Getting Started

Configure the Extension Interface Language

Most of the non-english language files are currently machine translated. You can change the interface language under Settings -> Application Settings -> Locale. We are currently looking for translators to fix any of the errors in the translations. If you are a native speaker of the language and want to help out then open a support ticket though our client area. Volunteers will get a free license for every Plesk extension that they help translate.

Get a MaxMind License Key

Warden uses the GeoLite2 databases from MaxMind. MaxMind requires that you signup to get a free license key from them in order to download and use their geolocation databases:

  1. Signup for the free license key here.
  2. Generate a license key here (When asked - Will this key be used for geoipupdate? Choose: no)
  3. Navigate to Warden Antispam and Virus Protection -> Settings -> Geolocation Settings and enter the license key under MaxMind license key. (It may take up to 15 minutes before MaxMind will recognize a newly created API key).

Open Firewall Ports

All of the network based tests (Razor, Pyzor, DCC) that Warden uses must be opened on the firewall otherwise the network based tests will not work and the ability for Amavis to detect spam will be severely reduced.

Juggernaut Firewall
If you are using Juggernaut Firewall then the required ports used by Warden are already opened by default.

External Firewall or Third Party Extension
If you are using an external firewall or other third party firewall extension (like Imunify360) then the following ports will need to be manually opened.

  1. Razor requires that port 2703 TCP OUT be opened.
  2. Pyzor requires that port 24441 UDP IN / OUT be opened.
  3. DCC requires that port 6277 UDP OUT be opened.

Plesk Firewall
If you are using Plesk's firewall then the ports should be added automatically when you ran the installer under Warden -> Settings -> Application Setup. When using the Plesk firewall it must be enabled before you go though the Application setup or the rules will not be added.

Configure DNSBLs

The barracudacentral.org DNSBL requires registration of administrator and hosts to use. See: http://www.barracudacentral.org/account/register

  1. Navigate to Tools & Settings -> Mail Server Settings -> DNS zones for DNSBL service.
  2. We recommend adding the following DNSBls: b.barracudacentral.org;zen.spamhaus.org;bl.spamcop.net;psbl.surriel.com;spam.spamrats.com.

Enable Greylisting

Before enabling greylisting it is important to whitelist mail providers that send from multiple IP address and adjust the default blacklist patterns. See here for more information.

Greylisting will tell the mail server to temporarily reject any email from a sender it does not recognize. If the mail is legitimate, the originating server will try again after a delay, and if sufficient time has elapsed, the email will be accepted.

  1. Navigate to Warden -> Settings -> Greylisting Settings.
  2. Check the greylisting option.
  3. Click the Update button to save your settings.

Configure Rule Updates

Enable the KAM ruleset to provide a significant boost to the performance and efficacy of a stock installation of SpamAssassin.

  1. Navigate to Warden -> Settings -> Rule Updates.
  2. Under Rule Updates check the KAM ruleset option to enable the ruleset.
  3. Click the Update button to save your settings.

Configure Locale Settings

Specify which locales are considered OK for incoming mail. Mail using the character sets that are allowed by this option will not be marked as possibly being spam in a foreign language. If you receive lots of spam in foreign languages, and never get any non-spam in these languages, this may help.

  1. Navigate to Warden -> Settings -> Locale Settings.
  2. Under Locale Settings select the locales you want to enable. Most users will only need Western character sets in general checked.
  3. Click the Update button to save your settings.

Configure Network Settings

  1. Navigate to Warden -> Settings -> Network Settings.
  2. Under Trusted Networks enter what networks or hosts are "trusted" in your setup. Trusted in this case means that relay hosts on these networks are considered to not be potentially operated by spammers, open relays, or open proxies. A trusted host could conceivably relay spam, but will not originate it, and will not forge header data. DNS blacklist checks will never query for hosts on these networks.
  3. Click the Update button to save your settings.

Configure the TextCat Plugin

  1. Navigate to Warden -> Plugin Settings and make sure that the TextCat plugin is enabled.
  2. Navigate to Warden -> Plugin Settings -> TextCat.
  3. Select the OK Languages you and your clients recieve and send email for.
  4. Click the Update button to save your settings.

Configure the RelayCountry Plugin

This plugin requires the Perl Module GeoIP2::Database::Reader (Spamassassin 3.4.2 or newer).

  1. Navigate to Warden -> Plugin Settings and make sure that the RelayCountry plugin is enabled.
  2. Navigate to Warden -> Plugin Settings -> RelayCountry.
  3. Select the Bad relay countries for countries you and your clients would never expect to get email from.
  4. Click the Update button to save your settings.

Configure the URILocalBL Plugin

This plugin requires the Perl Module GeoIP2::Database::Reader (Spamassassin 3.4.2 or newer).

  1. Navigate to Warden -> Plugin Settings and make sure that the URILocalBL plugin is enabled.
  2. Navigate to Warden -> Plugin Settings -> URILocalBL.
  3. Select the Bad URI countries or Bad URI continents for countries or continents that you and your clients would never expect links in emails to be hosted from (Selecting Africa and South America is a good start).
  4. Click the Update button to save your settings.

Configure the DCC Plugin

DCC is not installed by default because it is not open source but is still highly recommended. We recommend that you install and setup DCC so that you can use it:

See: https://docs.danami.com/warden/user-guide/antispam-plugins/dcc

Get ClamAV Third Party Signatures

ClamAV supports adding free third party anti-virus signatures to ClamAV. This is optional but recommended as it will greatly enhance ClamAV's detection rate.

  1. Follow the instuctions here.