Zimbra

Exchange ActiveSync for Zimbra Open Source Edition (Nginx Custom)

Posted by

This article was inspired by Stefan Seidel’s writing here: https://www.stefanseidel.info/Z-Push_on_Zimbra_8 . On previous article about Exchange ActiveSync for Zimbra Open Source Edition, I used Jetty with some modification. The Jetty custom need more effort if I do a patch or upgrade. I must adjust the Jetty file again to support Exchange ActiveSync. If you want to use Jetty custom, please follow this guidance: https://imanudin.net/2019/08/30/exchange-activesync-for-zimbra-open-source-edition/

When I use Nginx custom and do update patch/upgrade, I only need to customize Zimbra Nginx.

This guide has been tested on Ubuntu 20.04 with Zimbra 8.8.15 and Rocky Linux 8 with Zimbra 10. I am using Z-Push version 2.7.0 and Z-Push Zimbra Backend version 71.

# Ubuntu

Install dependencies

sudo apt -y install php php-cli php-soap php-mbstring php-curl php-fpm php-intl git

Modify php-fpm

vi /etc/php/7.4/fpm/pool.d/www.conf

Adjust line below as follows

listen = 127.0.0.1:9000

Enable and restart php-fpm

systemctl enable --now php7.4-fpm.service
systemctl restart php7.4-fpm.service

Create Z-Push directory

sudo mkdir /var/lib/z-push /var/log/z-push
sudo chmod 755 /var/lib/z-push /var/log/z-push
chown www-data.www-data /var/lib/z-push /var/log/z-push

Clone Z-Push + Z-Push Zimbra Backend

cd /opt/
git clone https://github.com/imanudin11/zimbra-zpush.git z-push

Note: I use Asia/Jakarta as my Timezone. Please open /opt/z-push/config.php and adjust/change Asia/Jakarta to your Timezone

Modify Template

vi /opt/zimbra/conf/nginx/templates/nginx.conf.web.https.default.template

Find line “location ^~ /Microsoft-Server-ActiveSync” and add below line before line “For audit”

# Z-Push start
include /opt/z-push/nginx-zpush.conf;
# Z-Push end

So, the final line looks like this

        # Proxy to Zimbra Upstream
        proxy_pass          ${web.upstream.target};
        proxy_read_timeout  ${web.upstream.polling.timeout};
        proxy_buffering     off;    

        # Z-Push start
        include /opt/z-push/nginx-zpush.conf;
        # Z-Push end

        # For audit
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

Save and restart Zimbra Proxy

su - zimbra -c 'zmproxyctl restart'

# CentOS/Rocky Linux

Install dependencies

sudo yum install php-cli php-soap php-process php-mbstring php-fpm php-curl php-json php-intl git -y

Modify php-fpm

vi /etc/php-fpm.d/www.conf

Adjust line below as follows

listen = 127.0.0.1:9000

Enable and restart php-fpm

systemctl enable --now php-fpm.service 
systemctl restart php-fpm.service

Create Z-Push directory

sudo mkdir /var/lib/z-push /var/log/z-push
sudo chmod 755 /var/lib/z-push /var/log/z-push
chown apache.apache /var/lib/z-push /var/log/z-push

Clone Z-Push + Z-Push Zimbra Backend

cd /opt/
git clone https://github.com/imanudin11/zimbra-zpush.git z-push

Note: I use Asia/Jakarta as my Timezone. Please open /opt/z-push/config.php and adjust/change Asia/Jakarta to your Timezone

Modify Template

vi /opt/zimbra/conf/nginx/templates/nginx.conf.web.https.default.template

Find line “location ^~ /Microsoft-Server-ActiveSync” and add below line before line “For audit”

# Z-Push start
include /opt/z-push/nginx-zpush.conf;
# Z-Push end

So, the final line looks like this

        # Proxy to Zimbra Upstream
        proxy_pass          ${web.upstream.target};
        proxy_read_timeout  ${web.upstream.polling.timeout};
        proxy_buffering     off;    

        # Z-Push start
        include /opt/z-push/nginx-zpush.conf;
        # Z-Push end

        # For audit
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

Save and restart Zimbra Proxy

su - zimbra -c 'zmproxyctl restart'

# Testing

Please access https://ip-of-zimbra/Microsoft-Server-ActiveSync from your browser. Log in with your Zimbra account. If it works, you can see the output as below. Or you can configure your mail apps on mobile devices and ensure choose Exchange/ActiveSync

Good Luck ๐Ÿ™‚

36 comments

  1. HI. I tried your guide with ubuntu 20.04.06 and Zimbra 9 FOSS and everything works. IT DOES NOT WORK with ubuntu 20.04.06 and zimbra 10 FOSS. The proxy fails reporting that the port is already in use. Is there a way to apply zpush on ubuntu 20 + zimbra 10?

    Reply

      1. root@mail:~# ss -atpn | grep -iE ’80|443′
        LISTEN 0 10 127.0.0.1:53 0.0.0.0:* users:((“named”,pid=1066,fd=82),(“named”,pid=1066,fd=81),(“named”,pid=1066,fd=80),(“named”,pid=1066,fd=79),(“named”,pid=1066,fd=78),(“named”,pid=1066,fd=77),(“named”,pid=1066,fd=76),(“named”,pid=1066,fd=75),(“named”,pid=1066,fd=74))
        LISTEN 0 50 0.0.0.0:8443 0.0.0.0:* users:((“java”,pid=3863,fd=146))
        LISTEN 0 4096 127.0.0.1:10663 0.0.0.0:* users:((“zmlogger: zmrrd”,pid=3680,fd=3))
        LISTEN 0 50 127.0.0.1:8080 0.0.0.0:* users:((“java”,pid=3863,fd=145))
        ESTAB 0 0 192.168.0.20:39380 192.168.0.20:389 users:((“java”,pid=1500,fd=156))
        ESTAB 0 0 192.168.0.20:389 192.168.0.20:39380 users:((“slapd”,pid=1429,fd=13))
        LISTEN 0 511 *:7780 *:* users:((“httpd”,pid=4891,fd=4),(“httpd”,pid=4882,fd=4),(“httpd”,pid=4881,fd=4),(“httpd”,pid=4870,fd=4))
        LISTEN 0 511 *:80 *:* users:((“apache2”,pid=1291,fd=4),(“apache2”,pid=1290,fd=4),(“apache2”,pid=1289,fd=4),(“apache2”,pid=1288,fd=4),(“apache2”,pid=1287,fd=4),(“apache2”,pid=1284,fd=4))
        root@mail:~# netstat -atpn | grep -iE ’80|443′
        tcp 0 0 0.0.0.0:8443 0.0.0.0:* LISTEN 3863/java
        tcp 0 0 127.0.0.1:10663 0.0.0.0:* LISTEN 3680/zmlogger: zmrr
        tcp 0 0 127.0.0.1:8080 0.0.0.0:* LISTEN 3863/java
        tcp 0 0 192.168.0.20:39380 192.168.0.20:389 ESTABLISHED 1500/java
        tcp 0 0 192.168.0.20:389 192.168.0.20:39380 ESTABLISHED 1429/slapd
        tcp6 0 0 :::7780 :::* LISTEN 4870/httpd
        tcp6 0 0 :::80 :::* LISTEN 1284/apache2

        Reply

        1. Hi,
          There is apache2 service that running. Please disable and stop that service. From the result, port 443 is not listen. Please run the following command

          zmprov ms $(zmhostname) zimbraReverseProxyMailMode https
zmproxyctl restart
          Reply

  2. correction. even with 9 it no longer works after a reboot. “Failed to start LSB: Zimbra mail service” Proxy in not running

    Reply

  3. Does not work with Ubuntu 10 and Zimbra 10.
    31/10/2023 09:48:31 [340230] [ERROR] [] Zimbra->SoapRequest(): ERROR: curl_exec – (60) SSL: no alternative certificate subject name matches target host name ‘127.0.0.1’
    31/10/2023 09:48:31 [340230] [ERROR] [] Zimbra->Logon(): END Logon – Proxy Error { connected = false }
    31/10/2023 09:48:31 [340230] [FATAL] [] Exception: (ServiceUnavailableException) – Access denied. Proxy unable to reach user mailbox server

    Reply

      1. Does not work either.
        extensions – unable to find handler for extension: system failure: Extension HTTP handler not found at /zimbrasync

        Reply

          1. What should I try again??? I administer 2 Zimbra servers and this method does not wotk on either of those. One server is freshly installed Ubuntu 20, another one is an old machine with Ubuntu 16 upgraded to 18 and then to 20. Please help!

  4. Can you please help? Do I need any extra package, or should it work with standard Ubuntu 20 and Zimbra 9/10 installation?
    Thabk you in advance.

    Reply

  5. Microsoft-Server-ActiveSync] [] extensions – unable to find handler for extension: system failure: Extension HTTP handler not found at /zimbrasync
    From todayยดs tests…
    Please help

    Reply

  7. Hello, itยดs works perfect for me.
    I have a insuee with atachments how can increase the size of the files to send in outlook?
    bye the zimbra webmail works fine to send files until 28mb, but in outlook no.

    Reply

      1. Hi Dear, thanks for your help,
        I increase the limit on Outlook Attachments, but when send the mail satys in outbox folder..
        the log of /var/log/z-push/z-push-error.log show this message

        [[email protected]] Fatal error: /opt/z-push/include/mimeDecode.php:773 – Allowed memory size of 134217728 bytes exhausted (tried to allocate 19709104 bytes) (1)

        I donยดt know where increase the size memory.

        Thanks

        Reply

  8. Hello!
    It works, but sometimes it freezes, the webmail works perfectly, but the /Microsoft-Server-ActiveSync url not loads for 5-10 seconds, and then it works then after some time it repeats. I think this is a memory or cache problem with php? Can you help? Thank you!

    Reply

  9. Hello, finally got it to work. However, especially with Outlook, it freezes after a few minutes connection, the log is full of:
    /2024 10:21:43 [418060] [DEBUG] [[email protected]] Zimbra->GetMessageList(): END GetNextMessageBlock TASKS { count = 0; }
    01/05/2024 10:21:43 [418060] [DEBUG] [[email protected]] Zimbra->GetMessageList(): END GetMessageList TASKS { count = 0 }
    01/05/2024 10:21:43 [418060] [DEBUG] [[email protected]] Zimbra->GetMessageList(): END GetMessageList TASKS { count = 14 }
    01/05/2024 10:21:43 [418060] [ INFO] [[email protected]] ExportChangesDiff->InitializeExporter(): Found ‘0’ changes for ‘f15’
    01/05/2024 10:21:43 [418060] [DEBUG] [[email protected]] Zimbra->ChangesSink(): Session ID [1992] *Waiting* [WaitSet-927efb7f-ea83-43fa-8b33-144c2bf1dd47] for [26] Seconds, with Highest SEQ [0] and Token [11215]
    01/05/2024 10:21:55 [487013] [DEBUG] [[email protected]] Zimbra->ChangesSink(): Session ID [11019] *Waiting* [WaitSet-e1353600-97f2-48a1-9bc7-a3250d113a3a] for [26] Seconds, with Highest SEQ [0] and Token [11215]
    01/05/2024 10:22:05 [468786] [DEBUG] [[email protected]] Zimbra->ChangesSink(): Session ID [1925] *Waiting* [WaitSet-ad58cb00-64dc-4c3d-940e-d0a3d633eff2] for [26] Seconds, with Highest SEQ [0] and Token [12940]
    01/05/2024 10:22:07 [456461] [DEBUG] [[email protected]] Zimbra->ChangesSink(): Session ID [1986] *Waiting* [WaitSet-209a3263-5366-413d-a1c5-f7b2aa10b2a5] for [26] Seconds, with Highest SEQ [0] and Token [12940]
    01/05/2024 10:22:08 [418091] [DEBUG] [[email protected]] Zimbra->ChangesSink(): Session ID [1990] *Waiting* [WaitSet-4ee832b3-b7c4-4121-b81c-c6597d881a77] for [26] Seconds, with Highest SEQ [0] and Token [12940]
    01/05/2024 10:22:16 [418060] [DEBUG] [[email protected]] Zimbra->ChangesSink(): Session ID [1992] *Waiting* [WaitSet-c3a53466-b432-41a1-a17f-11e101b1a758] for [26] Seconds, with Highest SEQ [0] and Token [11215]
    01/05/2024 10:22:28 [487013] [DEBUG] [[email protected]] Zimbra->ChangesSink(): Session ID [11019] *Waiting* [WaitSet-f6946636-a33b-4646-8f85-fa7669975c08] for [26] Seconds, with Highest SEQ [0] and Token [11215]
    01/05/2024 10:22:38 [468786] [DEBUG] [[email protected]] Zimbra->ChangesSink(): Session ID [1925] *Waiting* [WaitSet-a7bfdcf4-2505-4359-b3ee-a7cc3614bf3f] for [26] Seconds, with Highest SEQ [0] and Token [12940]
    01/05/2024 10:22:40 [456461] [DEBUG] [[email protected]] Zimbra->ChangesSink(): Session ID [1986] *Waiting* [WaitSet-1bedf61e-d68b-423f-a1d4-09a24b85100c] for [26] Seconds, with Highest SEQ [0] and Token [12940]
    01/05/2024 10:22:41 [418091] [DEBUG] [[email protected]] Zimbra->ChangesSink(): Session ID [1990] *Waiting* [WaitSet-a63c977f-e7f6-483c-b2b8-21307b08aa90] for [26] Seconds, with Highest SEQ [0] and Token [12940]
    Any solution for that?

    Reply

  10. Hello Ahmad,
    I am using Ubuntu 20.04 and Zimbra OSE 8.8.15. I followed the instructions and it’s not working. no user can connect to Active Sync. I also disable apache2.
    I have also increased the php memory.
    Error:
    2024-07-01 02:02:32,141 WARN [qtp252651381-235:https://mail.example.com/Microsoft-Server-ActiveSync%5D [] extensions – unable to find handler for extension: system failure: Extension HTTP handler not found at /zimbrasync

    Reply

      1. I can see below the conf file is correctly loaded at /opt/zimbra/conf/nginx/templates/nginx.conf.web.https

        # Z-Push start
        include /opt/z-push/nginx-zpush.conf;
        # Z-Push end

        What next? Please share your valuable opinion to solve this .

        Reply

  12. Hi Big master if Zimbra ๐Ÿ˜‰
    Your site is a full of good advice and a big help for me ! Thanks a lot for your work.
    I follow your tutorial and z-push 2.7 works well…emails, contact and appointements are Sync on mobiles and outlook (pc), but when I try to put or update an appointements on mobiles (or outlook is the same), it does not Sync with Zimbra. I work on Zimbra 9 OSE and Zimbra backend 72.
    Do you have an Idea , รด great master ?

    Reply

  13. Hello,
    First of all, thank you very much for the instructions and the Git.

    I’ve now installed Z-Push on Ubuntu 22.04 with Carbonio CE 25.3.1, and it’s working great. Since I’m running a single-server version, I didn’t want to run Z-Push on another server. Everything runs on the same server, which makes administration a lot easier.

    Only a few adjustments were necessary.
    PHP is now version 8.1, so the file here needs to be:
    nano /etc/php/8.1/fpm/pool.d/www.conf (I use nano, not vi)
    The port on Carbonio is 9443, so:
    listen = 127.0.0.1:9443
    The port then also needs to be adjusted in nginx-zpush.conf:
    nano /opt/z-push/nginx-zpush.conf
    fastcgi_pass 127.0.0.1:9443;

    Otherwise, everything is as described in your description.

    Outlook, Android mobile phone, works with mail, calendar, and contacts; so far, I haven’t found any errors. I still have to test it with Apple, but since I don’t use an iPhone myself, I’ll have to find someone else.

    Thank you again.

    Greetings, jhansen

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.