2021-04-01 12:20:45 +02:00
<!doctype html>
< html lang = "en" class = "no-js" >
< head >
< meta charset = "utf-8" >
< meta name = "viewport" content = "width=device-width,initial-scale=1" >
< link rel = "canonical" href = "https://mailcow.github.io/mailcow-dockerized-docs/prerequisite-system/" >
2021-08-10 19:15:37 +02:00
< link rel = "icon" href = "../images/favicon.png" >
< meta name = "generator" content = "mkdocs-1.2.2, mkdocs-material-7.2.3" >
2021-04-01 12:20:45 +02:00
< title > Prepare your system - mailcow: dockerized documentation< / title >
2021-08-10 19:15:37 +02:00
< link rel = "stylesheet" href = "../assets/stylesheets/main.f7f47774.min.css" >
2021-04-01 12:20:45 +02:00
2021-08-10 19:15:37 +02:00
< link rel = "stylesheet" href = "../assets/stylesheets/palette.3f5d1f46.min.css" >
2021-04-01 12:20:45 +02:00
< link rel = "preconnect" href = "https://fonts.gstatic.com" crossorigin >
< link rel = "stylesheet" href = "https://fonts.googleapis.com/css?family=Roboto:300,400,400i,700%7CRoboto+Mono&display=fallback" >
< style > : root { --md-text-font-family : "Roboto" ; --md-code-font-family : "Roboto Mono" } < / style >
< link rel = "stylesheet" href = "../extra.css" >
2021-06-12 21:21:14 +02:00
2021-04-01 12:20:45 +02:00
< / head >
< body dir = "ltr" data-md-color-scheme = "" data-md-color-primary = "none" data-md-color-accent = "none" >
< script > function _ _prefix ( e ) { return new URL ( ".." , location ) . pathname + "." + e } function _ _get ( e , t = localStorage ) { return JSON . parse ( t . getItem ( _ _prefix ( e ) ) ) } < / script >
< input class = "md-toggle" data-md-toggle = "drawer" type = "checkbox" id = "__drawer" autocomplete = "off" >
< input class = "md-toggle" data-md-toggle = "search" type = "checkbox" id = "__search" autocomplete = "off" >
< label class = "md-overlay" for = "__drawer" > < / label >
< div data-md-component = "skip" >
< a href = "#minimum-system-resources" class = "md-skip" >
Skip to content
< / a >
< / div >
< div data-md-component = "announce" >
< / div >
< header class = "md-header" data-md-component = "header" >
< nav class = "md-header__inner md-grid" aria-label = "Header" >
< a href = ".." title = "mailcow: dockerized documentation" class = "md-header__button md-logo" aria-label = "mailcow: dockerized documentation" data-md-component = "logo" >
2021-08-10 19:15:37 +02:00
< img src = "../images/logo.svg" alt = "logo" >
2021-04-01 12:20:45 +02:00
< / a >
< label class = "md-header__button md-icon" for = "__drawer" >
< svg xmlns = "http://www.w3.org/2000/svg" viewBox = "0 0 24 24" > < path d = "M3 6h18v2H3V6m0 5h18v2H3v-2m0 5h18v2H3v-2z" / > < / svg >
< / label >
< div class = "md-header__title" data-md-component = "header-title" >
< div class = "md-header__ellipsis" >
< div class = "md-header__topic" >
< span class = "md-ellipsis" >
mailcow: dockerized documentation
< / span >
< / div >
< div class = "md-header__topic" data-md-component = "header-topic" >
< span class = "md-ellipsis" >
Prepare your system
< / span >
< / div >
< / div >
< / div >
< label class = "md-header__button md-icon" for = "__search" >
< svg xmlns = "http://www.w3.org/2000/svg" viewBox = "0 0 24 24" > < path d = "M9.5 3A6.5 6.5 0 0 1 16 9.5c0 1.61-.59 3.09-1.56 4.23l.27.27h.79l5 5-1.5 1.5-5-5v-.79l-.27-.27A6.516 6.516 0 0 1 9.5 16 6.5 6.5 0 0 1 3 9.5 6.5 6.5 0 0 1 9.5 3m0 2C7 5 5 7 5 9.5S7 14 9.5 14 14 12 14 9.5 12 5 9.5 5z" / > < / svg >
< / label >
< div class = "md-search" data-md-component = "search" role = "dialog" >
< label class = "md-search__overlay" for = "__search" > < / label >
< div class = "md-search__inner" role = "search" >
< form class = "md-search__form" name = "search" >
2021-07-24 22:41:22 +02:00
< input type = "text" class = "md-search__input" name = "query" aria-label = "Search" placeholder = "Search" autocapitalize = "off" autocorrect = "off" autocomplete = "off" spellcheck = "false" data-md-component = "search-query" required >
2021-04-01 12:20:45 +02:00
< label class = "md-search__icon md-icon" for = "__search" >
< svg xmlns = "http://www.w3.org/2000/svg" viewBox = "0 0 24 24" > < path d = "M9.5 3A6.5 6.5 0 0 1 16 9.5c0 1.61-.59 3.09-1.56 4.23l.27.27h.79l5 5-1.5 1.5-5-5v-.79l-.27-.27A6.516 6.516 0 0 1 9.5 16 6.5 6.5 0 0 1 3 9.5 6.5 6.5 0 0 1 9.5 3m0 2C7 5 5 7 5 9.5S7 14 9.5 14 14 12 14 9.5 12 5 9.5 5z" / > < / svg >
< svg xmlns = "http://www.w3.org/2000/svg" viewBox = "0 0 24 24" > < path d = "M20 11v2H8l5.5 5.5-1.42 1.42L4.16 12l7.92-7.92L13.5 5.5 8 11h12z" / > < / svg >
< / label >
2021-07-24 22:41:22 +02:00
< nav class = "md-search__options" aria-label = "Search" >
< button type = "reset" class = "md-search__icon md-icon" aria-label = "Clear" tabindex = "-1" >
< svg xmlns = "http://www.w3.org/2000/svg" viewBox = "0 0 24 24" > < path d = "M19 6.41 17.59 5 12 10.59 6.41 5 5 6.41 10.59 12 5 17.59 6.41 19 12 13.41 17.59 19 19 17.59 13.41 12 19 6.41z" / > < / svg >
< / button >
< / nav >
2021-04-01 12:20:45 +02:00
< / form >
< div class = "md-search__output" >
< div class = "md-search__scrollwrap" data-md-scrollfix >
< div class = "md-search-result" data-md-component = "search-result" >
< div class = "md-search-result__meta" >
Initializing search
< / div >
< ol class = "md-search-result__list" > < / ol >
< / div >
< / div >
< / div >
< / div >
< / div >
< div class = "md-header__source" >
< a href = "https://github.com/mailcow/mailcow-dockerized/" title = "Go to repository" class = "md-source" data-md-component = "source" >
< div class = "md-source__icon md-icon" >
< svg xmlns = "http://www.w3.org/2000/svg" viewBox = "0 0 448 512" > < path d = "M439.55 236.05 244 40.45a28.87 28.87 0 0 0-40.81 0l-40.66 40.63 51.52 51.52c27.06-9.14 52.68 16.77 43.39 43.68l49.66 49.66c34.23-11.8 61.18 31 35.47 56.69-26.49 26.49-70.21-2.87-56-37.34L240.22 199v121.85c25.3 12.54 22.26 41.85 9.08 55a34.34 34.34 0 0 1-48.55 0c-17.57-17.6-11.07-46.91 11.25-56v-123c-20.8-8.51-24.6-30.74-18.64-45L142.57 101 8.45 235.14a28.86 28.86 0 0 0 0 40.81l195.61 195.6a28.86 28.86 0 0 0 40.8 0l194.69-194.69a28.86 28.86 0 0 0 0-40.81z" / > < / svg >
< / div >
< div class = "md-source__repository" >
mailcow/mailcow-dockerized
< / div >
< / a >
< / div >
< / nav >
< / header >
< div class = "md-container" data-md-component = "container" >
< main class = "md-main" data-md-component = "main" >
< div class = "md-main__inner md-grid" >
< div class = "md-sidebar md-sidebar--primary" data-md-component = "sidebar" data-md-type = "navigation" >
