ka
/
ansible-role-postfix
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
28 Commits
1 Branch
85KB
Tree: f9e62f03c7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f9e62f03c7'
${ noResults }
ansible-role-postfix/templates/main.cf.j2

78 lines
2.6KB
Raw Blame History 

  1. # See /usr/share/postfix/main.cf.dist for a commented, more complete version

  2. 

  3. # Debian specific:  Specifying a file name will cause the first

  4. # line of that file to be used as the name.  The Debian default

  5. # is /etc/mailname.

  6. myorigin = /etc/mailname

  7. 

  8. smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)

  9. biff = no

  10. 

  11. # appending .domain is the MUA's job.

  12. append_dot_mydomain = no

  13. 

  14. # Uncomment the next line to generate "delayed mail" warnings

  15. #delay_warning_time = 4h

  16. 

  17. readme_directory = no

  18. 

  19. # See http://www.postfix.org/COMPATIBILITY_README.html -- default to 2 on

  20. # fresh installs.

  21. compatibility_level = 2

  22. 

  23. # TLS parameters

  24. smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem

  25. smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key

  26. smtpd_use_tls=yes

  27. smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache

  28. smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

  29. 

  30. # See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for

  31. # information on enabling SSL in the smtp client.

  32. 

  33. myhostname = {{mailname}}

  34. alias_maps = hash:/etc/aliases

  35. alias_database = hash:/etc/aliases

  36. mydestination = $myhostname, tg-infra-dev-mail-1, localhost.localdomain, , localhost

  37. relayhost =

  38. mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128

  39. mailbox_size_limit = 0

  40. recipient_delimiter = +

  41. inet_interfaces = all

  42. inet_protocols = all

  43. 

  44. # some rules from http://www.postfix.org/SMTPD_ACCESS_README.html

  45. #smtpd_client_restrictions = permit_mynetworks, reject

  46. #smtpd_helo_restrictions = reject_unknown_helo_hostname

  47. #smtpd_sender_restrictions = reject_unknown_sender_domain

  48. smtpd_data_restrictions = reject_unauth_pipelining

  49. 

  50. smtpd_recipient_restrictions =

  51.   permit_mynetworks,

  52.   permit_sasl_authenticated,

  53.   reject_rbl_client zen.spamhaus.org,

  54.   reject_rhsbl_reverse_client dbl.spamhaus.org,

  55.   reject_rhsbl_helo dbl.spamhaus.org,

  56.   reject_rhsbl_sender dbl.spamhaus.org

  57. 

  58. smtpd_relay_restrictions =

  59.   permit_mynetworks,

  60.   permit_sasl_authenticated,

  61.   defer_unauth_destination

  62. 

  63. virtual_mailbox_domains = proxy:mysql:/etc/postfix/sql/mysql_virtual_domains_maps.cf

  64. virtual_alias_maps =

  65.    proxy:mysql:/etc/postfix/sql/mysql_virtual_alias_maps.cf,

  66.    proxy:mysql:/etc/postfix/sql/mysql_virtual_alias_domain_maps.cf,

  67.    proxy:mysql:/etc/postfix/sql/mysql_virtual_alias_domain_catchall_maps.cf

  68. virtual_mailbox_maps =

  69.    proxy:mysql:/etc/postfix/sql/mysql_virtual_mailbox_maps.cf,

  70.    proxy:mysql:/etc/postfix/sql/mysql_virtual_alias_domain_mailbox_maps.cf

  71. 

  72. # use dovecot lmtp for mail transport

  73. virtual_transport = lmtp:unix:private/dovecot-lmtp

  74. 

  75. smtpd_sasl_type = dovecot

  76. smtpd_sasl_path = private/auth

  77. smtpd_sasl_auth_enable = yes