Comodo MyDLP

How to Guide
MyDLP Exchange Configuration

1. Content
This document contains information for configuration existing email server with Comodo
MyDLP

2. Required tools for modifying configuration file

Putty (http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html)
WinSCP (http://winscp.net/eng/download.php)

3. Requirements

This article already assumes that you have installed MyDLP and DLP functions
working properly.
It is required to ensure that DNS addresses at /etc/resolve.conf of MyDLP server had
been properly configured. This is crucial because all email will be re-routed after DLP
inspection according to information gathered from these DNS servers.
This article already assumes that your Exchange Server is able to send emails
externally, and so it must have a Send Connector properly set up and configured
correctly on the Hub Transport Server. And so we only need to configure the settings
on that Send Connector.

4. Adding Server IP to MyDLP Configuration File (main.cf)

Please follow the steps below to configure main.cf to allow connections from the email
server
1. Open a SSH session to the MyDLP Server. You can use Putty to do this on Windows
or the SSH command line tool under GNU/Linux or Mac OSX.
2. For windows run Putty, then enter the IP address of the server.
3. Connect to MyDLP server by clicking on Open button. (Under the other platforms
use ssh l <username> <mydlpserverip> )

4. Enter your login name login as

login as:enter your username
5. Enter your password
6. You should grant root privilege to make change on configuration file therefore please
run following command sudo su -
mydlp@mydlp01:~$
mydlp@mydlp01:~$ sudo su -

7. Type your password when prompted

mydlp@mydlp01:~$ sudo su [sudo] password for mydlp:
8. Open the main.cf file by typing the following in terminal window
root@mydlp01: :~$ pico -t /etc/postfix/main.cf
9. By default, postfix will forward mail from clients in authorized network blocks to any
destination. Authorized networks are defined with the mynetworks configuration
parameter. The default is not to authorize all clients/servers in IP subnetworks that
local machines is attached to. Therefore please add your email server IP to
mynetworks section to grant access to MyDLP Server.
For example, assume that your email server IP is 10.100.136.206 and subnet is
255.255.255.0 Please add it with following format.
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 10.100.136.206/24

10. Save and exit exit from the configuration file (main.cf) with CTRL+X key
combination
11. Restart the postfix service to make changes effective using following command
root@mydlp01:~# /etc/init.d/postfix restart

5. Exchange Server Configuration

1. Log in to Exchange Server
2. Open Exchange Management Console from start menu

3. Click on (+) to expand menu next to Organization Configuration

4. Select Hub Transport and select the Send Connector tab

5. Right click on the existing Send Connector , then select properties

6. Choose Network tab

7. Select Route mail through the following smart host then click Add

8. Choose radio button labelled IP Address then enter IP address of your MyDLP Serve
9. Click OK*

*The changes youve made

should take effect without
having to restart any
services for Microsoft
Exchange.