Membuat Server Repository Lokal Zimbra OSE 8.8.15 di Centos 7
Membuat Server Repository Lokal Zimbra OSE 8.8.15 di Centos 7, digunakan sebagai alternative apabila tidak bisa mengakses repository zimbra. Biasanya di karenakan ip public server terblok oleh server repository zimbra. Bisa saja solusinya dengan mengganti IP Public yang lain atau melalui proxy. Tapi itu apabila tersedia. Server repository lokal zimbra lebih baik di install pada site terpisah dari lokasi server zimbra. seperti VPS, Cloud Server dll. Berikut cara mendeteksi, apabila server yang akan di-install zimbra di blok ip public nya oleh server repository zimbra.
Cek Akses Repository Zimbra
Masukkan perintah berikut untuk melakukan pengecekkan
1 | curl https://repo.zimbra.com/rpm/87/rhel7/repodata/repomd.xml |
Apabila muncul seperti berikut berarti server bisa mengambil package ke repository zimbra, tidak perlu membuat server repository sendiri.
01 02 03 04 05 06 07 08 09 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 | <?xml version="1.0" encoding="UTF-8"?> <revision>1569581769</revision><data type="filelists"> <checksum type="sha256">f6961c373a2208dbb00b1e59c4a45c57c61af85d20407dde0b6be68a263688bf</checksum> <open-checksum type="sha256">377702acb86891cb54417567c43b011261fc214ccbe981078028c976314799ab</open-checksum> <location href="repodata/f6961c373a2208dbb00b1e59c4a45c57c61af85d20407dde0b6be68a263688bf-filelists.xml.gz"/> <timestamp>1569581771</timestamp> <size>235492</size> <open-size>2845170</open-size></data><data type="primary"> <checksum type="sha256">c79d8cf513fa5c6d6655947fd1f4dfc3ca014a4700a744e23977f799d8b89d76</checksum> <open-checksum type="sha256">6081459cde550e94c879c427b19f360e37337bfa8374932d8f6065b75762d20e</open-checksum> <location href="repodata/c79d8cf513fa5c6d6655947fd1f4dfc3ca014a4700a744e23977f799d8b89d76-primary.xml.gz"/> <timestamp>1569581771</timestamp> <size>97562</size> <open-size>799984</open-size></data><data type="primary_db"> <checksum type="sha256">e7e5c6f24ff37305ec7db121c066c91b2c84b42e45c3bf3a001a93360830efef</checksum> <open-checksum type="sha256">f2cfee4b417170fb324dde6a71a02eb3806a9da14d9ad7aadeeb328066035f11</open-checksum> <location href="repodata/e7e5c6f24ff37305ec7db121c066c91b2c84b42e45c3bf3a001a93360830efef-primary.sqlite.bz2"/> <timestamp>1569581772</timestamp> <database_version>10</database_version> <size>140021</size> <open-size>773120</open-size></data><data type="other_db"> <checksum type="sha256">d27a6ae860716f397b20e7cc2a1dc629a4e994ed8c4af47b2f55896c362357d1</checksum> <open-checksum type="sha256">2f84276ba5a8851871b475f7e7a592d7b6b1a6db9d32f855216878a5dc95887f</open-checksum> <location href="repodata/d27a6ae860716f397b20e7cc2a1dc629a4e994ed8c4af47b2f55896c362357d1-other.sqlite.bz2"/> <timestamp>1569581771</timestamp> <database_version>10</database_version> <size>40223</size> <open-size>154624</open-size></data><data type="other"> <checksum type="sha256">c858284a272fc99633c2157a1e455cb3fc4344603fae7f3b25f3e9f7220e126e</checksum> <open-checksum type="sha256">c1bccf5eaa6490c389459a028e0bb86d5d3fcd865f21f24e5d80b77a772da3f1</open-checksum> <location href="repodata/c858284a272fc99633c2157a1e455cb3fc4344603fae7f3b25f3e9f7220e126e-other.xml.gz"/> <timestamp>1569581771</timestamp> <size>32764</size> <open-size>177832</open-size></data><data type="filelists_db"> <checksum type="sha256">ff1ae7d10ee21bbc0c322ccc516687a22f657385793388e9e2aa6c07a0dabb71</checksum> <open-checksum type="sha256">3c19127fbf9d9e97d810d1d908dbc650e73152e2dc869a0c9a0080dca87d8e8b</open-checksum> <location href="repodata/ff1ae7d10ee21bbc0c322ccc516687a22f657385793388e9e2aa6c07a0dabb71-filelists.sqlite.bz2"/> <timestamp>1569581772</timestamp> <database_version>10</database_version> <size>281424</size> <open-size>1262592</open-size></data></repomd> |
Cara Membuat Server Repository Lokal Zimbra OSE 8.8.15 di Centos 7
Info Server:
hostname= repo.saad.my.id
ip public= 111.222.333.444
