Open-Xchange Server in Distributed Environments

Similar documents
bla bla Open-Xchange Server Mobile Web Interface User Guide

bla bla Using Clients User Guide

bla bla Groupware Brief Guide for OX6 Users

Match My . Set-Up Guide. Single Match Version Single Match Set-Up Guide RAE Internet Inc

bla bla OX App Suite Synchronizing Appointments and Contacts with CalDAV and CardDAV

Match My . Set-Up Guide for Single Match version for all editions of Salesforce.com. Single Match Version 3.1.2

Match My . Set-Up Guide. for Professional and Group Editions. of Salesforce.com. MultiMatch Version 2.3.3

Match My . Set-Up Guide. MultiMatch Version Match My Set-Up Guide RAE Internet Inc

Set-Up Guide for Lightning Experience of Salesforce.com

Set-Up Guide for Classic Salesforce.com

Match My . Set-Up Guide. for Professional and Group Editions. of Salesforce.com. MultiMatch Version 2.3.4

Set-Up Guide for Lightning Edition of Salesforce.com

OX App Suite Major Release v7.2. v1.3 /

Match My . Set-Up Guide for Group and Professional Editions of Salesforce.com. MultiMatch Version 4.0.2

WebADM and OpenOTP are trademarks of RCDevs. All further trademarks are the property of their respective owners.

Match My . Set-Up Guide. for Professional and Group Editions. of Salesforce.com. MultiMatch Version

OPEN-XCHANGE SERVER Oxtender for Mi- crosoft Outlook

Match My . Set-Up Guide for Enterprise and Unlimited Editions of Salesforce.com. MultiMatch Version 3.1.2

bla bla OX App Suite User Guide

bla bla Groupware Compact Guide

Set-Up Guide for MultiMatch Group and Professional Editions (Salesforce Classic)

5047 : Introduction to Installing and Managing Microsoft Exchange Server 2007

BlackBerry Enterprise Server for Microsoft Exchange Version: 5.0. Feature and Technical Overview

Introduction to Installing and Managing Microsoft Exchange Server 2007 (Course 5047A)

Open-Xchange Server Service Pack 1 (SP1)

IBM Tivoli Directory Server

Double-Take Software

bla bla Groupware User Guide

BlackBerry Enterprise Server for IBM Lotus Domino Version: 5.0. Feature and Technical Overview

Module 7: Implementing Sites to Manage Active Directory Replication

Microsoft Exam

You can find more information about the service at

WANSyncHA Microsoft Exchange Server. Operations Guide

Major New Features and Enhancements for 6.0

User Manual. Admin Report Kit for Exchange Server

Installation and Configuration Guide

LifeSize Control Installation Guide

Kaspersky Anti-Virus 8.0 for Lotus Domino Administrator s Guide

Polarion Enterprise Setup 17.2

OPEN-XCHANGE SERVER. OXtender 2 for Microsoft

bla bla OX App Suite User Guide

Novell GroupWise Migration Utility for Microsoft * Exchange

Release Notes. PREEvision. Version 6.5 SP14 English

Migrating BlackBerry-enabled mailboxes from Microsoft Exchange 5.5 to Microsoft Exchange 2000

CA ARCserve Replication and High Availability for Windows

Introduction to Installing and Managing Microsoft Exchange Server 2007

Perforce Defect Tracking Gateway Guide

BlackBerry Enterprise Server for IBM Lotus Domino Version: 5.0. Administration Guide

Oracle Streams. An Oracle White Paper October 2002

Configuring Managing and Troubleshooting Microsoft Exchange Server 2010

vsphere Installation and Setup Update 2 Modified on 10 JULY 2018 VMware vsphere 6.5 VMware ESXi 6.5 vcenter Server 6.5

Installation Guide. CompanyCRYPT v1.4.5

SIOS Protection Suite for Linux v Postfix Recovery Kit Administration Guide

Arcserve Replication and High Availability

Migrating from IBM Lotus Domino to Zimbra Collaboration Suite

Important Information

Agenda. What is Replication?

NetIQ Identity Manager Notification Guide. Febraury 2018

COPYRIGHTED MATERIAL. Contents

Installation Guide. CompanyCRYPT v1.4.5

Planning and Preparation. VMware Validated Design 4.0 VMware Validated Design for Remote Office Branch Office 4.0

Polarion 18 Enterprise Setup

Active Directory trust relationships

vcenter Server Installation and Setup Update 1 Modified on 30 OCT 2018 VMware vsphere 6.7 vcenter Server 6.7

Configuring, Managing and Troubleshooting Microsoft Exchange Server 2010

fpafi/tl enterprise Guide IBM Lotus Notes 8.5 User effectively and efficiently I I IV I I professional expertise distilled

A Guide to Architecting the Active/Active Data Center

DocAve for Salesforce 2.1

bla bla Groupware User Guide

Deployment. Chris Wilson, AfNOG / 26

FindMe. Cisco TelePresence Deployment Guide Cisco VCS X6 D

GroupWise Coexistence Solution for Exchange Installation and Configuration Guide. December 2017

ACS 5.x: LDAP Server Configuration Example

High Availability and Disaster Recovery Solutions for Perforce

How To Test Smtp Services Manually In Windows Server 2008 R2

Cisco Unified Messaging Gateway

Grandstream Networks, Inc. HA100 High Availability Kit for UCM6510 User Manual

What s New in VMware vsphere Availability

Veritas ediscovery Platform

Overview and Benefits of SEEBURGER AS2 Spokes. Trading Partner Integration Using SEEBURGER'S BIS:AS2 Spoke

Partitioning and Formatting Guide

File Protection Whitepaper

New England Data Camp v2.0 It is all about the data! Caregroup Healthcare System. Ayad Shammout Lead Technical DBA

Technical Note. Dell/EMC Solutions for Microsoft SQL Server 2005 Always On Technologies. Abstract

Enterprise Vault Setting up SMTP Archiving 12.3

User Manual Customer Interaction Express 3.3 Archiving

Enterprise Linux Network Services (GL275) H7092S

Performance Counters. Microsoft Exchange. Technical Data Sheet. Overview:

Workforce Management Administrator's Guide. MS SQL Database Replication

ETSI TR V1.1.1 ( )

Aras Innovator 11. Backup and Recovery Procedures

MSP/ISP Multi-Tenant Archiving Platform Online Deployment Customer Activation 10-Step Quick Guide

File Protection Whitepaper

Whitepaper: Back Up SAP HANA and SUSE Linux Enterprise Server with SEP sesam. Copyright 2014 SEP

Microsoft SQL Server Database Protection Using EqualLogic Auto-Snapshot Manager / Microsoft Edition

Configuration Guide Data Synchronizer Mobility Pack Connector for Mobility January 28, 2013

Software Paradigms (Lesson 10) Selected Topics in Software Architecture

Storage Made Easy. Mirantis

Domino Integration DME 4.6 IBM Lotus Domino

WHITEPAPER A Selection Guide to Binary Tree s Directory Synchronization Software

Transcription:

OPEN-XCHANGE Whitepaper Open-Xchange Server in Distributed Environments v1.01

Copyright 2005-2006, OPEN-XCHANGE Inc. This document is the intellectual property of Open-Xchange Inc., Tarrytown, NY, USA The document may be copied in whole or in part, provided that each copy contains this copyright notice. The information contained in this book was compiled with the utmost care. Nevertheless, erroneous statements cannot be excluded altogether. Open-Xchange Inc., the authors and the translators are not liable for possible errors and their consequences. The names of software and hardware used in this book may be registered trademarks; they are used without guarantee of free usability. Open-Xchange Inc. generally follows the spelling conventions of the manufacturers. The reproduction of brand names, trade names, logos etc. in this book (even without special marking) does not justify the assumption that such names can be considered free (for the purposes of trademark and brand name regulations). Please direct any recommendations or comments to documentation@open-xchange.com Author: Editors: Layout: Stephan Martin Robert Colombara, David Cuthbert Robert Colombara Copyright 2005-2006, OPEN-XCHANGE Inc. - 2 -

Contents 1. Introduction... 4 2. Architecture Overview, Concepts... 5 2.1. Requirements... 5 2.2. Open-Xchange Architecture... 5 2.3. Multiple Location Concept... 6 2.3.1. Normal Operation... 6 2.3.2. Failure Operation... 7 3. Service Configuration... 8 3.1. Open-Xchange Services... 8 3.2. OpenLDAP Replication... 8 3.3. PostgreSQL Replication... 9 4. Administration... 10 4.1. Domain Setup...10 4.2. User Configuration...10 Open-Xchange Distributed Whitepaper v1.01-3 - Introduction

1. Introduction Open-Xchange Server 5 is an Open Source-based, full featured Messaging and Collaboration solution that runs on Linux. The architecture of Open-Xchange Server 5 is completely based on open standards and open protocols and makes use of well known open source services, which are included in the common Linux enterprise distributions, as back-ends. This whitepaper describes how an Open-Xchange Server can be set up on top of the mentioned Linux services to maximize collaboration capabilities, even across network boundaries and multiple office locations. Although the Open-Xchange server is able to run in multiple locations, the administration of a system with multiple networks and data replication is a complex task. Therefore the system s administrator should have solid experience with the administration of Linux servers and network infrastructures. Solid knowledge of TCP/IP, Directory Services, DNS and mail routing is required to understand the underlying concepts and cannot be covered in this paper. Copyright 2005-2006, OPEN-XCHANGE Inc. - 4 -

2. Architecture Overview, Concepts This chapter describes the system requirements for a multi location setup and the basic steps to take to meet these requirements. 2.1. Requirements Efficient usage of a collaboration system across multiple office locations brings some requirements: The complete functionality of Open-Xchange Server should be available over each of the multiple locations including methods for conflict handling and collision detection e.g. during the creation of appointments The network load on the WAN connections between the different locations needs to be minimized to avoid unnecessary waiting times for the user The effect of broken WAN connections between the different locations needs to be minimized so that maximum usability is possible in every location even when the WAN connection is broken The consistency of the data in all locations needs to be guaranteed 2.2. Open-Xchange Architecture The Open-Xchange Server 5 consists of the Open-Xchange Application server, which contains the application logic and which does the main processing work. All data is stored by back-end services each of which is specially designed to store a particular type of data. There are four principal types of data storage: Directory Service (LDAP) Database (SQL) Email (IMAP/SMTP) File System Figure 1: Subsystems inside of the Open-Xchange Server Open-Xchange Distributed Whitepaper v1.01-5 - Architecture Overview, Concepts

This architecture permits use of the Open-Xchange Server in multiple locations and delegates the replication of the data to the underlying back-end services, which store the data. 2.3. Multiple Location Concept The setup for multiple locations with Open-Xchange Server is a hub - spoke model that uses a central location to control several external locations. The central location runs a read-write instance of the directory server and of the database. All other locations run replicated slaves which are to be accessed read-only. 2.3.1. Normal Operation Figure 2: Replication of LDAP Entries during normal Operation This concept delivers the following functionality during normal operation: Every user is able to collaborate with every other user without any boundaries (create group appointments, read shared folders, work with public folders,...) Collision handling and Free-Busy is completely supported between all locations due to the central master database instance Consistency of the user data is assured due to the control provided by the central, master LDAP instance Read access in the external locations is fast and cheap through access to the local replicated slave LDAP and database Email is stored locally, relative to the user s location; it is not necessary to transfer large emails or attachments over the WAN, when the user accesses his email Complete configuration and mail routing information is stored in one LDAP directory with the same layout for all locations. Every location is able to send email directly to the target location without the need of a central relay server Copyright 2005-2006, OPEN-XCHANGE Inc. - 6 -

2.3.2. Failure Operation Figure 3: Operation with local Entities disconnected This concept delivers the following functionality during a failure, caused by network outages, between an external location and the central location: Users in still connected locations are able to do their work as usual without any interference Users in the external, disconnected locations can still read all their local data (appointments, tasks, contacts,...) Users in disconnected locations cannot write any data though. This is not only due to technical restrictions because the link is down. It would not be possible even if a full multi-master mechanism was used for the directory or the database. If the link is down it is not possible to do sufficient conflict resolution checking while writing data. If the written data was successfully queued by a replication subsystem, the user would see a positive result while the connection was down. When the connection was restored and the data is submitted to the servers the user could easily miss warning or error notifications. This means that it would not be possible to guarantee conflict avoidance. System administration will not be possible from the disconnected location for the same reasons mentioned above. Open-Xchange Distributed Whitepaper v1.01-7 - Architecture Overview, Concepts

3. Service Configuration This chapter gives some hints and examples on how to configure the Open- Xchange Services and the underlying back-end services to run in a multi-location setup Basically only a few simple steps need to be done: 1. Install all machines with the same parameters regarding domains, etc. Ensure, that every location has a sub domain name under your main domain like location1.test.tux and location2.test.tux 2. Configure the Open-Xchange services in the external locations to use the central server for write accesses to the database and the LDAP directory 3. Configure the LDAP server and the database server in the external location to work as slave replicates from the central server. Note: This concept relies on persistent replication. Any data changed in the external location will be written from the slave server directly to the master server. The slave still depends on instant local availability of the data. This means that a scheduled replication mechanism synchronizing the servers in time slices is not sufficient. Real-time replication is necessary. 3.1. Open-Xchange Services The Open-Xchange services are enhanced in such a way that they can be configured to write to a different LDAP server or database server than the one that is used for read access. This is completely transparent to the user. For LDAP access, this is achieved through a second configuration file called ldapwrite.conf. It has the same syntax as the primary file ldap.conf. If this second file exists, the application server will separate the read from the write access. For database connections, the database access definitions in the file server.conf need to be duplicated. The duplicates of the variables will contain the string _WRITE_, e.g. NAS_WRITE_CON_CLASS_NAME. If these duplicated variables exist the application server will separate the read from the write access. 3.2. OpenLDAP Replication This whitepaper also gives some short hints about the ways to replicate OpenLDAP trees to different servers. There are two primary alternatives, both of which have their advantages and their disadvantages: Copyright 2005-2006, OPEN-XCHANGE Inc. - 8 -

