How to integrate Bitdefender Security for Mail Servers with Axigen Mail Server
This article explains how to integrate Bitdefender Security for Mail Servers with Axigen Mail Server version 9 or newer on Linux systems.
All commands below should be executed from within the ~BitDefender/bin directory.
- Install Bitdefender with milter agent
- Configure Bitdefender Security for Mail Servers
- Configure Axigen Mail Server
- Apply and Verify Configuration
- Install Bitdefender and select the Sendmail-milter agent during the installation wizard. If Bitdefender is already installed, just enable it:
# cd /opt/BitDefender/bin # ./bdsafe agent enable milter
- Axigen does not send any kind of connection information to Bitdefender, like the IP address of the server sending the mail. Therefore the Bitdefender RBL filter is unable to process emails properly. You have to disable it and use the Axigen antispam methods instead.
To disable the Bitdefender RBL filter:
# ./bdsafe group configure default antispam userblfilter N # ./bdsafe reload
To add the RBL servers to Axigen:
- Using Axigen WebAdmin, select the Security & Filtering > Additional AntiSpam Methods menu option.
- Click the DNSBL (DNS BlackList) box to expand the section where you can add the RBL servers.
Bitdefender and Axigen run as two different users, which need to communicate for the integration to work. To configure the users and the default access permissions:
- Add the Axigen user to Bitdefender’s LocalUsers and to the Bitdefender System group:
# ./bdsafe registry configure localusers add axigen # usermod -G axigen,bitdefender axigen
- Change the access permissions to /var/run/BitDefender so that bdmilterd, which runs as the Axigen user, will be able to create the milter intercommunication socket:
# chmod 731 /var/run/BitDefender
- bdmilterd needs to run as the Axigen user. The easiest way to achieve this is by setting the setuid flag for bdmilterd and changing its owner to the Axigen user as follows:
# chown axigen:bitdefender bdmilterd # chmod u+s bdmilterd
Axigen needs a milter filter to communicate with Bitdefender and to send all emails to be scanned.
Configure Axigen to use the Bitdefender milter as described herein:
- From the Axigen WebAdmin main menu, select Security & Filtering > Acceptance & Routing option.
- Click the Advanced Settings button at the upper side of the page.
- Add a filtering rule:
- Click the Acceptance/Routing button.
- Set the name of the rule to Bitdefender_Milter
- Unless required, leave the Conditions section unmodified, as the default policies apply to all SMTP connections.
- From the Actions section, select Filters > Add Filter from the drowpdown list and click the + Add condition button.
- In the Add milter filter box set the Name field to Bitdefender and the Address field to
- Save configuration.
- Activate the filter by creating a second Acceptance/Routing policy that will ensure the first filter execution:
- Set the name of the new rule to Bitdefender_Execute
- Leave the Conditions section unmodified.
- From the Actions section, select Filters > Execute Filters from the drowdown list and click the + Add condition button.
- Set the Execute Filters name pattern to Bitdefender
- Save configuration.
To apply changes, restart both Bitdefender and Axigen:
# ./bd restart # /etc/init.d/axigen restart
If the setup works correctly, you will find the X-BitDefender-Scanner header in the headers of all delivered mails, similar to this:
[…] X-BitDefender-Scanner: Clean, Agent: BitDefender qmail 3.1.6 on my.axigen.server, sigver: 7.61669 […]