Spesifikasi:
1 CPU Core
1 GB RAM
25 GB HDD
1. Buat A record pada DNS Public dengan hostname repo.saad.my.id pointing ke ip public 111.222.333.444
2. Ubah timezone
1 | timedatectl set-timezone Asia/Jakarta |
3. Ubah hostname server
1 | hostnamectl set-hostname repo.saad.my.id |
4. Install epel repository
1 | yum install epel-release -y |
5. Install python
1 | yum install python-pip -y |
6. Install Amazon Web Services CLI
1 | pip install awscli |
7. Buat Directory Repositories dan masuk ke directory Repositories
1 2 | mkdir /var/repositoriescd /var/repositories |
8. Cloning packages dari Official Repository Zimbra
1 2 | aws s3 sync s3://repo.zimbra.com/rpm/87 ./rpm/87 --no-sign-request --deleteaws s3 sync s3://repo.zimbra.com/rpm/8815 ./rpm/8815 --no-sign-request --delete |
9. Install cerbot Let’s Encrypt
1 | yum install certbot-nginx -y |
10. Install nginx
1 | yum install nginx -y |
11. Jalankan nginx
1 2 | systemctl start nginxsystemctl enable nginx |
12. Ubah /etc/nginx/nginx.conf
1 | vi /etc/nginx/nginx.conf |
– ubah server_name _; menjadi server_name repo.saad.my.id;
– beri (#) pada root /usr/share/nginx/html;
– tambahkan root /var/repositories; seperti berikut kemudian simpan
01 02 03 04 05 06 07 08 09 10 11 12 13 14 15 16 17 18 19 20 21 | server { listen 80 default_server; listen [::]:80 default_server; server_name repo.saad.my.id; #root /usr/share/nginx/html; root /var/repositories; # Load configuration files for the default server block. include /etc/nginx/default.d/*.conf; location / { } error_page 404 /404.html; location = /40x.html { } error_page 500 502 503 504 /50x.html; location = /50x.html { } } |
13. Verifikasi sintak nginx
1 | sudo nginx -t |
14. reload nginx
1 | systemctl reload nginx |
15. Install, start dan enable firewalld
1 2 3 | yum install firewalld -ysystemctl start firewalldsystemctl enable firewalld |
16. Open akses service http dan https
1 2 | firewall-cmd --permanent --zone=public --add-service=httpfirewall-cmd --reload |
17. Disable SELinux
1 | vi /etc/selinux/config |
ubah enforcing menjadi disabled, seperti di bawah ini, kemudian simpan
01 02 03 04 05 06 07 08 09 10 11 | # This file controls the state of SELinux on the system.# SELINUX= can take one of these three values:# enforcing - SELinux security policy is enforced.# permissive - SELinux prints warnings instead of enforcing.# disabled - No SELinux policy is loaded.SELINUX=disabled# SELINUXTYPE= can take one of three values:# targeted - Targeted processes are protected,# minimum - Modification of targeted policy. Only selected processes are protected.# mls - Multi Level Security protection.SELINUXTYPE=targeted |
masukan perintah berikut untuk disable tanpa restart
1 | setenforce 0 |
18 auto cloning official repository zimbra menggunakan crontab
1 | crontab -e |
tambahkan berikut pada baris paling bawah
1 2 | 30 3 * * * /usr/bin/aws s3 sync s3://repo.zimbra.com/rpm/87 /var/repositories/rpm/87 --no-sign-request --delete30 3 * * * /usr/bin/aws s3 sync s3://repo.zimbra.com/rpm/8815 /var/repositories/rpm/8815 --no-sign-request --delete |
Pada Server zimbra yang menggunakan repository local zimbra
1. Buat file dengan nama zimbra.repo
1 | vi /etc/yum.repos.d/zimbra.repo |
dan isi dengan berikut:
01 02 03 04 05 06 07 08 09 10 | [zimbra]name=Zimbra RPM Repositorybaseurl=http://repo.saad.my.id/rpm/87/rhel7gpgcheck=1enabled=1[zimbra-8815-oss]name=Zimbra New RPM Repositorybaseurl=http://repo.saad.my.id/rpm/8815/rhel7gpgcheck=1enabled=1 |
2. Import public.key zimbra
1 | rpm --import https://files.zimbra.com/downloads/security/public.key |
3. Ketika install zimbra ketik ‘n’ enter pada bagian berikut
1 | Use Zimbra's package repository [Y] n |
Selesai, Semoga bermanfaat
Berikut layanan yang ada di saadwebid terkait zimbra
Layanan Jasa Maintenance Zimbra
Layanan Jasa Migrasi Zimbra Mail Server
VPS/Cloud Zimbra
SSL Zimbra Mail Server
SMTP Relay
Layanan Antivirus, Antispam dan Antimalware