slurpd Using the older mechanism, the master LDAP process slapd writes all changes to a log file. A separate server, slurpd runs for each replicated slave server. It reads the log file and applies all changes recorded in the log file to the slave server. The disadvantage of this system is that there is no initial sync. This means, every time, the process of replications starts, the contents of the database of master and slave need to be exactly the same. This sounds trivial, but has at least one serous side effect: in every case of a failure and a restart of the replication it is necessary to transfer a complete dump of the master database to the slave for initialization. The other main disadvantage of this mechanism is that the state of both systems is checked using the objects timestamps. This means that the replication process will move out of sync if the time on master and slave differs. The main advantage of this mechanism is that it has been used for quite a long time and it can be considered very stable when set up correctly. syncrepl SyncRepl is a new replication mechanism based on the standard LDAP replication protocol. In this case, the slave does a search on the master to locate all objects that should be replicated. The state shared between both servers is maintained by a cookie that is stored after each successful replication step. With this mechanism the slave will automatically be initialized if it is started in replication mode without any data. Since the initialization is done automatically, it makes recovery after a failure much easier to handle. The main disadvantage of this mechanism is that it is quite new in OpenLDAP and that it may eventually be considered to be less stable than the slurpd mechanism. 3.3. PostgreSQL Replication Replication of the PostgreSQL database can be achieved with the Open Source replicator slony. As slony is not available as package for either Red Hat or SUSE Linux, it may be necessary to build your own package for replication. Open-Xchange software partners who specialize in PostgreSQL database solutions can provide slony packages with maintenance and support. Open-Xchange Distributed Whitepaper v1.01-9 - Service Configuration

4. Administration This chapter will give some hints regarding the setup and administration of the system. The most important fact for administration is that the Open-Xchange administration front-end can be used on every server in the setup. However, to avoid the conflicts mentioned above, it is necessary to direct the write accesses from all of the administration front-ends to the central master server back-ends. This leads to the fact that administration is possible only as long as the communications link is up and the location is online. 4.1. Domain Setup Mail routing works in such a way that all email is stored locally, with respect to the user, on the server at his location. For this mail routing to work it is important to create one sub domain for each location that is only used for internal routing purposes. From an external point of view, all locations will receive and send email with the standard email addresses belonging to the users. The sub domains will not be exposed to any of the recipients; they are only used for internal routing purposes. In the following example, we have a company with the main domain test.tux. Only this domain is exposed in the external communication. This company has two locations. The central location has the internal sub domain central.test.tux and the external location has the internal sub domain external.test.tux. 1. These sub domains are created through the Open-Xchange administration front-end, just like normal domains. 2. A transport is created in the Open-Xchange administration front-end for all of the sub domains, which defines the IP address of the server that is responsible for the relevant sub domain. To allow this mail routing to work transparently for the users and without the need to configure every server in a different way, each server needs to have exactly the same information about every user and every domain. This is easily achieved through the LDAP server, which contains all necessary information and which is replicated to every location. 4.2. User Configuration The user configuration is straight forward. Each user needs three attributes to define his location and his email servers, a third attribute is dedicated to the multi location setup. Copyright 2005-2006, OPEN-XCHANGE Inc. - 10 -

All the email addresses that are assigned to the users are based on the standard top domain and not on the sub domains. These attributes are set through the Open-Xchange administration front-end. imapserver This attribute defines which IMAP server should be accessed from the Open- Xchange web front-ends. This attribute exists in every Open-Xchange installation and defaults to localhost. smtpserver This attribute defines which SMTP server should be accessed from the Open- Xchange web front-ends. This attribute exists in every Open-Xchange installation and defaults to localhost. colocrouteaddress This attribute is dedicated to the multi-location setup and contains two parameters in the form of an email address: the user's mailbox name on the local server where the user is physically located and the internal sub domain of the user s location. Example: user@external.test.tux. Postfix will resolve every email address or email alias for the user on every server in the setup to the location defined by this attribute. This means, in fact, that every server is able to forward the email to the server external.test.tux, where the user s mailbox is physically located. This server accepts the email locally and delivers it into the mailbox with the name 'user'. Open-Xchange Distributed Whitepaper v1.01-11 - Administration

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback