2014-08-20 02:33:16 +02:00
|
|
|
postfix:
|
2015-03-25 12:49:57 +01:00
|
|
|
manage_master_config: True
|
2015-07-11 11:58:18 +02:00
|
|
|
master_config:
|
|
|
|
enable_submission: False
|
|
|
|
|
2016-05-18 19:29:37 +02:00
|
|
|
enable_service: True
|
|
|
|
|
2015-08-22 13:26:26 +02:00
|
|
|
postgrey:
|
|
|
|
enabled: True
|
2016-05-19 13:55:15 +02:00
|
|
|
enable_service: True
|
2015-08-22 13:26:26 +02:00
|
|
|
location: inet:172.16.0.5:6379
|
|
|
|
|
2015-08-22 13:59:29 +02:00
|
|
|
policyd-spf:
|
|
|
|
enabled: True
|
|
|
|
time_limit: 7200s
|
|
|
|
|
2015-03-25 12:49:57 +01:00
|
|
|
config:
|
|
|
|
smtpd_banner: $myhostname ESMTP $mail_name
|
2016-03-14 22:43:30 +01:00
|
|
|
smtp_tls_CApath: /etc/ssl/certs
|
2015-03-25 12:49:57 +01:00
|
|
|
biff: 'no'
|
|
|
|
append_dot_mydomain: 'no'
|
|
|
|
readme_directory: 'no'
|
|
|
|
myhostname: localhost
|
|
|
|
mydestination: localhost, localhost.localdomain
|
|
|
|
relayhost:
|
|
|
|
mynetworks: 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
|
|
|
|
mailbox_size_limit: 0
|
|
|
|
recipient_delimiter: +
|
|
|
|
inet_interfaces: all
|
2015-08-31 22:34:51 +02:00
|
|
|
|
2015-06-20 22:49:09 +02:00
|
|
|
# Alias
|
|
|
|
alias_maps: hash:/etc/aliases
|
|
|
|
alias_database: hash:/etc/aliases
|
|
|
|
|
|
|
|
# SMTP server
|
|
|
|
smtpd_tls_session_cache_database: btree:${data_directory}/smtpd_scache
|
|
|
|
smtpd_use_tls: 'yes'
|
|
|
|
|
|
|
|
# SMTP server certificate and key (from pillar data)
|
2015-08-30 19:30:08 +02:00
|
|
|
smtpd_tls_cert_file: /etc/postfix/ssl/server-cert.crt
|
|
|
|
smtpd_tls_key_file: /etc/postfix/ssl/server-cert.key
|
2015-06-20 22:49:09 +02:00
|
|
|
|
|
|
|
# SMTP client
|
|
|
|
smtp_tls_session_cache_database: btree:${data_directory}/smtp_scache
|
|
|
|
smtp_use_tls: 'yes'
|
2015-08-30 19:30:08 +02:00
|
|
|
smtp_tls_cert_file: /etc/postfix/ssl/example.com-relay-client-cert.crt
|
|
|
|
smtp_tls_key_file: /etc/postfix/ssl/example.com-relay-client-cert.key
|
2015-06-20 22:49:09 +02:00
|
|
|
|
2016-04-08 17:50:52 +02:00
|
|
|
smtp_sasl_password_maps: hash:/etc/postfix/sasl_passwd
|
|
|
|
|
|
|
|
sender_canonical_maps: hash:/etc/postfix/sender_canonical
|
|
|
|
|
|
|
|
relay_recipient_maps: hash:/etc/postfix/relay_domains
|
|
|
|
|
|
|
|
virtual_alias_maps: hash:/etc/postfix/virtual
|
|
|
|
|
2015-08-30 19:30:08 +02:00
|
|
|
certificates:
|
|
|
|
server-cert:
|
|
|
|
public_cert: |
|
2015-06-20 22:49:09 +02:00
|
|
|
-----BEGIN CERTIFICATE-----
|
2015-08-30 19:30:08 +02:00
|
|
|
(Your primary SSL certificate: smtp.example.com.crt)
|
2015-06-20 22:49:09 +02:00
|
|
|
-----END CERTIFICATE-----
|
|
|
|
-----BEGIN CERTIFICATE-----
|
2015-08-30 19:30:08 +02:00
|
|
|
(Your intermediate certificate: example-ca.crt)
|
2015-06-20 22:49:09 +02:00
|
|
|
-----END CERTIFICATE-----
|
2015-08-30 19:30:08 +02:00
|
|
|
-----BEGIN CERTIFICATE-----
|
|
|
|
(Your root certificate: trusted-root.crt)
|
|
|
|
-----END CERTIFICATE-----
|
|
|
|
private_key: |
|
2015-06-20 22:49:09 +02:00
|
|
|
-----BEGIN RSA PRIVATE KEY-----
|
2015-08-30 19:30:08 +02:00
|
|
|
(Your Private key)
|
2015-06-20 22:49:09 +02:00
|
|
|
-----END RSA PRIVATE KEY-----
|
|
|
|
|
2015-08-30 19:30:08 +02:00
|
|
|
example.com-relay-client-cert:
|
|
|
|
public_cert: |
|
|
|
|
-----BEGIN CERTIFICATE-----
|
|
|
|
(Your primary SSL certificate: smtp.example.com.crt)
|
|
|
|
-----END CERTIFICATE-----
|
|
|
|
private_key: |
|
2015-06-20 22:49:09 +02:00
|
|
|
-----BEGIN RSA PRIVATE KEY-----
|
2015-08-30 19:30:08 +02:00
|
|
|
(Your Private key)
|
2015-06-20 22:49:09 +02:00
|
|
|
-----END RSA PRIVATE KEY-----
|
2016-04-08 17:50:52 +02:00
|
|
|
|
|
|
|
mapping:
|
|
|
|
smtp_sasl_password_maps:
|
|
|
|
- smtp.example.com: myaccount:somepassword
|
|
|
|
|
|
|
|
sender_canonical_maps:
|
|
|
|
- root: servers@example.com
|
|
|
|
- nagios: alerts@example.com
|
|
|
|
|
|
|
|
relay_recipient_maps:
|
|
|
|
- example.com: OK
|
|
|
|
|
|
|
|
virtual_alias_maps:
|
|
|
|
- groupaliasexample:
|
|
|
|
- someuser_1@example.com
|
|
|
|
- someuser_2@example.com
|
|
|
|
- singlealiasexample: someuser_3@example.com
|