< div class = "md-sidebar__scrollwrap" >
< div class = "md-sidebar__inner" >
< nav class = "md-nav md-nav--primary" aria-label = "Navigation" data-md-level = "0" >
< label class = "md-nav__title" for = "__drawer" >
< a href = ".." title = "mailcow: dockerized documentation" class = "md-nav__button md-logo" aria-label = "mailcow: dockerized documentation" data-md-component = "logo" >
2021-08-10 19:15:37 +02:00
< img src = "../images/logo.svg" alt = "logo" >
2021-04-01 12:20:45 +02:00
< / a >
mailcow: dockerized documentation
< / label >
< div class = "md-nav__source" >
< a href = "https://github.com/mailcow/mailcow-dockerized/" title = "Go to repository" class = "md-source" data-md-component = "source" >
< div class = "md-source__icon md-icon" >
< svg xmlns = "http://www.w3.org/2000/svg" viewBox = "0 0 448 512" > < path d = "M439.55 236.05 244 40.45a28.87 28.87 0 0 0-40.81 0l-40.66 40.63 51.52 51.52c27.06-9.14 52.68 16.77 43.39 43.68l49.66 49.66c34.23-11.8 61.18 31 35.47 56.69-26.49 26.49-70.21-2.87-56-37.34L240.22 199v121.85c25.3 12.54 22.26 41.85 9.08 55a34.34 34.34 0 0 1-48.55 0c-17.57-17.6-11.07-46.91 11.25-56v-123c-20.8-8.51-24.6-30.74-18.64-45L142.57 101 8.45 235.14a28.86 28.86 0 0 0 0 40.81l195.61 195.6a28.86 28.86 0 0 0 40.8 0l194.69-194.69a28.86 28.86 0 0 0 0-40.81z" / > < / svg >
< / div >
< div class = "md-source__repository" >
mailcow/mailcow-dockerized
< / div >
< / a >
< / div >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = ".." class = "md-nav__link" >
Information & Support
< / a >
< / li >
< li class = "md-nav__item md-nav__item--active md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_2" type = "checkbox" id = "__nav_2" checked >
< label class = "md-nav__link" for = "__nav_2" >
Prerequisites
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Prerequisites" data-md-level = "1" >
< label class = "md-nav__title" for = "__nav_2" >
< span class = "md-nav__icon md-icon" > < / span >
Prerequisites
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item md-nav__item--active" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "toc" type = "checkbox" id = "__toc" >
2021-04-20 22:16:43 +02:00
2021-04-01 12:20:45 +02:00
< label class = "md-nav__link md-nav__link--active" for = "__toc" >
Prepare your system
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< a href = "./" class = "md-nav__link md-nav__link--active" >
Prepare your system
< / a >
< nav class = "md-nav md-nav--secondary" aria-label = "Table of contents" >
2021-04-20 22:16:43 +02:00
2021-04-01 12:20:45 +02:00
< label class = "md-nav__title" for = "__toc" >
< span class = "md-nav__icon md-icon" > < / span >
Table of contents
< / label >
< ul class = "md-nav__list" data-md-component = "toc" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "#minimum-system-resources" class = "md-nav__link" >
Minimum System Resources
< / a >
< nav class = "md-nav" aria-label = "Minimum System Resources" >
< ul class = "md-nav__list" >
< li class = "md-nav__item" >
< a href = "#usage-examples" class = "md-nav__link" >
Usage examples
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item" >
< a href = "#firewall-ports" class = "md-nav__link" >
Firewall & Ports
< / a >
< nav class = "md-nav" aria-label = "Firewall & Ports" >
< ul class = "md-nav__list" >
< li class = "md-nav__item" >
< a href = "#default-ports" class = "md-nav__link" >
Default Ports
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "#important-for-hetzner-firewalls" class = "md-nav__link" >
Important for Hetzner firewalls
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item" >
< a href = "#date-and-time" class = "md-nav__link" >
Date and Time
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "#hetzner-cloud-and-probably-others" class = "md-nav__link" >
Hetzner Cloud (and probably others)
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "#mtu" class = "md-nav__link" >
MTU
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item" >
< a href = "../prerequisite-dns/" class = "md-nav__link" >
DNS setup
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_3" type = "checkbox" id = "__nav_3" >
< label class = "md-nav__link" for = "__nav_3" >
Installation, Update & Migration
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Installation, Update & Migration" data-md-level = "1" >
< label class = "md-nav__title" for = "__nav_3" >
< span class = "md-nav__icon md-icon" > < / span >
Installation, Update & Migration
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "../i_u_m_install/" class = "md-nav__link" >
Installation
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../i_u_m_update/" class = "md-nav__link" >
Update
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../i_u_m_migration/" class = "md-nav__link" >
Migration
< / a >
< / li >
2021-04-29 22:19:51 +02:00
< li class = "md-nav__item" >
< a href = "../i_u_m_deinstall/" class = "md-nav__link" >
Deinstallation
< / a >
< / li >
2021-04-01 12:20:45 +02:00
< / ul >
< / nav >
< / li >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_4" type = "checkbox" id = "__nav_4" >
< label class = "md-nav__link" for = "__nav_4" >
Post Installation Tasks
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Post Installation Tasks" data-md-level = "1" >
< label class = "md-nav__title" for = "__nav_4" >
< span class = "md-nav__icon md-icon" > < / span >
Post Installation Tasks
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "../firststeps-ssl/" class = "md-nav__link" >
Advanced SSL
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../firststeps-disable_ipv6/" class = "md-nav__link" >
Disable IPv6
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../firststeps-ip_bindings/" class = "md-nav__link" >
IP bindings
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../firststeps-local_mta/" class = "md-nav__link" >
Local MTA on Docker host
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../firststeps-logging/" class = "md-nav__link" >
Logging
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../firststeps-relayhost/" class = "md-nav__link" >
Relayhosts
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../firststeps-rp/" class = "md-nav__link" >
Reverse Proxy
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../firststeps-rspamd_ui/" class = "md-nav__link" >
Rspamd UI
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../firststeps-snat/" class = "md-nav__link" >
