Cbpolicyd greylisting in Zimbra 8.0.4 FOSS

15435mmgomess · Post by **15435mmgomess** » Thu Jun 20, 2013 7:58 am

Hi friends.
I configured the cbpolicyd and activated the greylist in Zimbra 8.0.4 FOSS, but is not working. Can anyone help me? Sorry my english.
#zmlocalconfig | grep -i cbpolicy
cbpolicyd_bind_port = 10031

cbpolicyd_bypass_mode = tempfail

cbpolicyd_bypass_timeout = 30

cbpolicyd_cache_file = ${zimbra_home}/data/cache

cbpolicyd_db_file = ${zimbra_home}/data/cbpolicyd/db/cbpolicyd.sqlitedb

cbpolicyd_log_detail = modules

cbpolicyd_log_file = ${zimbra_log_directory}/cbpolicyd.log

cbpolicyd_log_level = 3

cbpolicyd_log_mail = main

cbpolicyd_module_accesscontrol = 0

cbpolicyd_module_accounting = 0

cbpolicyd_module_amavis = 0

cbpolicyd_module_checkhelo = 0

cbpolicyd_module_checkspf = 1

cbpolicyd_module_greylisting = 1

cbpolicyd_module_greylisting_blacklist_msg = Greylisting in effect, sending server blacklisted

cbpolicyd_module_greylisting_defer_msg = Greylisting in effect, please come back later

cbpolicyd_module_greylisting_training = 0

cbpolicyd_module_quotas = 0

cbpolicyd_pid_file = ${zimbra_log_directory}/cbpolicyd.pid

cbpolicyd_timeout_busy = 120

cbpolicyd_timeout_idle = 1020
/opt/zimbra/log/cbpolicyd.log
[2013/06/20-09:51:19 - 24795] [CBPOLICYD] INFO: Got request #13 (pipelined)

[2013/06/20-09:51:24 - 16632] [CBPOLICYD] INFO: Got request #36 (pipelined)

[2013/06/20-09:51:29 - 10499] [CBPOLICYD] INFO: Got request #8 (pipelined)

[2013/06/20-09:51:32 - 16632] [CBPOLICYD] INFO: Got request #37 (pipelined)

[2013/06/20-09:51:32 - 16632] [CBPOLICYD] INFO: Got request #38 (pipelined)

[2013/06/20-09:51:33 - 16632] [CBPOLICYD] INFO: Got request #39 (pipelined)

[2013/06/20-09:51:37 - 21655] [CBPOLICYD] INFO: Got request #45 (pipelined)

[2013/06/20-09:51:39 - 12394] [CBPOLICYD] INFO: Got request #5 (pipelined)

[2013/06/20-09:51:58 - 10499] [CBPOLICYD] INFO: Got request #9 (pipelined)

[2013/06/20-09:52:16 - 22933] [CBPOLICYD] WARNING: Client closed connection => Peer: 127.0.0.1:37394, Local: 127.0.0.1:10031

[2013/06/20-09:52:16 - 24717] [CORE] INFO: Killing "1" children

[2013/06/20-09:52:16 - 16632] [CBPOLICYD] INFO: Got request #40 (pipelined)

[2013/06/20-09:52:16 - 16632] [CBPOLICYD] INFO: Got request #41 (pipelined)

[2013/06/20-09:52:17 - 24820] [CBPOLICYD] WARNING: Client closed connection => Peer: 127.0.0.1:37396, Local: 127.0.0.1:10031

[2013/06/20-09:52:24 - 16632] [CBPOLICYD] INFO: Got request #42 (pipelined)

[2013/06/20-09:52:27 - 24717] [CORE] INFO: Killing "1" children

mrvanes · Post by **mrvanes** » Thu Jun 20, 2013 3:57 pm

[quote user="15435mmgomess"]

I configured the cbpolicyd and activated the greylist in Zimbra 8.0.4 FOSS, but is not working. Can anyone help me? Sorry my english.

[/QUOTE]
It turns out there's far more to greylisting in cbpolicyd in zimbra than just "enabling" greylisting in the configuration file.

In short, you need to attach greylisting to a policy in the cbpolicy database, best done with the cdpolicyd webinterface, which is not available in the default Zimbra install.
These URL's helped me to get it working:

-enabling-cbpolicyd-zimbra-7-1-1-a.html (only the Activating the WEB UI for CBPolicyd part!!)
And then

http://www.zimbra.com/forums/administra ... post263913

For hints about a "sane" Greylisting configuration.
PS: The forum has difficulties creating a url with the square brackets around [howto] in the above URL (which is insane btw), just copy the complete url as-is.

15435mmgomess · Post by **15435mmgomess** » Mon Jun 24, 2013 1:58 pm

Thank you so much mrvanes. It worked very well.

quanah · Post by **quanah** » Mon Jun 24, 2013 2:02 pm

Or you can follow the instructions on the wiki on how to do it from the command line (although that needs some expanding when I have time).