Browse Source

enable submission service per default and make ssl certificate configurable

master
parent
commit
1b92ef6568
2 changed files with 7 additions and 4 deletions
  1. +5
    -2
      defaults/main.yml
  2. +2
    -2
      templates/main.cf.j2

+ 5
- 2
defaults/main.yml View File

@@ -3,7 +3,7 @@ mailname: "{{inventory_hostname}}"
postfix_method: postfixadmin

postfix_smtp_service: true
postfix_submission_service: false
postfix_submission_service: true

postfix_postfixadmin_mysql_host: localhost
postfix_postfixadmin_mysql_database: postfixadmin
@@ -19,4 +19,7 @@ postfix_virtual_transport: lmtp:unix:private/dovecot-lmtp

postfix_submission_service_smtpd_sasl_path: private/auth

postfix_smtps_service: false
postfix_smtps_service: true

postfix_certificate_fullchain_file: /etc/ssl/certs/ssl-cert-snakeoil.pem
postfix_certificate_private_key_file: /etc/ssl/private/ssl-cert-snakeoil.key

+ 2
- 2
templates/main.cf.j2 View File

@@ -35,8 +35,8 @@ inet_protocols = all

### TLS parameters

smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtpd_tls_cert_file={{postfix_certificate_fullchain_file}}
smtpd_tls_key_file={{postfix_certificate_private_key_file}}
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache


Loading…
Cancel
Save