Link to home
Start Free TrialLog in
Avatar of Goutham
GouthamFlag for India

asked on

on premise email server measures

Dear Experts

We have been asked to deploy on premise mail server for which we are planning to go for zimbra network but before to that we have to design the network,  though this email server will be working for internal within main office and branch office as it is connected in mpls network but we also would like to send and receive mails to external domains following measures to be taken
1. if our server or internet goes down the sender mail should not get lost for us once the server or internet gets restored the mails should be delivered to our emails accounts.
2. our domain and ip reputation should be always good so that our messages gets delivered to the inbox on the recipient email
please suggest on how our email server to be configured have internal dns server and make it work as normal email server and for external we have to avail SMTP RELAY service with some service provider please suggest is this correct if not please suggest what service we have to avail for external email delivery with email security will be taken care.
Avatar of ITguy565
ITguy565
Flag of United States of America image

I would recommend either of the following.. Both will Queue e-mail when you LAN is down.

Mimecast = https://www.mimecast.com/

MessageLabs = https://www.symantec.com/products/messaging-security
Avatar of Goutham

ASKER

thanks for the reply, the requirement is for 20 users email server hosting on premises is must as per the procedure by going for the mentioned like mimecast and messaging-security from symantec will will serve the same purpose as one of the service provider approaching us mentioning we host email server in our network and all outgoing message will be routed to their server and from there it goes out for the external domains ( think they will provide relay services )and they will have cisco iron port /email security at gate way hence outbound and inbound are filtered and if our network is down the mails at their end will be queued and once we restore the mails will be pushed, Please suggest going by this approach is recommend or the mentioned solutions above that is mimecast and symantec will will also serve the same purpose like gateway level filtering the messages of inbound and outbound please suggest.
HI,
Here is my suggestions for your questions,

1. if our server or internet goes down the sender mail should not get lost for us once the server or internet gets restored the mails should be delivered to our emails accounts.

According to me the best way to overcome to this situation is to setup a gateway server in any cloud service provider such as AWS. Setup a EC2 instance  and install postfix . Configure it as gateway server using mail transport. For more email security setup Mail maia guard, Postgrey which stabilises spamming, around 98% of spamming can be stopped from here. It Provides one more layer of security for your mail server.

You doesn't need  high configuration server for this, setup a server with one core one GB RAM server , which hardly cost 5$ in digital ocean . So even your on premises network connection is down you will receive all the incoming mail once network got restored.

Always outgoing mailserver will be stored in your mail server since all the mails are going from LAN.


2. our domain and ip reputation should be always good so that our messages gets delivered to the inbox on the recipient email

1. Initially take a IP address which is not blacklisted.
2. Setup DKIM, SPF,  use antivirus
3. Avoid email campigain from your mail server, use other mail server services such mailtrap, AWS SES etc for that.
4. Use a gateway sever for your outgoing and incoming mail server
The two suggestions above will work, I think your only problem will be how much control are you looking to have. In the first suggestion you have control at your end and someone else controls the other end with a promise to push your mails when your system is restored.

In the second suggestion you rent a space in amazon and setup up your back up environment to which you control more or less and even if you didn't restore the service you can always access your mail in the cloud.

choice is up to you.
Avatar of Goutham

ASKER

thank you very much for the replies and inputs, please help on the following

1.  As of now have setup mail zimbra email server and using for internal network , to operate externally that is to send/receive mails to and from external domains now to setup a gateway server in any cloud and configure it using mail transport. please let me know in this case how does incoming mail from external will work,  is it something like first it will reach to gateway server and from there our local server fetches similarly how does the outbound mail to external domain will work, when user sends the mail from the internal network where the internal mail server is hosted and from here the mail goes to the gateway server and from their does it goes out to the recipient domain.

2. if we setup as per above and take measure's by not sending promotional mails or any email campaigns do we still need to go for "Cloud Email Security with Advance Threat Protection" because this solution subscription is going to expensive and it is per user basis,

thanks in advance.
ASKER CERTIFIED SOLUTION
Avatar of Prabhin MP
Prabhin MP
Flag of India image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial