ePrism install guide - EdgeWave · Phase 3: Configuring ePrism ... Phase 5: Final Configuration ... Any administrator with basic networking knowledge can install ePrism

ePrism Installation Guide

M 5 0 0

ePrism Installation and Configuration Guide

Contents ii

© 2004-2005 St. Bernard Software, Inc. All Rights Reserved Worldwide.

ePrism® is a registered trademark of St. Bernard Software, Inc.

Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows NT/2000 are either registered trademarks or trademarks of Microsoft Corporation in the U.S.A. and/or other countries. Other product and company names mentioned herein may be the trademarks of their respective owners.

The ePrism software and its documentation are copyrighted materials. Law prohibits making unauthorized copies. No part of this software or documentation may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into another language without prior permission of St. Bernard Software, Inc.

Rev. June 28, 2005.

St. Bernard Software, Inc. Input Rating 115/230V - 60/50 Hz, 5/2.5 A

C US

I.T.E. LISTED

E216716

This device complies with Part 15 of FCC Rules. Operation is subject to the following two conditions:

(1) This device may not cause harmful interference and

(2) This device must accept any interference received, including interference that may cause undesired operation.

This Class A digital apparatus meets all the requirements of the Canadian Interference-Causing Equipment Regulations.

Cet appareil numerique de la classe A respecte toutes ies exigences du Regiement sur le materiel brouilleur du Canada.

Elevated Operating Ambient Temperature – If installed in a closed or multi-unit rack assembly, the operating ambient temperature of the rack environment may be greater than room ambient. Therefore, consideration should be given to installing the equipment in an environment compatible with the manufacturer's maximum rated ambient temperature (TMRA).

Reduced Air Flow – Installation of the equipment in a rack should be such that the amount of airflow required for safe operation of the equipment is not compromised.

Mechanical Loading – Mounting of the equipment in the rack should be such that a hazardous condition is not achieved due to uneven mechanical loading.

Circuit Overloading – Consideration should be given to the connection of the equipment to the supply circuit and the effect that overloading of circuits might have on overcurrent protection and supply wiring. Appropriate consideration of equipment nameplate ratings should be used when addressing this concern.

Reliable Earthing – Reliable earthing of rack mounted equipment should be maintained. Particular attention should be given to supply connections other than direct connections to the branch circuit (i.e., use of power strip, etc.).


Contents iii

Contents Welcome! ...............................................................................................................................................1

ePrism Installation .............................................................................................................................1 What You Need to Know to Install ePrism.......................................................................................1 Customization ....................................................................................................................................1 Special Considerations......................................................................................................................2 St. Bernard Technical Support..........................................................................................................2 About the Setup Process ..................................................................................................................3

Phase 1: Gathering Information ........................................................................................................4 Taking Inventory ................................................................................................................................4 Getting ePrism Information ...............................................................................................................4 Getting Network Information .............................................................................................................4

Phase 2: Hardware Setup ...................................................................................................................7 Mounting the Hardware Appliance ...................................................................................................7 LED Lights and Connectors ..............................................................................................................7 Network Diagram ...............................................................................................................................8 Connecting ePrism to the LAN .........................................................................................................9 Powering Up.......................................................................................................................................9

Phase 3: Configuring ePrism ...........................................................................................................10 Installing the ePrism Appliance Manager ......................................................................................10 Opening ePrism from the Appliance Manager ..............................................................................11 Setup Wizard....................................................................................................................................13

Phase 4: Testing ePrism Connectivity ...........................................................................................15 Opening the System Administration Tool ......................................................................................15 Adding an ePrism User ...................................................................................................................16 Logging on to the ePrism Web-based Interface ............................................................................17

Phase 5: Final Configuration ...........................................................................................................18 Changing Mail Exchange Routing ..................................................................................................18

Appendix..............................................................................................................................................19 Installing Other Software from the ePrism CD ..............................................................................19 Finding Network Settings ................................................................................................................19 Static Routes....................................................................................................................................19 Setup Screens .................................................................................................................................21


Contents iv


Welcome! 1

Welcome!

ePrism Installation Congratulations on your purchase of ePrism, an email gateway solution that filters messages, unwanted spam, and objectionable email. ePrism is an appliance that is easy to install and manage. As an option, you can also purchase virus protection to enhance ePrism’s filtering functions.

Please use this installation guide to walk through the process of installing Appliance Manager and completing the initial configuration of ePrism.

For additional documentation on ePrism, visit the St. Bernard support website:

http://www.stbernard.com/products/support/eprism/support_eprism.asp

What You Need to Know to Install ePrism Any administrator with basic networking knowledge can install ePrism. You do not have to be a network guru, but you need to know your network topology. You should be able to:

• Identify the major hardware devices in your network (server, hub, router, firewall, modem, etc.). A network diagram would be helpful.

• Access the configuration settings on your network devices.

• Understand and be able to adjust how your email is routed to your organization. This may require changes to your DNS settings.

Customization Once you have installed ePrism and completed the basic setup procedures, you will want to customize ePrism to take full advantage of its email filtering capabilities. This installation guide does not cover customization of ePrism. For details on how to customize ePrism and tailor it to enforce your organization’s email usage policies after it has been installed, please refer to the Administrators Guide included on your CD and available from the St. Bernard Software website. You can always find administration information in the online help included with ePrism’s System Administration software.


Welcome! 2

Special Considerations

DNS Settings How quickly you see the effects of mail filtering will depend on the DNS server’s TTL (time to live) value for your domain’s email server. The TTL values for the DNS MX (mail exchanger) records determine how long domain servers and applications cache email routing information before they check the DNS server for an update. If the TTL for ePrism’s MX record is set to 3 days, for example, Internet mail servers, depending on when they last retrieved the MX, will not route email through the ePrism appliance until the MX information is refreshed, possibly as long as 3 days later.

If you want to check filtering results on the same day that ePrism is installed, the MX TTL value would have to be set to something less than 1 day (e.g., 1 hour, 3 hours, 6 hours, etc.). To change the TTL value for mail servers, contact your DNS server administrator. After you’ve finished testing, you may want to restore the original TTL value. A short TTL value for infrequently changing resources, like a mail exchanger, could create unnecessary network traffic.

Other Network Considerations If you are concerned about your network’s ability to interact with ePrism, visit the ePrism support website at the address indicated below.

St. Bernard Technical Support If you are unable to resolve your issue using the manual, please contact St. Bernard Software’s ePrism support team.

Email [email protected]

Phone (858) 676-5050

Web http://www.stbernard.com/products/support/eprism/support_eprism.asp

When contacting tech support, please be sure to include all relevant information about how ePrism is configured on your network (i.e., topology, other hardware, networking software, etc.). Make sure to have your ePrism serial number and registration key information. Also, in order to help the St. Bernard support staff solve your problem, send a network diagram showing the basic hardware that is in use on your network.


Welcome! 3

About the Setup Process This guide divides the ePrism setup process into five phases. It is important that all of the steps and phases be performed in the exact order that they are presented.

Phase 1 Gather information about your hardware and network. You will be required to enter this information during when you run the setup wizard.

Phase 2 Physically connect the ePrism appliance to the network and prepare a network workstation for the software installation.

Phase 3 Install and run the ePrism setup wizard. The wizard helps you configure the ePrism appliance with the network information you gathered in Phase 1.

Phase 4 Test ePrism to make sure it is communicating with your network.

Phase 5 Configure your mail exchange routing to use ePrism.


Phase 1: Gathering Information 4

Phase 1: Gathering Information

Taking Inventory The following items should be included in your ePrism package (please take a moment to verify that you have one of each):

• ePrism appliance

• Power cord

• ePrism CD

• Ethernet cable (standard wiring)

Getting ePrism Information In the spaces provided in this section, write the requested hardware and networking information. You will need this to configure ePrism, or if you contact St. Bernard’s technical support.

Serial Number Your ePrism serial number can be found on the back of the ePrism appliance.

(A) Serial Number: __________________________

Registration Key and Expiration Date Your registration key is emailed to you by St. Bernard when you purchase the ePrism appliance. The registration email contains an attached file, which is the registration key. We recommend that you save this file to the computer you intend to use as the administrator’s machine. You will need this file when you run the setup wizard. This key will expire with the termination of your license agreement. If you have not received a registration key, contact your St. Bernard sales representative.

Getting Network Information To configure ePrism, you will need the following network information:

ePrism IP Address The ePrism appliance requires a unique IP address on the subnet to which it is being connected. The computer on which you install the ePrism administration software must be physically attached to the same subnet as ePrism (i.e., they must use the same hub or switch).



Select an IP address that corresponds to the network settings of your workstation.

Note You can use the Windows command-line utility “ipconfig /all” to determine your workstation’s network settings. See Finding Network Settings (page 19) in the Appendix for details on using this utility.

Write the IP address and netmask on lines (B) and (C).

(B) ePrism IP Address: ______ . _____ ._____ . _____

(C) Subnet mask (netmask): ______ . _____ ._____ . _____

Default Route (Gateway) Address The default route refers to the IP address of the device (usually a router) that lies between the local network (subnet) and the Internet. This address should be on the same physical network as ePrism.

(D) Default Gateway IP address: _______. _____ . _____ . _____

ePrism Name During the setup procedure, you will be asked to assign a host name to the ePrism appliance. The name you choose should reflect your DNS domain, for example: eprism.example.com. You should then create an entry for ePrism in your domain DNS configuration (check with your DNS administrator). The domain name helps accommodate email notification through ePrism.

(E) ePrism Host Name: _________________________

Note It is also recommended that the name-to-number DNS entry (“A” record)

has a matching, reverse-mapped number-to-name entry (“PTR” record) in the reverse DNS zone. This maximizes the chance that other mail servers will consider ePrism's DNS settings to be valid.

Name Server (DNS) You can improve the efficiency of ePrism by letting it communicate with the same name server used by its clients. This prevents ePrism from having to resolve client requests that are already cached in the name server. Write the IP Address of this DNS server below.

(F) Name Server (DNS) IP address: ______ . _____ ._____ . _____

Note In "split DNS" environments, it is critical that the name server used by

ePrism is capable of resolving both internal and external names.



Internal IP Address Range During the setup procedure, you will be asked to define a range of internal IP addresses that you wish ePrism to filter. After the initial configuration, the administrator can define additional address ranges.

(G) Low IP address: ______ . _____ ._____ . _____

(H) High IP address: ______ . _____ ._____ . _____

Mail Server Settings The last type of information you will need for the setup wizard is the mail server network settings. Write the domain name of the network hosts being filtered (e.g., “stbernard.com”) and the IP address of the email server.

(I) Email Domain: __________________________

(J) Email Server IP address: ______ . _____ ._____ . _____


Phase 2: Hardware Setup 7

Phase 2: Hardware Setup This phase describes ePrism’s LED lights and connectors and shows you how to physically install and connect ePrism to your network.

Mounting the Hardware Appliance If you have not done so already, now is a good time to take the ePrism appliance out of the box and physically mount it in its final location (for instance, a 19" rack using the provided mounting brackets).

Make sure the power switch on the back of ePrism is in the Off (0) position, and then connect the power cord to the back of the unit and plug it in.

LED Lights and Connectors

Front Panel

Feature Description

Power LED This blue LED illuminates when power is applied to the system.

Activity LED This red LED illuminates when the system is in normal operating mode. It indicates hard disk activity when the ePrism appliance is in use.

Rear Panel

Feature Description

Power Connector This connects power to ePrism's 115–230 VAC auto-sensing power supply.

Internal Ethernet Connector

This RJ45 connector provides auto-sensing 10/100 Mbps Ethernet connectivity to your network.

Link/Speed LEDs There are two LED indicators above the Ethernet connection:

• Link – This yellow LED illuminates when the Ethernet cable is properly connected.

• Speed – This LED indicates the speed of the Ethernet connection. No light indicates a 10Mbps connection; amber light indicates a 100Mbps connection.

On/Off Switch When power is not applied to the system, press this switch to turn ePrism on. When power is applied, push and release the switch to initiate the power-down process.

If the Power LED remains illuminated after 1 minute, push and hold the switch down until ePrism powers off (5 seconds).



Network Diagram ePrism is best deployed when it is connected to the network hub or switch that sits between the internal network and the Internet router.

The following diagrams illustrate typical network email configurations with and without the ePrism router.

Without ePrism

With ePrism



Firewall Settings ePrism requires access to the Internet using the following protocols and ports:

Service Port Protocol Direction (in/out)

SMTP 25 TCP Both

HTTP 80 TCP Out

DNS 53 TCP/UDP Both

DCC 6277 TCP/UDP Both

NTP 123 TCP/UDP Both

FTP (optional) 21 TCP Out

More information on ePrism network settings can be found at http://www.stbernard.com.

Connecting ePrism to the LAN Connecting ePrism to the local area network (LAN) allows you to configure ePrism using any of the workstations on that network.

1. Connect one end of the standard Ethernet cable to ePrism’s Ethernet port.

2. Connect the other end of the cable into the hub (or switch) that serves the local subnet.

Powering Up Once ePrism is connected to your LAN, turn the appliance on using the On/Off switch on the back of the unit. After powering on the unit, please allow approximately one minute for ePrism to become ready. This is a normal part of ePrism initialization. Once the Link/Activity and Link Speed lights turn on, ePrism is initialized and ready for use.


Phase 3: Configuring ePrism 10

Phase 3: Configuring ePrism On the administrator machine that you will use to manage ePrism, install the Appliance Manager software from the ePrism CD. Appliance Manager is used to configure and manage St. Bernard devices like ePrism and iPrism. Appliance Manager is a Java™ application, so any Microsoft® Windows® workstation that supports Java can be used.

The initial installation of ePrism is easier when installing the software from the ePrism CD. However, it is possible to configure ePrism without installing the ePrism software. If you are running a non-Windows operating system or cannot use the ePrism CD, please contact St. Bernard Software technical support for assistance (see page 2 for contact information).

Note The ePrism installation CD includes a Java Runtime Environment (JRE) bundled with Appliance Manager. The installation software will handle the Java configuration automatically.

Installing the ePrism Appliance Manager 1. Insert the ePrism CD into the CD-ROM drive of the administrator workstation.

A web browser window should open with a menu of options. If a browser window does not appear automatically, browse to the location of the CD-ROM on your computer and open the index.html file using your web browser.

Note The ePrism Appliance Manager installer is also available for download from your installed ePrism, at http://[ePrism IP address]/installers.

2. From the browser, select the Install Appliance Manager Software option.

3. In the Introduction dialog box, click Next. 4. Select a folder into which the ePrism Manager software is to be installed, and

click Next. 5. Choose how you want shortcut menu items and icons configured for opening

Appliance Manager after it is installed. The default setting for Windows installations is to add a shortcut to the Start Menu in the Programs group. You may also want to add a shortcut icon to the desktop.

6. Read the pre-installation summary to ensure you have selected the correct path. Then click Install.

7. After the installation is complete, click Done. If an error occurs during the installation process, try using a different installation path or obtaining administrator privileges before installing the software. If this does not work, contact technical support for further assistance (see page 2 for contact information).



Opening ePrism from the Appliance Manager 1. Before proceeding, make sure that ePrism is properly connected to your network

and powered on. Also, if there is firewall software running on this workstation, such as Norton Internet Security or Windows XP Internet Connection Firewall, disable it before continuing.

2. Open Appliance Manager from the Start Menu (or double-click the ePrism Appliance Manager icon on your desktop). This will launch the Appliance Manager window. When Appliance Manager starts, it will automatically look for appliances on the network and display an icon for each discovered appliance. You should see a screen similar to the following:

3. Click the ePrism logo to select the appliance (that corresponds to the serial number that you entered on line (A)), and then click Manage Selected Appliance. The IP Assignment Wizard will prompt you to configure an IP address for the ePrism appliance.

4. Follow the instructions in the wizard to assign the IP address and subnet: • Enter the IP Address that you wrote on line (B).

• Enter the Subnet Mask that you wrote on line (C). The network mask is a binary pattern that is stored in the client machine, server, or router and matched with the IP address. Use the slider to adjust the mask address.



5. When the IP Assignment Wizard has finished running, the Welcome screen of the ePrism System Administration tool will open. • In the Username field, enter “eprism” (this is the required username for

accessing the ePrism appliance).

• In the Password field enter “setup” and click Sign In.

Note This is a temporary password. The Administrator will create a new password during the setup wizard.



Setup Wizard A setup wizard will guide you through the initial configuration process. If you need to make changes afterwards, or want to customize ePrism’s configuration, you can do so at any time through the System Administration tool. At the first screen:

• Make sure that the Configuration Mode list displays the Start a new configuration session option.

• Click Confirm to start the wizard.

Follow the wizard’s onscreen instructions to complete ePrism’s initial configuration. This includes setting up:

• License management (page 21)

• Registration (page 22)

• Date and time (page 23)

• Administrator settings (page 24)

• Network settings (page 25)

• Name service settings (page 27)

• Trusted internal network (page 28)

• Email domain map (page 29)



After you complete the initial configuration information, ePrism will conduct a self-test and display the system status. If unexpected errors are reported, you can click the Back button to make changes.

Note For more information on the setup wizard and the initial configuration options, see Setup Screens (page 21) in the Appendix.


Phase 4: Testing ePrism Connectivity 15

Phase 4: Testing ePrism Connectivity In this phase you will open the System Administration tool to verify that you can access ePrism. This is important because ePrism’s system administration functions are available only from workstations on which Appliance Manager is installed. The System Administration tool allows you to:

• Configure network settings

• Add and manage user accounts

• Run diagnostic tests

• Install ePrism software updates

Once user accounts are defined, authenticated users can manage their personal email Whitelists and Blacklists through a web browser. The last test in this section will confirm that the web browser login is available.

Opening the System Administration Tool Before performing this test, make sure ePrism is properly connected and has had time to completely start up (approximately 1 minute). To open the System Administration tool:

1. Open Appliance Manager on the administrator’s machine.

2. Click the St. Bernard ePrism logo. 3. Click Manage Selected Appliance and select the Administrative Interface menu

option. 4. Enter the administrator username and password (these values were set during the

setup wizard). 5. Click Sign In. The ePrism System Administration window opens with four

options: • System Settings

• Mail Administration and Reports

• Diagnostics

• HotFix Manager



Adding an ePrism User ePrism users can access and modify the email Whitelists and Blacklists. Users are added through the System Administration tool on the administrator’s workstation. To add a user:

1. Log in to the System Administration tool from Appliance Manager. 2. Click Mail Administration and Reports. This will open a browser window and

display the Global Settings page. 3. Click the Administration link.

4. Click the User Accounts link.

Note If ePrism is configured to use NTLM authentication, then clicking the User Accounts link will display a list of user accounts provided by the NT domain controller. This configuration is not part of the setup wizard; see the Administration Guide for more information.

5. Click the Add New User link.

6. Enter a User ID for the new account. 7. In the E-Mail field, enter the user’s email address.

8. In the Password field, enter a password for the user. 9. Re-enter the user password in the Confirm Password field. The password must

match the one you typed in the Password field. 10. Click Add User. The new user appears in the User Accounts window.



