majic-ansible-roles Files · roles/mail_server/files/ferm

Files @ 114f02e67a4d

Branch filter:

Location: majic-ansible-roles/roles/mail_server/files/ferm_mail.conf

114f02e67a4d 833 B text/plain Show Annotation Show as Raw Download as Raw

branko

MAR-173: Switch to using Prosody 0.11 as default version in the xmpp_server role:

- Updated default value for the Prosody package parameters.
- Configure the backports repository on the server, and pin the
lua-ldap package to be installed from the backports
repository (needed for Lua 5.2 support).
- Drop the explicit installation of lua-sec library - it is already
installed as pre-requisite for the Prosody package.

domain (ip ip6) {
    table filter {
        chain INPUT {
            # SMTP for server communication.
            proto tcp dport 25 ACCEPT;
            # SMTP for client submission (with alternative port)
            proto tcp dport 587 ACCEPT;
            proto tcp dport 26 ACCEPT;
            # IMAP
            proto tcp dport 143 ACCEPT;
            proto tcp dport 993 ACCEPT;
            # ManageSieve
            proto tcp dport 4190 ACCEPT;
        }
    }

    table nat {
        chain PREROUTING {
            # Set-up redirection for alternate SMTP submission port (to avoid
            # ISP/hotel blocks etc).
            proto tcp dport 26 REDIRECT to-ports 587;

            # Set-up redirection for alternate SMTP port (to avoid ISP blocks).
            proto tcp dport 27 REDIRECT to-ports 25;
        }
    }
}