SNAT
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../firststeps-sync_jobs_migration/" class = "md-nav__link" >
Sync job migration
< / a >
< / li >
< li class = "md-nav__item" >
2021-04-20 22:16:43 +02:00
< a href = "../firststeps-trust_networks/" class = "md-nav__link" >
Add trusted networks
2021-04-01 12:20:45 +02:00
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_5" type = "checkbox" id = "__nav_5" >
< label class = "md-nav__link" for = "__nav_5" >
Models
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Models" data-md-level = "1" >
< label class = "md-nav__title" for = "__nav_5" >
< span class = "md-nav__icon md-icon" > < / span >
Models
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "../model-acl/" class = "md-nav__link" >
ACL
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../model-passwd/" class = "md-nav__link" >
Password hashing
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../model-sender_rcv/" class = "md-nav__link" >
Sender and receiver model
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_6" type = "checkbox" id = "__nav_6" >
< label class = "md-nav__link" for = "__nav_6" >
General Troubleshooting
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "General Troubleshooting" data-md-level = "1" >
< label class = "md-nav__title" for = "__nav_6" >
< span class = "md-nav__icon md-icon" > < / span >
General Troubleshooting
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "../debug/" class = "md-nav__link" >
Introduction
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../debug-logs/" class = "md-nav__link" >
Logs
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../debug-attach_service/" class = "md-nav__link" >
Attach a Container
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../debug-reset_pw/" class = "md-nav__link" >
Reset Passwords (incl. SQL)
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../debug-mysql_upgrade/" class = "md-nav__link" >
Manual MySQL upgrade
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../debug-rm_volumes/" class = "md-nav__link" >
Remove Persistent Data
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../debug-common_problems/" class = "md-nav__link" >
Common Problems
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../debug-admin_login_sogo/" class = "md-nav__link" >
Admin login to SOGo
< / a >
< / li >
2021-04-29 22:40:22 +02:00
< li class = "md-nav__item" >
< a href = "../debug-reset-tls/" class = "md-nav__link" >
Reset TLS certificates
< / a >
< / li >
2021-04-01 12:20:45 +02:00
< / ul >
< / nav >
< / li >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_7" type = "checkbox" id = "__nav_7" >
< label class = "md-nav__link" for = "__nav_7" >
Backup & Restore
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Backup & Restore" data-md-level = "1" >
< label class = "md-nav__title" for = "__nav_7" >
< span class = "md-nav__icon md-icon" > < / span >
Backup & Restore
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_7_1" type = "checkbox" id = "__nav_7_1" >
< label class = "md-nav__link" for = "__nav_7_1" >
Helper script
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Helper script" data-md-level = "2" >
< label class = "md-nav__title" for = "__nav_7_1" >
< span class = "md-nav__icon md-icon" > < / span >
Helper script
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "../b_n_r_backup/" class = "md-nav__link" >
Backup
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../b_n_r_restore/" class = "md-nav__link" >
Restore
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_7_2" type = "checkbox" id = "__nav_7_2" >
< label class = "md-nav__link" for = "__nav_7_2" >
Manually
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Manually" data-md-level = "2" >
< label class = "md-nav__title" for = "__nav_7_2" >
< span class = "md-nav__icon md-icon" > < / span >
Manually
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "../u_e-backup_restore-maildir/" class = "md-nav__link" >
Maildir
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-backup_restore-mysql/" class = "md-nav__link" >
MySQL
< / a >
< / li >
< / ul >
< / nav >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_8" type = "checkbox" id = "__nav_8" >
< label class = "md-nav__link" for = "__nav_8" >
Manual/Guides/Examples
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Manual/Guides/Examples" data-md-level = "1" >
< label class = "md-nav__title" for = "__nav_8" >
< span class = "md-nav__icon md-icon" > < / span >
Manual/Guides/Examples
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_8_1" type = "checkbox" id = "__nav_8_1" >
< label class = "md-nav__link" for = "__nav_8_1" >
mailcow UI
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "mailcow UI" data-md-level = "2" >
< label class = "md-nav__title" for = "__nav_8_1" >
< span class = "md-nav__icon md-icon" > < / span >
mailcow UI
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "../u_e-mailcow_ui-config/" class = "md-nav__link" >
Configuration
< / a >
< / li >
2021-05-28 11:12:28 +02:00
< li class = "md-nav__item" >
< a href = "../u_e-mailcow_ui-css/" class = "md-nav__link" >
CSS overrides
< / a >
< / li >
2021-04-01 12:20:45 +02:00
< li class = "md-nav__item" >
< a href = "../u_e-mailcow_ui-bl_wl/" class = "md-nav__link" >
Blacklist / Whitelist
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-mailcow_ui-pushover/" class = "md-nav__link" >
Pushover
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-mailcow_ui-spamfilter/" class = "md-nav__link" >
Spamfilter
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-mailcow_ui-spamalias/" class = "md-nav__link" >
Temporary email aliases
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-mailcow_ui-tagging/" class = "md-nav__link" >
Tagging
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-mailcow_ui-tfa/" class = "md-nav__link" >
Two-Factor Authentication
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-fido2/" class = "md-nav__link" >
WebAuthn / FIDO2
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_8_2" type = "checkbox" id = "__nav_8_2" >
< label class = "md-nav__link" for = "__nav_8_2" >
Postfix
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Postfix" data-md-level = "2" >
< label class = "md-nav__title" for = "__nav_8_2" >
< span class = "md-nav__icon md-icon" > < / span >
Postfix
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "../u_e-postfix-custom_transport/" class = "md-nav__link" >