Logging on to the ePrism Web-based Interface After ensuring that you can access the System Administration functions through Appliance Manager, you may want to check that the web-based login is available for users to modify Whitelists and Blacklists. Prior to running this test, you must have already set up a user using the System Administration tool (see the previous section).

Note For security reasons, the administrator account cannot log in to the ePrism web-based interface. All administrative tasks must be performed through the System Administration tool.

To log in to the web interface:

1. Open a web browser. 2. Browse to the IP address of the ePrism appliance (e.g., enter “http:// 192.168.1.3”

in the address bar of your web browser).

Note ePrism also supports the https protocol for secure login (e.g., https://192.168.1.3).

3. Enter a valid username and password. If the login is successful, you will see the following screen:


Phase 5: Final Configuration 18

Phase 5: Final Configuration

Changing Mail Exchange Routing Once you have installed the ePrism hardware, configured the software, and successfully completed the ePrism self tests, you need to modify your mail system’s routing so that ePrism is the email gateway for your organization.

To set your inbound mail traffic to route through ePrism, do one of the following:

• Adjust the DNS of your primary mail exchanger (MX) record for your domain, or

• Ask your ISP to adjust where it sends your domain’s email.

ePrism will be configured to relay tagged and non-spam messages to the internal mail server.

To set your outbound mail traffic to route through ePrism, adjust your internal mail server to send all Internet bound email to ePrism. ePrism should be configured with the address of the internal mail server as the sole relayer.

Note A relayer is an internal system that is allowed to use ePrism to send email to other domains. The context for relaying is the outbound direction, and is usually set to the address of the internal mail server.

Relayers are configured in the System Administration tool: System Settings > Mail > Relayers.


Appendix 19

Appendix

Installing Other Software from the ePrism CD The ePrism CD also contains Adobe® Acrobat Reader®. You will need Acrobat Reader to view the ePrism User Guide. The guide can be accessed from the ePrism Manager folder in the Windows Programs menu.

Finding Network Settings If you don’t know the network settings of the administrator workstation, you can use the Windows command-line utility ipconfig with the /all switch to display this information.

1. Open a command prompt: From the Start Menu, select Run, and then type cmd (Windows NT4, 2000, and XP) or command (Windows 9x, ME) and click OK.

2. At the command prompt, type ipconfig /all and press Enter.

3. Look for the IP address information in the “Ethernet adapter Local Area Connection” section. For example:

Ethernet adapter Local Area Connection

Connection-specific DNS Suffix. . : .example.com

IP Address. . . . . . . . . . . . : 192.168.1.10

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.1

DNS Servers . . . . . . . . . . . : 192.168.1.2

Static Routes By default, ePrism monitors workstations and servers that are attached to the same IP network. To communicate with workstations on other IP networks, static routes must be employed. Likewise, if your network uses local DNS servers that are not accessible through the default gateway, you will need to provide static routes to these servers.

Do I Need to Enter Static Routes? This section will help you determine if you need to enter static routes. Answer the following questions about your network, and then follow the instructions after the appropriate Yes or No response:

Question 1: Is ePrism installed on a different subnet than the workstations it will be serving (i.e., does a router separate ePrism from the workstations)?

• If No, you do not need to enter a static route. Go to Question 3.


Appendix 20

• If Yes, ePrism may require a static route in order to connect to those workstations. Go to Question 2.

Question 2: Does the gateway that connects ePrism to the other subnets have the same IP address as the default gateway you entered on line (D)?

• If Yes, you do not need to enter a static route. Go to Question 3.

• If No, you will have to provide ePrism with a static route to each network through its associated gateway. Enter that information below, and then go to Question 3.

Enter the IP Address for each gateway (usually a router or a switch) that connects to a subnet you want ePrism to monitor. Then enter the subnet and netmask that identify the workstations you want ePrism to monitor. If there are multiple gateways, enter their values to the right of line (K).

(K) Gateway IP Address: _______. _____ . _____. _____

(L) Subnet IP Address: _______. _____ . _____. _____

(M) Netmask: _______. _____ . _____. _____

Question 3: Does the network on which ePrism is installed use DNS servers that are on the same local subnet as ePrism, or reachable via the default gateway?

• If Yes, ePrism will not require a route to reach them.

• If No, you must add a static route to the subnet that the DNS server is located on. Refer to question 2 above.

Enter the IP address for each DNS server that resides on a different local subnet. Then enter the subnet and netmask IP addresses. If there are multiple DNS servers, use the margin space to enter those addresses.

(N) Name Server (DNS) Address: _______. _____ . _____. _____

(O) Subnet IP Address: _______. _____ . _____. _____

(P) Netmask: _______. _____ . _____. _____

Entering Static Routes in ePrism If you have determined that you need to add static routes for subnet gateways and DNS servers, you can do so at any time through the System Administration tool (Settings > Network > Routes). Refer to your ePrism Administrator’s Guide or the online help for instructions on entering static routes.


Appendix 21

Setup Screens This section provides a closer look at the configuration information entered in the setup wizard.

License Management

1. Verify that the serial number displayed on the registration screen matches the serial number written down on line (A).

2. Click Upload Key to open a dialog box for locating the registration file sent to you by St. Bernard. If you have not downloaded the email attachment to your local drive, do so now.

3. Browse to the downloaded registration file and click Open to upload the file. • Serial No. is the serial number of the ePrism appliance.

• Master Expiration is the expiration date of your current subscription.

If you purchased the antivirus and/or the spam filter list options, you will see descriptions and expiration dates listed for those options.

4. Click Next to continue to the next screen.


Appendix 22

Registration

1. Enter the administrator’s email and contact information in the Registration screen. The administrator is the person designated to configure ePrism and update mail filtering rules. Don’t forget to enter your correct email; this ensures that ePrism can contact you if a problem is encountered.



Appendix 23

Date and Time

1. In the Timezone list, select the correct time zone.

2. Set the time. You can do this manually, or you can synchronize ePrism with a Network Time Protocol (NTP) server.

• To set the time manually: Click Time and set the current time; then click Set Now.

• To synchronize ePrism with a NTP server: Click Use NTP and enter a valid IP address in the Server field.



Appendix 24

Administrator Settings

The default Admin Username value is set to “eprism” and cannot be changed.

1. Enter an Admin Password for the administrator.

2. Enter the password again in the Verify Password field to confirm the password. You will need this password the next time you log on to ePrism.



Appendix 25

Network Settings

1. In the Mode list, select the Ethernet option that defines your network. The options are: • Auto – Automated detection process that determines the type of network you

have. This is the recommended setting (see note below for more information).

• 10BaseT/UTP/full duplex – 10Mbps network where data is transmitted and received over the same channel simultaneously.

• 10BaseT/UTP – 10Mbps network where data is transmitted in both directions, but only one direction at a time.

• 100BaseT/UTP/full duplex – 100Mbps network where data is transmitted and received over the same channel simultaneously.

• 100BaseT/UTP – 100Mbps network where data is transmitted in both directions, but only one direction at a time.

Note Auto mode allows ePrism to automatically negotiate the best Ethernet connection. However, this will work only if the hub or switch to which ePrism is connected is also set to auto-detect mode. If ePrism and the hub/switch are not set to the same mode, communication errors will occur.


Appendix 26

2. In the IP Address field, the IP address defaults to the address you entered in the IP Address wizard. This is the address of the ePrism unit.

3. In the Netmask field, the network mask defaults to the value you selected in the IP Address wizard.

4. In the Default Gateway field, enter the default gateway IP address from line (D). This is the IP address of the device (usually a router) that lies between the logical network (subnet) and the Internet. This address should be on the same logical network as ePrism. The route specifies the location on the network through which all externally routed traffic passes.



Appendix 27

Name Service Settings

1. In the Hostname field, enter a host name/domain (e.g., eprism.example.com) for the ePrism appliance. This is the value you entered on line (E). The host name is the logical name assigned to a computer.

Note For maximum acceptance by Internet mail servers, it is recommended that the ePrism hostname have a forward AND reverse mapping, and that they match. For example, the IP address that a forward lookup returns (eprism.example.com => 192.168.1.3) should return the same domain name from a reverse lookup (192.168.1.3 => eprism.example.com).

2. In the Nameserver field, enter the IP address of the DNS server. This is the value you entered on line (F). The nameserver is a network server that translates domain names into IP addresses.



Appendix 28

Trusted Internal Network

Specify the range of host IP addresses on the internal network. These are the hosts for which ePrism will filter email. Additional host configuration is available once the setup process has been run.

1. Enter a Name to describe the range of trusted hosts. The administrator can set up additional ranges after running the initial setup process.

2. Enter Low IP and High IP addresses to define the range of addresses. These are the values you entered on lines (G) and (H).



Appendix 29

Email Domain Map

Tell ePrism where to send inbound email that is destined for your primary email domain.

1. In the Email Domain field, enter the domain of the email server. This is the value you entered on line (I).

2. In the Email Server IP field, enter the internal email server’s IP address. This is the value you entered on line (J).



Appendix 30

ePrism Spam Policy

ePrism’s eGuard anti-spam engine always identifies and rejects obvious spam, with extremely low false-positive rates. Additionally, you can define how ePrism should handle remaining messages, including your organization’s desired email messages, and the unwanted messages that eGuard’s conservative processing could not positively identify as spam. Select one of the following policies:

• Tag and Pass – this option delivers messages, adding a subject tag (defined in the Subject Tag field) to messages that are likely spam.

• Light Filtering – this option rejects messages when ePrism’s heuristics-based processing determines the message is likely spam. Other messages (non-spam and possible spam) are delivered with no subject tagging performed.

• Heavy Filtering – this option rejects messages when ePrism’s heuristics-based processing determines the message is likely to be spam, even if it cannot positively identify it as spam All other messages are delivered with no subject tagging performed.


Appendix 31

Finishing the Setup Wizard After you complete the wizard, a summary screen appears, giving you the option of saving the settings or going back to make changes. If you save the wizard settings, you can make changes at any time through ePrism’s System Administration window.


Appendix 32

Testing Wizard Configuration After you complete the email domain settings, ePrism runs through a self-test process that verifies ePrism’s configuration. If any of the test parameters fail, you can go back and change settings in the wizard screens, or you can close out of the test window and make changes at another time through ePrism’s System Administration tool.

Note ePrism will also send a test “welcome” email to the email address defined in the Administrator Settings screen of the setup wizard. Outbound emails can be tested from email clients on the trusted network.

CORPORATE ADDRESS15015 Avenue of ScienceSan Diego, CA 92128 USAToll Free: 800-782-3762Telephone: 858-676-2277Fax: 858-676-2299Email: [email protected]: www.stbernard.com

EUROPEAN ADDRESSUnit 4, Riverside WayWatchmoor Park, Camberley,Surrey GU15 3YQ, United KingdomTelephone: +44 (0) 1276-401640Support Telephone: +44 (0) 1276-401642Fax: +44 (0) 1276-684479Email: [email protected]

EPInstallGuide0605© 2004-2005 St. Bernard Software Inc. All rights reserved. The St. Bernard Software logo is a trademark of St. Bernard Software Inc. ePrism is a registered trademark of St. Bernard Software Inc.All other trademarks and registered trademarks are hereby acknowledged.

Protecting Your Network InvestmentProtecting Your Network Investment

WWW.STBERNARD.COM • 1-800-782-3762

ePrism Installation Guide

M 5 0 0

Documents

ePrism install guide - EdgeWave · Phase 3: Configuring ePrism ... Phase 5: Final Configuration ... Any administrator with basic networking knowledge can install ePrism