restart postfix

    smtpd_sasl_auth_enable = yes
    smtpd_sasl_security_options = noanonymous
    # force all clients to use secure connection through port 25
    #smtpd_tls_auth_only=yes

url:https://docs.iredmail.org/allow.insecure.pop3.imap.smtp.connections.html

7、outlook 客户端配置
https://docs.iredmail.org/activesync.outlook.html

https://docs.iredmail.org/index.html