Custom transport maps
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-postfix-postscreen_whitelist/" class = "md-nav__link" >
Whitelist IP in Postscreen
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-postfix-extra_cf/" class = "md-nav__link" >
Customize/Expand main.cf
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-postfix-disable_sender_verification/" class = "md-nav__link" >
Disable Sender Addresses Verification
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-postfix-attachment_size/" class = "md-nav__link" >
Max. message size (attachment size)
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-postfix-pflogsumm/" class = "md-nav__link" >
Statistics with pflogsumm
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_8_3" type = "checkbox" id = "__nav_8_3" >
< label class = "md-nav__link" for = "__nav_8_3" >
Unbound
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Unbound" data-md-level = "2" >
< label class = "md-nav__title" for = "__nav_8_3" >
< span class = "md-nav__icon md-icon" > < / span >
Unbound
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "../u_e-unbound-fwd/" class = "md-nav__link" >
Using an external DNS service
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_8_4" type = "checkbox" id = "__nav_8_4" >
< label class = "md-nav__link" for = "__nav_8_4" >
Dovecot
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Dovecot" data-md-level = "2" >
< label class = "md-nav__title" for = "__nav_8_4" >
< span class = "md-nav__icon md-icon" > < / span >
Dovecot
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "../u_e-dovecot-any_acl/" class = "md-nav__link" >
Enable "any" ACL settings
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-dovecot-expunge/" class = "md-nav__link" >
Expunge a Users mails
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-dovecot-extra_conf/" class = "md-nav__link" >
Customize/Expand dovecot.conf
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-dovecot-fts/" class = "md-nav__link" >
FTS (Solr)
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-dovecot-idle_interval/" class = "md-nav__link" >
IMAP IDLE interval
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-dovecot-mail-crypt/" class = "md-nav__link" >
Mail crypt
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-dovecot-more/" class = "md-nav__link" >
More Examples with DOVEADM
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-dovecot-vmail-volume/" class = "md-nav__link" >
Move Maildir (vmail)
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-dovecot-public_folder/" class = "md-nav__link" >
Public folders
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-dovecot-static_master/" class = "md-nav__link" >
Static master user
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_8_5" type = "checkbox" id = "__nav_8_5" >
< label class = "md-nav__link" for = "__nav_8_5" >
Nginx
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Nginx" data-md-level = "2" >
< label class = "md-nav__title" for = "__nav_8_5" >
< span class = "md-nav__icon md-icon" > < / span >
Nginx
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "../u_e-nginx/" class = "md-nav__link" >
Custom sites
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-webmail-site/" class = "md-nav__link" >
Create subdomain webmail.example.org
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-redis/" class = "md-nav__link" >
Redis
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-rspamd/" class = "md-nav__link" >
Rspamd
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-sogo/" class = "md-nav__link" >
SOGo
< / a >
< / li >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_8_9" type = "checkbox" id = "__nav_8_9" >
< label class = "md-nav__link" for = "__nav_8_9" >
Docker
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Docker" data-md-level = "2" >
2021-06-30 18:01:06 +02:00
< label class = "md-nav__title" for = "__nav_8_9" >
2021-04-01 12:20:45 +02:00
< span class = "md-nav__icon md-icon" > < / span >
Docker
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "../u_e-docker-cust_dockerfiles/" class = "md-nav__link" >
Customize Dockerfiles
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-docker-dc_bash_compl/" class = "md-nav__link" >
Docker Compose Bash Completion
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-why_unbound/" class = "md-nav__link" >
Why unbound?
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-autodiscover_config/" class = "md-nav__link" >
Autodiscover / Autoconfig
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-80_to_443/" class = "md-nav__link" >
Redirect HTTP to HTTPS
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../u_e-reeanble-weak-protocols/" class = "md-nav__link" >
Re-enable TLS 1.0 and TLS 1.1
< / a >
< / li >
2021-07-31 00:21:29 +02:00
< li class = "md-nav__item" >
< a href = "../u_e-update-hooks/" class = "md-nav__link" >
Run scripts before and after updates
< / a >
< / li >
2021-04-01 12:20:45 +02:00
< / ul >
< / nav >
< / li >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_9" type = "checkbox" id = "__nav_9" >
< label class = "md-nav__link" for = "__nav_9" >
Client Configuration
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Client Configuration" data-md-level = "1" >
< label class = "md-nav__title" for = "__nav_9" >
< span class = "md-nav__icon md-icon" > < / span >
Client Configuration
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "../client/" class = "md-nav__link" >
Overview
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../client/client-android/" class = "md-nav__link" >
Android
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../client/client-apple/" class = "md-nav__link" >
Apple macOS / iOS
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../client/client-emclient/" class = "md-nav__link" >
eM Client
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../client/client-kontact/" class = "md-nav__link" >
KDE Kontact
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../client/client-outlook/" class = "md-nav__link" >
Microsoft Outlook
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../client/client-thunderbird/" class = "md-nav__link" >
Mozilla Thunderbird
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../client/client-windows/" class = "md-nav__link" >
Windows Mail
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../client/client-windowsphone/" class = "md-nav__link" >
Windows Phone
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../client/client-manual/" class = "md-nav__link" >
Manual configuration
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item md-nav__item--nested" >
< input class = "md-nav__toggle md-toggle" data-md-toggle = "__nav_10" type = "checkbox" id = "__nav_10" >
< label class = "md-nav__link" for = "__nav_10" >
Third party apps
< span class = "md-nav__icon md-icon" > < / span >
< / label >
< nav class = "md-nav" aria-label = "Third party apps" data-md-level = "1" >
< label class = "md-nav__title" for = "__nav_10" >
< span class = "md-nav__icon md-icon" > < / span >
Third party apps
< / label >
< ul class = "md-nav__list" data-md-scrollfix >
2021-04-25 09:08:57 +02:00
< li class = "md-nav__item" >
< a href = "../third_party-borgmatic/" class = "md-nav__link" >
Borgmatic Backup
< / a >
< / li >
2021-04-01 12:20:45 +02:00
< li class = "md-nav__item" >
< a href = "../third_party-exchange_onprem/" class = "md-nav__link" >
Exchange Hybrid Setup
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../third_party-gitea/" class = "md-nav__link" >
Gitea
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../third_party-gogs/" class = "md-nav__link" >
Gogs
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../third_party-mailpiler_integration/" class = "md-nav__link" >
Mailpiler Integration
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../third_party-nextcloud/" class = "md-nav__link" >
Nextcloud
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../third_party-portainer/" class = "md-nav__link" >
Portainer
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../third_party-roundcube/" class = "md-nav__link" >
Roundcube
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "../third_party-thunderbird/" class = "md-nav__link" >
SOGo Connector for Thunderbird
< / a >
< / li >
< / ul >
< / nav >
< / li >
< / ul >
< / nav >
< / div >
< / div >
< / div >
< div class = "md-sidebar md-sidebar--secondary" data-md-component = "sidebar" data-md-type = "toc" >
< div class = "md-sidebar__scrollwrap" >
< div class = "md-sidebar__inner" >
< nav class = "md-nav md-nav--secondary" aria-label = "Table of contents" >
2021-04-20 22:16:43 +02:00
2021-04-01 12:20:45 +02:00
< label class = "md-nav__title" for = "__toc" >
< span class = "md-nav__icon md-icon" > < / span >
Table of contents
< / label >
< ul class = "md-nav__list" data-md-component = "toc" data-md-scrollfix >
< li class = "md-nav__item" >
< a href = "#minimum-system-resources" class = "md-nav__link" >
Minimum System Resources
< / a >
< nav class = "md-nav" aria-label = "Minimum System Resources" >
< ul class = "md-nav__list" >
< li class = "md-nav__item" >
< a href = "#usage-examples" class = "md-nav__link" >
Usage examples
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item" >
< a href = "#firewall-ports" class = "md-nav__link" >
Firewall & Ports
< / a >
< nav class = "md-nav" aria-label = "Firewall & Ports" >
< ul class = "md-nav__list" >
< li class = "md-nav__item" >
< a href = "#default-ports" class = "md-nav__link" >
Default Ports
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "#important-for-hetzner-firewalls" class = "md-nav__link" >
Important for Hetzner firewalls
< / a >
< / li >
< / ul >
< / nav >
< / li >
< li class = "md-nav__item" >
< a href = "#date-and-time" class = "md-nav__link" >
Date and Time
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "#hetzner-cloud-and-probably-others" class = "md-nav__link" >
Hetzner Cloud (and probably others)
< / a >
< / li >
< li class = "md-nav__item" >
< a href = "#mtu" class = "md-nav__link" >
MTU
< / a >
< / li >
< / ul >
< / nav >
< / div >
< / div >
< / div >
< div class = "md-content" data-md-component = "content" >
< article class = "md-content__inner md-typeset" >
< a href = "https://github.com/mailcow/mailcow-dockerized-docs/edit/master/docs/prerequisite-system.md" title = "Edit this page" class = "md-content__button md-icon" >
< svg xmlns = "http://www.w3.org/2000/svg" viewBox = "0 0 24 24" > < path d = "M20.71 7.04c.39-.39.39-1.04 0-1.41l-2.34-2.34c-.37-.39-1.02-.39-1.41 0l-1.84 1.83 3.75 3.75M3 17.25V21h3.75L17.81 9.93l-3.75-3.75L3 17.25z" / > < / svg >
< / a >
< h1 > Prepare your system< / h1 >
< p > Before you run < strong > mailcow: dockerized< / strong > , there are a few requirements that you should check:< / p >
< div class = "admonition warning" >
< p class = "admonition-title" > Warning< / p >
< p > Do < strong > not< / strong > try to install mailcow on a Synology/QNAP device (any NAS), OpenVZ, LXC or other container platforms. KVM, ESX, Hyper-V and other full virtualization platforms are supported.
We < strong > do not< / strong > recommend to use CentOS 8 anymore!< / p >
< / div >
< div class = "admonition info" >
< p class = "admonition-title" > Info< / p >
< ul >
< li > mailcow: dockerized requires < a href = "#default-ports" > some ports< / a > to be open for incoming connections, so make sure that your firewall is not blocking these.< / li >
< li > Make sure that no other application is interfering with mailcow's configuration, such as another mail service< / li >
< li > A correct DNS setup is crucial to every good mailserver setup, so please make sure you got at least the < a href = "../prerequisite-dns#the-minimal-dns-configuration" > basics< / a > covered before you begin!< / li >
< li > Make sure that your system has a correct date and < a href = "#date-and-time" > time setup< / a > . This is crucial for various components like two factor TOTP authentication.< / li >
< / ul >
< / div >
< h2 id = "minimum-system-resources" > Minimum System Resources< a class = "headerlink" href = "#minimum-system-resources" title = "Permanent link" > ¶ < / a > < / h2 >
< p > < strong > OpenVZ, Virtuozzo and LXC are not supported< / strong > .< / p >
< p > Please make sure that your system has at least the following resources:< / p >
< table >
< thead >
< tr >
< th > Resource< / th >
< th > mailcow: dockerized< / th >
< / tr >
< / thead >
< tbody >
< tr >
< td > CPU< / td >
< td > 1 GHz< / td >
< / tr >
< tr >
< td > RAM < / td >
< td > < strong > Minimum< / strong > 6 GiB + 1 GiB swap (default config)< / td >
< / tr >
< tr >
< td > Disk< / td >
< td > 20 GiB (without emails)< / td >
< / tr >
< tr >
< td > System Type< / td >
< td > x86_64< / td >
< / tr >
< / tbody >
< / table >
< p > We recommend using any distribution listed as supported by Docker CE (check < a href = "https://docs.docker.com/install/" > https://docs.docker.com/install/< / a > ). We test on CentOS 7, Debian 9/10 and Ubuntu 18.04/20.04.< / p >
< p > ClamAV and Solr can be greedy with RAM. You may disable them in < code > mailcow.conf< / code > by settings < code > SKIP_CLAMD=y< / code > and < code > SKIP_SOLR=y< / code > .< / p >
< p > < strong > Info< / strong > : We are aware that a pure MTA can run on 128 MiB RAM. mailcow is a full-grown and ready-to-use groupware with many extras making life easier. mailcow comes with a webserver, webmailer, ActiveSync (MS), antivirus, antispam, indexing (Solr), document scanner (Oletools), SQL (MariaDB), Cache (Redis), MDA, MTA, various web services etc.< / p >
< p > A single SOGo worker < strong > can< / strong > acquire ~350 MiB RAM before it gets purged. The more ActiveSync connections you plan to use, the more RAM you will need. A default configuration spawns 20 workers.< / p >
< h4 id = "usage-examples" > Usage examples< a class = "headerlink" href = "#usage-examples" title = "Permanent link" > ¶ < / a > < / h4 >
< p > A company with 15 phones (EAS enabled) and about 50 concurrent IMAP connections should plan 16 GiB RAM.< / p >
< p > 6 GiB RAM + 1 GiB swap are fine for most private installations while 8 GiB RAM are recommended for ~5 to 10 users.< / p >
< p > We can help to correctly plan your setup as part of our support.< / p >
< h2 id = "firewall-ports" > Firewall & Ports< a class = "headerlink" href = "#firewall-ports" title = "Permanent link" > ¶ < / a > < / h2 >
< p > Please check if any of mailcow's standard ports are open and not in use by other applications:< / p >
< div class = "highlight" > < pre > < span > < / span > < code > ss -tlpn | grep -E -w ' 25|80|110|143|443|465|587|993|995|4190|5222|5269|5443'
# or:
netstat -tulpn | grep -E -w ' 25|80|110|143|443|465|587|993|995|4190|5222|5269|5443'
< / code > < / pre > < / div >
< div class = "admonition warning" >
< p class = "admonition-title" > Warning< / p >
< p > There are several problems with running mailcow on a firewalld/ufw enabled system. You should disable it (if possible) and move your ruleset to the DOCKER-USER chain, which is not cleared by a Docker service restart, instead. See < a href = "https://blog.donnex.net/docker-and-iptables-filtering/" > this (blog.donnex.net)< / a > or < a href = "https://unrouted.io/2017/08/15/docker-firewall/" > this (unrouted.io)< / a > guide for information about how to use iptables-persistent with the DOCKER-USER chain.
As mailcow runs dockerized, INPUT rules have no effect on restricting access to mailcow. Use the FORWARD chain instead.< / p >
< / div >
< p > If this command returns any results please remove or stop the application running on that port. You may also adjust mailcows ports via the < code > mailcow.conf< / code > configuration file.< / p >
< h3 id = "default-ports" > Default Ports< a class = "headerlink" href = "#default-ports" title = "Permanent link" > ¶ < / a > < / h3 >
< p > If you have a firewall in front of mailcow, please make sure that these ports are open for incoming connections:< / p >
< table >
< thead >
< tr >
< th > Service< / th >
< th align = "center" > Protocol< / th >
< th align = "left" > Port< / th >
< th align = "left" > Container< / th >
< th > Variable< / th >
< / tr >
< / thead >
< tbody >
< tr >
< td > Postfix SMTP< / td >
< td align = "center" > TCP< / td >
< td align = "left" > 25< / td >
< td align = "left" > postfix-mailcow< / td >
< td > < code > ${SMTP_PORT}< / code > < / td >
< / tr >
< tr >
< td > Postfix SMTPS< / td >
< td align = "center" > TCP< / td >
< td align = "left" > 465< / td >
< td align = "left" > postfix-mailcow< / td >
< td > < code > ${SMTPS_PORT}< / code > < / td >
< / tr >
< tr >
< td > Postfix Submission< / td >
< td align = "center" > TCP< / td >
< td align = "left" > 587< / td >
< td align = "left" > postfix-mailcow< / td >
< td > < code > ${SUBMISSION_PORT}< / code > < / td >
< / tr >
< tr >
< td > Dovecot IMAP< / td >
< td align = "center" > TCP< / td >
< td align = "left" > 143< / td >
< td align = "left" > dovecot-mailcow< / td >
< td > < code > ${IMAP_PORT}< / code > < / td >
< / tr >
< tr >
< td > Dovecot IMAPS< / td >
< td align = "center" > TCP< / td >
< td align = "left" > 993< / td >
< td align = "left" > dovecot-mailcow< / td >
< td > < code > ${IMAPS_PORT}< / code > < / td >
< / tr >
< tr >
< td > Dovecot POP3< / td >
< td align = "center" > TCP< / td >
< td align = "left" > 110< / td >
< td align = "left" > dovecot-mailcow< / td >
< td > < code > ${POP_PORT}< / code > < / td >
< / tr >
< tr >
< td > Dovecot POP3S< / td >
< td align = "center" > TCP< / td >
< td align = "left" > 995< / td >
< td align = "left" > dovecot-mailcow< / td >
< td > < code > ${POPS_PORT}< / code > < / td >
< / tr >
< tr >
< td > Dovecot ManageSieve< / td >
< td align = "center" > TCP< / td >
< td align = "left" > 4190< / td >
< td align = "left" > dovecot-mailcow< / td >
< td > < code > ${SIEVE_PORT}< / code > < / td >
< / tr >
< tr >
< td > HTTP(S)< / td >
< td align = "center" > TCP< / td >
< td align = "left" > 80/443< / td >
< td align = "left" > nginx-mailcow< / td >
< td > < code > ${HTTP_PORT}< / code > / < code > ${HTTPS_PORT}< / code > < / td >
< / tr >
< / tbody >
< / table >
< p > To bind a service to an IP address, you can prepend the IP like this: < code > SMTP_PORT=1.2.3.4:25< / code > < / p >
< p > < strong > Important< / strong > : You cannot use IP:PORT bindings in HTTP_PORT and HTTPS_PORT. Please use < code > HTTP_PORT=1234< / code > and < code > HTTP_BIND=1.2.3.4< / code > instead.< / p >
< h3 id = "important-for-hetzner-firewalls" > Important for Hetzner firewalls< a class = "headerlink" href = "#important-for-hetzner-firewalls" title = "Permanent link" > ¶ < / a > < / h3 >
< p > Quoting < a href = "https://github.com/chermsen" > https://github.com/chermsen< / a > via < a href = "https://github.com/mailcow/mailcow-dockerized/issues/497#issuecomment-469847380" > https://github.com/mailcow/mailcow-dockerized/issues/497#issuecomment-469847380< / a > (THANK YOU!):< / p >
< p > For all who are struggling with the Hetzner firewall:< / p >
< p > Port 53 unimportant for the firewall configuration in this case. According to the documentation unbound uses the port range 1024-65535 for outgoing requests.
