因為最近也有客戶有需求在Mail Server上執行IPv6,所以特別詢問了Openfind工程師是否已經支援IPv6,的確Mail2000也是支援IPv6,接下來就不多說廢話了,直接開始設定IPv6
1.確認系統是否支援IPv6
2.設定IPv6 IP & DNS IPv6
3.測試IPv6運作
4.設定Mail2000支援IPv6
5.測試Mail2000 IPv6服務運作是否正常
1.確認系統是否支援IPv6
CentOS 6.3 預設支援IPv6並且預設啟動
若發現系統預設沒有啟動IPv6,可載入IPv6 Module
2.
設定IPv6 IP & DNS IPv6
啟用IPv6通訊協定
# vi /etc/sysconfig/network
GATEWAY=192.168.20.254
NETWORKING=yes
NETWORKING_IPV6=yes
HOSTNAME=mail.example.com
新增IPv6 IP
# vi /etc/sysconfig/network-scripts/ifcfg-eth0
EVICE=eth0
TYPE=Ethernet
BOOTPROTO=none
IPADDR=192.168.20.4
NETMASK=255.255.255.0
DNS1=192.168.10.30
DNS2=168.95.1.1
IPV6ADDR=2001:b030:10c:20::4/64
IPV6_DEFAULTGW=2001:b030:10c:20::ffff
IPV6INIT=yes
ONBOOT=yes
重新啟動網路
# /etc/init.d/network restart
3.測試IPv6運作
查看IPv6 IP
# ifconfig eth0
eth0 Link encap:Ethernet HWaddr 00:50:56:83:6A:29
inet addr:192.168.20.4 Bcast:192.168.20.255 Mask:255.255.255.0
inet6 addr: 2001:b030:10c:20::4/64 Scope:Global
inet6 addr: fe80::250:56ff:fe83:6a29/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:2238 errors:0 dropped:0 overruns:0 frame:0
TX packets:2613 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:1620924 (1.5 MiB) TX bytes:2514309 (2.3 MiB)
查看路由表
# ip -6 route show dev eth0
2001:b030:10c:20::/64 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 0
fe80::/64 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 0
default via 2001:b030:10c:20::ffff metric 1 mtu 1500 advmss 1440 hoplimit 0
使用ping 遠端IP,確認IPv6網路是否正常
# ping6 -c 3 ipv6.google.com
64 bytes from 2404:6800:4008:c00::6a: icmp_seq=1 ttl=55 time=15.5 ms
64 bytes from 2404:6800:4008:c00::6a: icmp_seq=2 ttl=55 time=16.8 ms
64 bytes from 2404:6800:4008:c00::6a: icmp_seq=3 ttl=55 time=16.3 ms
--- ipv6.google.com ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2020ms
rtt min/avg/max/mdev = 15.553/16.250/16.800/0.540 ms
4.設定Mail2000支援IPv6
SMTPD (收信)
# vi /webmail/mqueue/conf/smtpd.conf
IPV6Enable= 1 (開啟) 0 (關閉)
BindV6IP= Listen IP
IPV6Enable=1
BindV6IP=2001:b030:10c:20::4
Mailerd (發信)
# vi /webmail/mqueue/conf/mailerd.conf
IPV6Enable= 1 (開啟) 0 (關閉)
IPV6Enable=1
POP3D
# vi /webmail/mqueue/conf/smtpd.conf
IPV6Enable= 1 (開啟) 0 (關閉)
BindV6IP= Listen IP
IPV6Enable=1
BindV6IP=2001:b030:10c:20::4
IMAP4D
# vi /webmail/imap4d/imap4d.conf
IPV6Enable= 1 (開啟) 0 (關閉)
BindV6IP= Listen IP
IPV6Enable=1
BindV6IP=2001:b030:10c:20::4
設定完成後,必須停止 & 啟動服務,目前無法使用重新啟動(會不生效),請注意停止SMTPD
# /bin/kill `cat /webmail/mqueue/log/smtpd.pid`
停止Mailerd
# /bin/kill `cat /webmail/mqueue/log/mailerd.pid`
停止POP3D
# /bin/kill `cat /webmail/pop3/pop3d.pid`
停止IMAP4D
# /bin/kill `cat /webmail/imap4d/imap4d.pid`
啟動SMTPD
# /webmail/mqueue/bin/smtpd
啟動Mailerd
# /webmail/mqueue/bin/mailerd
啟動POP3D
# /webmail/pop3/pop
啟動IMAP4D
# /webmail/pop3/pop
5.測試Mail2000 IPv6服務運作是否正常
# netstat -tunalp | grep ::
tcp 0 0 2001:b030:10c:20::4:993 :::* LISTEN
tcp 0 0 2001:b030:10c:20::4:995 :::* LISTEN
tcp 0 0 2001:b030:10c:20::4:110 :::* LISTEN
tcp 0 0 2001:b030:10c:20::4:143 :::* LISTEN
tcp 0 0 2001:b030:10c:20::4:25 :::* LISTEN
tcp 0 0 :::443 :::* LISTEN
檢查IP6TABLES 是否運作
# ip6tables -L -nv
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
使用Telnet 指令確認服務運作是否正常
SMTPD
# telnet <ipv6> 25
POP3D
# telnet <ipv6> 110 & 995
IMAP4D
# telnet <ipv6> 143 & 993
補充因為443 & 995 & 993 直接使用Telnet 指令無法測試(加密的關係),所以可以使用openssl 測試
SMTP over Starttls
# openssl s_client -starttls smtp -crlf -connect mail.example.com:25
POP3D & IMAP4D
# openssl s_client -connect mail.example.com:995
# openssl s_client -connect mail.example.com:993
Refer:
https://docs.google.com/a/imprezagt1031.idv.tw/file/d/0B9R2PJXwTMhrcXBCLTBzWklCdEU/edit?pli=1