Relay via static zz0.email host
All checks were successful
ci/lysergic/push/pipeline Pipeline was successful
All checks were successful
ci/lysergic/push/pipeline Pipeline was successful
Split horizon for the complete .email zone is not feasible for all sites, and TLS certificate currently does not cover any of the internal hostnames. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>
This commit is contained in:
parent
b7ec9e683f
commit
950b308546
GPG Key ID:
1ED2F138E7E6FF57
@ -17,6 +17,7 @@ postfix:
|
|||||||
smtp_use_tls: 'yes'
|
smtp_use_tls: 'yes'
|
||||||
smtp_tls_security_level: encrypt
|
smtp_tls_security_level: encrypt
|
||||||
smtp_tls_wrappermode: 'yes'
|
smtp_tls_wrappermode: 'yes'
|
||||||
|
disable_dns_lookups: 'yes'
|
||||||
|
|
||||||
aliases:
|
aliases:
|
||||||
use_file: false
|
use_file: false
|
||||||
|
|||||||
9
salt/common/hosts.sls
Normal file
9
salt/common/hosts.sls
Normal file
@ -0,0 +1,9 @@
|
|||||||
|
# this is a hack because we currently only allow email relaying using the split-horizon zz0.email
|
||||||
|
selene-hosts:
|
||||||
|
host.present:
|
||||||
|
- comment: Needed for email
|
||||||
|
- ip: 192.168.0.120
|
||||||
|
- names:
|
||||||
|
- selene.psyched.dev
|
||||||
|
- selene
|
||||||
|
- zz0.email
|
||||||
@ -1,3 +1,4 @@
|
|||||||
include:
|
include:
|
||||||
- role.salt.minion
|
- role.salt.minion
|
||||||
|
- .hosts
|
||||||
- common.{{ grains['os'] | lower }}
|
- common.{{ grains['os'] | lower }}
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user