Files
@ 46fe0a9e838f
Branch filter:
Location: majic-ansible-roles/roles/mail_forwarder/templates/main.cf.j2 - annotation
46fe0a9e838f
2.2 KiB
text/plain
MAR-181: Set-up the mail aliases correctly for running mail delivery tests.
7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b ed73868fa196 ed73868fa196 7ab6518de03b 7ab6518de03b 7ab6518de03b 13fd27e4004c 2285dcdda345 32f61f233098 13fd27e4004c 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 3a9692d96170 7ab6518de03b 7ab6518de03b 7ab6518de03b 7ab6518de03b 23a9ea4219dc 9a5d1122146f 7ab6518de03b 7ab6518de03b 7ab6518de03b f81da93be521 f81da93be521 36e1c9460cd6 36e1c9460cd6 36e1c9460cd6 36e1c9460cd6 90bda8fea4aa 90bda8fea4aa 90bda8fea4aa 9727c5e3ac7c 9727c5e3ac7c 9727c5e3ac7c 9727c5e3ac7c | # See /usr/share/postfix/main.cf.dist for a commented, more complete version
# Debian specific: Specifying a file name will cause the first
# line of that file to be used as the name. The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
biff = no
# appending .domain is the MUA's job.
append_dot_mydomain = no
# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h
readme_directory = no
# TLS parameters
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtpd_tls_dh1024_param_file = /etc/ssl/private/{{ inventory_hostname }}_smtp.dh.pem
smtpd_tls_dh512_param_file = /etc/ssl/private/{{ inventory_hostname }}_smtp.dh.pem
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
{% if smtp_relay_host %}
smtp_tls_security_level=verify
smtp_tls_CAfile=/etc/ssl/certs/smtp_relay_truststore.pem
{% endif %}
# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
# information on enabling SSL in the smtp client.
myhostname = {{ inventory_hostname }}
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = {{ inventory_hostname }}, {{ inventory_hostname_short }}, localhost.localdomain, localhost
relayhost = {{ smtp_relay_host }}{% if smtp_relay_host and smtp_relay_host_port %}:{{ smtp_relay_host_port }}{% endif %}{{ '' }}
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_command = procmail -a "$EXTENSION"
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all
# Fall-back to using native lookups (/etc/hosts etc) if DNS lookup fails. Useful
# for local overrides of mail servers.
smtp_host_lookup = dns, native
# Explicitly set maximum allowed mail size that should be accepted.
message_size_limit = {{ mail_message_size_limit }}
# Allow relaying only from trusted networks. Do not relay mails for
# domains for which the mail server is not responsible.
smtpd_relay_restrictions = permit_mynetworks reject_unauth_destination
|