Since the Hetzner Robot Firewall is a static firewall (each incoming packet is checked isolated) - the following rules must be applied:< / p >
< p > < strong > For TCP< / strong >
< div class = "highlight" > < pre > < span > < / span > < code > SRC-IP: ---
DST IP: ---
SRC Port: ---
DST Port: 1024-65535
Protocol: tcp
TCP flags: ack
Action: Accept
< / code > < / pre > < / div > < / p >
< p > < strong > For UDP< / strong >
< div class = "highlight" > < pre > < span > < / span > < code > SRC-IP: ---
DST IP: ---
SRC Port: ---
DST Port: 1024-65535
Protocol: udp
Action: Accept
< / code > < / pre > < / div > < / p >
< p > If you want to apply a more restrictive port range you have to change the config of unbound first (after installation):< / p >
< p > {mailcow-dockerized}/data/conf/unbound/unbound.conf:
< div class = "highlight" > < pre > < span > < / span > < code > outgoing-port-avoid: 0-32767
< / code > < / pre > < / div > < / p >
< p > Now the firewall rules can be adjusted as follows:< / p >
< div class = "highlight" > < pre > < span > < / span > < code > [...]
DST Port: 32768-65535
[...]
< / code > < / pre > < / div >
< h2 id = "date-and-time" > Date and Time< a class = "headerlink" href = "#date-and-time" title = "Permanent link" > ¶ < / a > < / h2 >
< p > To ensure that you have the correct date and time setup on your system, please check the output of < code > timedatectl status< / code > :< / p >
< div class = "highlight" > < pre > < span > < / span > < code > $ timedatectl status
Local time: Sat 2017-05-06 02:12:33 CEST
Universal time: Sat 2017-05-06 00:12:33 UTC
RTC time: Sat 2017-05-06 00:12:32
Time zone: Europe/Berlin (CEST, +0200)
NTP enabled: yes
NTP synchronized: yes
RTC in local TZ: no
DST active: yes
Last DST change: DST began at
Sun 2017-03-26 01:59:59 CET
Sun 2017-03-26 03:00:00 CEST
Next DST change: DST ends (the clock jumps one hour backwards) at
Sun 2017-10-29 02:59:59 CEST
Sun 2017-10-29 02:00:00 CET
< / code > < / pre > < / div >
< p > The lines < code > NTP enabled: yes< / code > and < code > NTP synchronized: yes< / code > indicate whether you have NTP enabled and if it's synchronized.< / p >
< p > To enable NTP you need to run the command < code > timedatectl set-ntp true< / code > . You also need to edit your < code > /etc/systemd/timesyncd.conf< / code > :< / p >
< div class = "highlight" > < pre > < span > < / span > < code > # vim /etc/systemd/timesyncd.conf
[Time]
Servers=0.pool.ntp.org 1.pool.ntp.org 2.pool.ntp.org 3.pool.ntp.org
< / code > < / pre > < / div >
< h2 id = "hetzner-cloud-and-probably-others" > Hetzner Cloud (and probably others)< a class = "headerlink" href = "#hetzner-cloud-and-probably-others" title = "Permanent link" > ¶ < / a > < / h2 >
< p > Check < code > /etc/network/interfaces.d/50-cloud-init.cfg< / code > and change the IPv6 interface from eth0:0 to eth0:< / p >
< div class = "highlight" > < pre > < span > < / span > < code > # Wrong:
auto eth0:0
iface eth0:0 inet6 static
# Right:
auto eth0
iface eth0 inet6 static
< / code > < / pre > < / div >
< p > Reboot or restart the interface.
You may want to < a href = "https://wiki.hetzner.de/index.php/Cloud_IP_static/en#disable_cloud-init_network_changes" > disable cloud-init network changes.< / a > < / p >
< h2 id = "mtu" > MTU< a class = "headerlink" href = "#mtu" title = "Permanent link" > ¶ < / a > < / h2 >
< p > Especially relevant for OpenStack users: Check your MTU and set it accordingly in docker-compose.yml. See < strong > 4.1< / strong > in < a href = "https://mailcow.github.io/mailcow-dockerized-docs/i_u_m_install/" > our installation docs< / a > .< / p >
< / article >
< / div >
< / div >
< / main >
< footer class = "md-footer" >
< nav class = "md-footer__inner md-grid" aria-label = "Footer" >
2021-06-06 16:14:47 +02:00
2021-06-12 21:21:14 +02:00
< a href = ".." class = "md-footer__link md-footer__link--prev" aria-label = "Previous: Information & Support" rel = "prev" >
2021-04-01 12:20:45 +02:00
< div class = "md-footer__button md-icon" >
< svg xmlns = "http://www.w3.org/2000/svg" viewBox = "0 0 24 24" > < path d = "M20 11v2H8l5.5 5.5-1.42 1.42L4.16 12l7.92-7.92L13.5 5.5 8 11h12z" / > < / svg >
< / div >
< div class = "md-footer__title" >
< div class = "md-ellipsis" >
< span class = "md-footer__direction" >
Previous
< / span >
Information & Support
< / div >
< / div >
< / a >
2021-06-06 16:14:47 +02:00
< a href = "../prerequisite-dns/" class = "md-footer__link md-footer__link--next" aria-label = "Next: DNS setup" rel = "next" >
2021-04-01 12:20:45 +02:00
< div class = "md-footer__title" >
< div class = "md-ellipsis" >
< span class = "md-footer__direction" >
Next
< / span >
DNS setup
< / div >
< / div >
< div class = "md-footer__button md-icon" >
< svg xmlns = "http://www.w3.org/2000/svg" viewBox = "0 0 24 24" > < path d = "M4 11v2h12l-5.5 5.5 1.42 1.42L19.84 12l-7.92-7.92L10.5 5.5 16 11H4z" / > < / svg >
< / div >
< / a >
< / nav >
< div class = "md-footer-meta md-typeset" >
< div class = "md-footer-meta__inner md-grid" >
< div class = "md-footer-copyright" >
< div class = "md-footer-copyright__highlight" >
Copyright © 2021 André Peters
< / div >
Made with
< a href = "https://squidfunk.github.io/mkdocs-material/" target = "_blank" rel = "noopener" >
Material for MkDocs
< / a >
< / div >
< div class = "md-footer-social" >
< a href = "https://mailcow.email" target = "_blank" rel = "noopener" title = "mailcow.email" class = "md-footer-social__link" >
< svg xmlns = "http://www.w3.org/2000/svg" viewBox = "0 0 496 512" > < path d = "M248 8C111.03 8 0 119.03 0 256s111.03 248 248 248 248-111.03 248-248S384.97 8 248 8zm82.29 357.6c-3.9 3.88-7.99 7.95-11.31 11.28-2.99 3-5.1 6.7-6.17 10.71-1.51 5.66-2.73 11.38-4.77 16.87l-17.39 46.85c-13.76 3-28 4.69-42.65 4.69v-27.38c1.69-12.62-7.64-36.26-22.63-51.25-6-6-9.37-14.14-9.37-22.63v-32.01c0-11.64-6.27-22.34-16.46-27.97-14.37-7.95-34.81-19.06-48.81-26.11-11.48-5.78-22.1-13.14-31.65-21.75l-.8-.72a114.792 114.792 0 0 1-18.06-20.74c-9.38-13.77-24.66-36.42-34.59-51.14 20.47-45.5 57.36-82.04 103.2-101.89l24.01 12.01C203.48 89.74 216 82.01 216 70.11v-11.3c7.99-1.29 16.12-2.11 24.39-2.42l28.3 28.3c6.25 6.25 6.25 16.38 0 22.63L264 112l-10.34 10.34c-3.12 3.12-3.12 8.19 0 11.31l4.69 4.69c3.12 3.12 3.12 8.19 0 11.31l-8 8a8.008 8.008 0 0 1-5.66 2.34h-8.99c-2.08 0-4.08.81-5.58 2.27l-9.92 9.65a8.008 8.008 0 0 0-1.58 9.31l15.59 31.19c2.66 5.32-1.21 11.58-7.15 11.58h-5.64c-1.93 0-3.79-.7-5.24-1.96l-9.28-8.06a16.017 16.017 0 0 0-15.55-3.1l-31.17 10.39a11.95 11.95 0 0 0-8.17 11.34c0 4.53 2.56 8.66 6.61 10.69l11.08 5.54c9.41 4.71 19.79 7.16 30.31 7.16s22.59 27.29 32 32h66.75c8.49 0 16.62 3.37 22.63 9.37l13.69 13.69a30.503 30.503 0 0 1 8.93 21.57 46.536 46.536 0 0 1-13.72 32.98zM417 274.25c-5.79-1.45-10.84-5-14.15-9.97l-17.98-26.97a23.97 23.97 0 0 1 0-26.62l19.59-29.38c2.32-3.47 5.5-6.29 9.24-8.15l12.98-6.49C440.2 193.59 448 223.87 448 256c0 8.67-.74 17.16-1.82 25.54L417 274.25z" / > < / svg >
< / a >
< a href = "https://github.com/mailcow" target = "_blank" rel = "noopener" title = "github.com" class = "md-footer-social__link" >
< svg xmlns = "http://www.w3.org/2000/svg" viewBox = "0 0 480 512" > < path d = "M186.1 328.7c0 20.9-10.9 55.1-36.7 55.1s-36.7-34.2-36.7-55.1 10.9-55.1 36.7-55.1 36.7 34.2 36.7 55.1zM480 278.2c0 31.9-3.2 65.7-17.5 95-37.9 76.6-142.1 74.8-216.7 74.8-75.8 0-186.2 2.7-225.6-74.8-14.6-29-20.2-63.1-20.2-95 0-41.9 13.9-81.5 41.5-113.6-5.2-15.8-7.7-32.4-7.7-48.8 0-21.5 4.9-32.3 14.6-51.8 45.3 0 74.3 9 108.8 36 29-6.9 58.8-10 88.7-10 27 0 54.2 2.9 80.4 9.2 34-26.7 63-35.2 107.8-35.2 9.8 19.5 14.6 30.3 14.6 51.8 0 16.4-2.6 32.7-7.7 48.2 27.5 32.4 39 72.3 39 114.2zm-64.3 50.5c0-43.9-26.7-82.6-73.5-82.6-18.9 0-37 3.4-56 6-14.9 2.3-29.8 3.2-45.1 3.2-15.2 0-30.1-.9-45.1-3.2-18.7-2.6-37-6-56-6-46.8 0-73.5 38.7-73.5 82.6 0 87.8 80.4 101.3 150.4 101.3h48.2c70.3 0 150.6-13.4 150.6-101.3zm-82.6-55.1c-25.8 0-36.7 34.2-36.7 55.1s10.9 55.1 36.7 55.1 36.7-34.2 36.7-55.1-10.9-55.1-36.7-55.1z" / > < / svg >
< / a >
< / div >
< / div >
< / div >
< / footer >
< / div >
< div class = "md-dialog" data-md-component = "dialog" >
< div class = "md-dialog__inner md-typeset" > < / div >
< / div >
2021-07-31 15:39:43 +02:00
< script id = "__config" type = "application/json" > { "base" : ".." , "features" : [ ] , "translations" : { "clipboard.copy" : "Copy to clipboard" , "clipboard.copied" : "Copied to clipboard" , "search.config.lang" : "en" , "search.config.pipeline" : "trimmer, stopWordFilter" , "search.config.separator" : "[\\s\\-]+" , "search.placeholder" : "Search" , "search.result.placeholder" : "Type to start searching" , "search.result.none" : "No matching documents" , "search.result.one" : "1 matching document" , "search.result.other" : "# matching documents" , "search.result.more.one" : "1 more on this page" , "search.result.more.other" : "# more on this page" , "search.result.term.missing" : "Missing" , "select.version.title" : "Select version" } , "search" : "../assets/javascripts/workers/search.709b4209.min.js" , "version" : null } < / script >
2021-04-01 12:20:45 +02:00
2021-08-10 19:15:37 +02:00
< script src = "../assets/javascripts/bundle.29db7785.min.js" > < / script >
2021-04-01 12:20:45 +02:00
< script src = "../clients.js" > < / script >
< / body >
< / html >