mailcow-dockerized-docs/docs/i_u_m_install.md

!!! warning
    Make sure you've read ["Prepare Your System"](https://mailcow.github.io/mailcow-dockerized-docs/prerequisite-system) before proceeding!
    **Do not** use CentOS 8 with Centos 7 Docker packages. You may create an open relay.


You need Docker and Docker Compose.

**1\.** Learn how to install [Docker](https://docs.docker.com/install/) and [Docker Compose](https://docs.docker.com/compose/install/).

Quick installation for most operation systems:

- Docker
```
curl -sSL https://get.docker.com/ | CHANNEL=stable sh
# After the installation process is finished, you may need to enable the service and make sure it is started (e.g. CentOS 7)
systemctl enable docker.service
systemctl start docker.service
```

- Docker-Compose
```
curl -L https://github.com/docker/compose/releases/download/$(curl -Ls https://www.servercow.de/docker-compose/latest.php)/docker-compose-$(uname -s)-$(uname -m) > /usr/local/bin/docker-compose
chmod +x /usr/local/bin/docker-compose
```

Please use the latest Docker engine available and do not use the engine that ships with your distros repository.

**2\.** Clone the master branch of the repository, make sure your umask equals 0022. Please clone the repository as root user and also control the stack as root. We will modify attributes - if necessary - while boostrapping the containers automatically and make sure everything is secured. The update.sh script must therefore also be run as root. It might be necessary to change ownership and other attributes of files you will otherwise not have access to. **We drop permissions for every exposed application** and will not run an exposed service as root! Controlling the Docker daemon as non-root user does not give you additional security. The unprivileged user will spawn the containers as root likewise. The behaviour of the stack is identical.

```
$ su
# umask
0022 # <- Verify it is 0022
# cd /opt
# git clone https://github.com/mailcow/mailcow-dockerized
# cd mailcow-dockerized
```

**3\.** Generate a configuration file. Use a FQDN (`host.domain.tld`) as hostname when asked.
```
./generate_config.sh
```

**4\.** Change configuration if you want or need to.
```
nano mailcow.conf
```
If you plan to use a reverse proxy, you can, for example, bind HTTPS to 127.0.0.1 on port 8443 and HTTP to 127.0.0.1 on port 8080.

You may need to stop an existing pre-installed MTA which blocks port 25/tcp. See [this chapter](https://mailcow.github.io/mailcow-dockerized-docs/firststeps-local_mta/) to learn how to reconfigure Postfix to run besides mailcow after a successful installation.

Some updates modify mailcow.conf and add new parameters. It is hard to keep track of them in the documentation. Please check their description and, if unsure, ask at the known channels for advise.

**4\.1\.** Users with a MTU not equal to 1500 (e.g. OpenStack):

**Whenever you run into trouble and strange phenomena, please check your MTU.**

Edit `docker-compose.yml` and change the network settings according to your MTU.
Add the new driver_opts parameter like this:
```
networks:
  mailcow-network:
    ...
    driver_opts:
      com.docker.network.driver.mtu: 1450
    ...
```

**4\.2\.** Users without an IPv6 enabled network on their host system:

**Enable IPv6. Finally.**

If you do not have an IPv6 enabled network on your host and you don't care for a better internet (thehe), it is recommended to [disable IPv6](https://mailcow.github.io/mailcow-dockerized-docs/firststeps-disable_ipv6/) for the mailcow network to prevent unforeseen issues.


**5\.** Pull the images and run the composer file. The parameter `-d` will start mailcow: dockerized detached:
```
docker-compose pull
docker-compose up -d
```

Done!

You can now access **https://${MAILCOW_HOSTNAME}** with the default credentials `admin` + password `moohoo`.

   !!! info
   If you are not using mailcow behind a reverse proxy, you should [redirect all HTTP requests to HTTPS](https://mailcow.github.io/mailcow-dockerized-docs/u_e-80_to_443/).

The database will be initialized right after a connection to MySQL can be established.

Your data will persist in multiple Docker volumes, that are not deleted when you recreate or delete containers. Run `docker volume ls` to see a list of all volumes. You can safely run `docker-compose down` without removing persistent data.
Add docs for migration 2019-03-06 18:53:14 +01:00			`!!! warning`
			`Make sure you've read ["Prepare Your System"](https://mailcow.github.io/mailcow-dockerized-docs/prerequisite-system) before proceeding!`
Update i_u_m_install.md 2020-05-15 22:20:53 +02:00			`Do not use CentOS 8 with Centos 7 Docker packages. You may create an open relay.`
Add docs for migration 2019-03-06 18:53:14 +01:00

			`You need Docker and Docker Compose.`

Update i_u_m_install.md The URL of Docker Install has been changed from https://docs.docker.com/engine/installation/linux/ to https://docs.docker.com/install/ I think this is their way of putting all possible means to install Docker in one URL. Although the old link redirects pretty neatly, I feel it's best the URL is updated to reflect the new one to avoid a broken link later on. 2019-06-09 16:50:20 +02:00			`1\. Learn how to install [Docker](https://docs.docker.com/install/) and [Docker Compose](https://docs.docker.com/compose/install/).`
Add docs for migration 2019-03-06 18:53:14 +01:00
			`Quick installation for most operation systems:`

			`- Docker`
			```
			`curl -sSL https://get.docker.com/ \| CHANNEL=stable sh`
			`# After the installation process is finished, you may need to enable the service and make sure it is started (e.g. CentOS 7)`
			`systemctl enable docker.service`
			`systemctl start docker.service`
			```

			`- Docker-Compose`
			```
			`curl -L https://github.com/docker/compose/releases/download/$(curl -Ls https://www.servercow.de/docker-compose/latest.php)/docker-compose-$(uname -s)-$(uname -m) > /usr/local/bin/docker-compose`
			`chmod +x /usr/local/bin/docker-compose`
			```

			`Please use the latest Docker engine available and do not use the engine that ships with your distros repository.`

Update i_u_m_install.md 2020-05-19 15:10:13 +02:00			2\. Clone the master branch of the repository, make sure your umask equals 0022. Please clone the repository as root user and also control the stack as root. We will modify attributes - if necessary - while boostrapping the containers automatically and make sure everything is secured. The update.sh script must therefore also be run as root. It might be necessary to change ownership and other attributes of files you will otherwise not have access to. We drop permissions for every exposed application and will not run an exposed service as root! Controlling the Docker daemon as non-root user does not give you additional security. The unprivileged user will spawn the containers as root likewise. The behaviour of the stack is identical.

Add docs for migration 2019-03-06 18:53:14 +01:00			```
Update i_u_m_install.md 2020-05-19 15:10:13 +02:00			`$ su`
			`# umask`
			`0022 # <- Verify it is 0022`
			`# cd /opt`
			`# git clone https://github.com/mailcow/mailcow-dockerized`
			`# cd mailcow-dockerized`
Add docs for migration 2019-03-06 18:53:14 +01:00			```

			3\. Generate a configuration file. Use a FQDN (`host.domain.tld`) as hostname when asked.
			```
			`./generate_config.sh`
			```

			`4\. Change configuration if you want or need to.`
			```
			`nano mailcow.conf`
			```
			`If you plan to use a reverse proxy, you can, for example, bind HTTPS to 127.0.0.1 on port 8443 and HTTP to 127.0.0.1 on port 8080.`

			`You may need to stop an existing pre-installed MTA which blocks port 25/tcp. See [this chapter](https://mailcow.github.io/mailcow-dockerized-docs/firststeps-local_mta/) to learn how to reconfigure Postfix to run besides mailcow after a successful installation.`

Update i_u_m_install.md 2019-09-19 07:06:36 +02:00			`Some updates modify mailcow.conf and add new parameters. It is hard to keep track of them in the documentation. Please check their description and, if unsure, ask at the known channels for advise.`

Update i_u_m_install.md 2019-12-02 12:30:24 +01:00			`4\.1\. Users with a MTU not equal to 1500 (e.g. OpenStack):`
Update i_u_m_install.md 2019-09-17 06:53:22 +02:00
			`Whenever you run into trouble and strange phenomena, please check your MTU.`
Add docs for migration 2019-03-06 18:53:14 +01:00
			Edit `docker-compose.yml` and change the network settings according to your MTU.
			`Add the new driver_opts parameter like this:`
			```
			`networks:`
			`mailcow-network:`
			`...`
			`driver_opts:`
			`com.docker.network.driver.mtu: 1450`
			`...`
			```

Update i_u_m_install.md 2019-12-02 12:30:24 +01:00			`4\.2\. Users without an IPv6 enabled network on their host system:`

			`Enable IPv6. Finally.`

			`If you do not have an IPv6 enabled network on your host and you don't care for a better internet (thehe), it is recommended to [disable IPv6](https://mailcow.github.io/mailcow-dockerized-docs/firststeps-disable_ipv6/) for the mailcow network to prevent unforeseen issues.`


Add docs for migration 2019-03-06 18:53:14 +01:00			5\. Pull the images and run the composer file. The parameter `-d` will start mailcow: dockerized detached:
			```
			`docker-compose pull`
			`docker-compose up -d`
			```

			`Done!`

			You can now access https://${MAILCOW_HOSTNAME} with the default credentials `admin` + password `moohoo`.

Update i_u_m_install.md 2020-03-19 12:22:50 +01:00			`!!! info`
			`If you are not using mailcow behind a reverse proxy, you should [redirect all HTTP requests to HTTPS](https://mailcow.github.io/mailcow-dockerized-docs/u_e-80_to_443/).`

Add docs for migration 2019-03-06 18:53:14 +01:00			`The database will be initialized right after a connection to MySQL can be established.`
Update i_u_m_install.md 2019-08-16 13:33:58 +02:00
			Your data will persist in multiple Docker volumes, that are not deleted when you recreate or delete containers. Run `docker volume ls` to see a list of all volumes. You can safely run `docker-compose down` without removing persistent data.