Files @ 441a70c073b9
Branch filter:

Location: majic-ansible-roles/roles/mail_forwarder/templates/ferm_mail.conf.j2

441a70c073b9 809 B text/plain Show Annotation Show as Raw Download as Raw
branko
MAR-232: Switch to using IP addreses in firewall rules for mail_forwarder role:

- Perform lookups on managed machine for the passed-in SMTP relay
host, and use those values when populating the firewall rules.
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
{% if smtp_relay_host and smtp_from_relay_allowed %}
{% if smtp_relay_host_ipv4 %}
domain ip {
    # Accept incoming connections on port 25 from SMTP relay host.
    table filter {
        chain INPUT {
            # SMTP for server communication.
            proto tcp dport 25 {
{% for address in smtp_relay_host_ipv4 %}
                saddr {{ address }} ACCEPT;
{% endfor %}
            }
        }
    }
}
{% endif %}

{% if smtp_relay_host_ipv6 %}
domain ip6 {
    # Accept incoming connections on port 25 from SMTP relay host.
    table filter {
        chain INPUT {
            # SMTP for server communication.
            proto tcp dport 25 {
{% for address in smtp_relay_host_ipv6 %}
                saddr {{ address }} ACCEPT;
{% endfor %}
            }
        }
    }
}
{% endif %}
{% endif %}
This site is powered by Kallithea 0.7.0, which is © 2010–2023 by various authors & licensed under GPLv3.