diff options
| author | Dmitry Ilvokhin <d@ilvokhin.com> | 2024-04-07 20:13:41 +0100 |
|---|---|---|
| committer | Dmitry Ilvokhin <d@ilvokhin.com> | 2024-04-07 20:13:41 +0100 |
| commit | f2dc007f38c53ce583fb7510ce5f073ed1fcc320 (patch) | |
| tree | 8a6aabebb942fe67f6fe8a3bb51bafb7e4b35ea6 | |
| parent | 55f42aea91101482c8f2c2fbd4d13f1d9bd52963 (diff) | |
| download | infra-f2dc007f38c53ce583fb7510ce5f073ed1fcc320.tar.gz infra-f2dc007f38c53ce583fb7510ce5f073ed1fcc320.tar.bz2 infra-f2dc007f38c53ce583fb7510ce5f073ed1fcc320.zip | |
Add master.cf file to postfix role
Enable submission to send mail.
| -rw-r--r-- | roles/postfix/files/master.cf | 66 | ||||
| -rw-r--r-- | roles/postfix/tasks/main.yml | 7 |
2 files changed, 71 insertions, 2 deletions
diff --git a/roles/postfix/files/master.cf b/roles/postfix/files/master.cf new file mode 100644 index 0000000..88339aa --- /dev/null +++ b/roles/postfix/files/master.cf @@ -0,0 +1,66 @@ +# +# Postfix master process configuration file. For details on the format +# of the file, see the master(5) manual page (command: "man 5 master" or +# on-line: http://www.postfix.org/master.5.html). +# +# Do not forget to execute "postfix reload" after editing this file. +# +# ========================================================================== +# service type private unpriv chroot wakeup maxproc command + args +# (yes) (yes) (no) (never) (100) +# ========================================================================== +smtp inet n - n - - smtpd + +submission inet n - n - - smtpd + -o syslog_name=postfix/submission + -o smtpd_tls_security_level=encrypt + -o smtpd_sasl_auth_enable=yes + -o smtpd_tls_auth_only=yes + -o local_header_rewrite_clients=static:all + -o smtpd_reject_unlisted_recipient=no + -o smtpd_client_restrictions= + -o smtpd_helo_restrictions= + -o smtpd_sender_restrictions= + -o smtpd_relay_restrictions= + -o smtpd_recipient_restrictions=permit_sasl_authenticated,reject + -o milter_macro_daemon_name=ORIGINATING + +submissions inet n - n - - smtpd + -o syslog_name=postfix/submissions + -o smtpd_tls_wrappermode=yes + -o smtpd_sasl_auth_enable=yes + -o local_header_rewrite_clients=static:all + -o smtpd_reject_unlisted_recipient=no + -o smtpd_client_restrictions= + -o smtpd_helo_restrictions= + -o smtpd_sender_restrictions= + -o smtpd_relay_restrictions= + -o smtpd_recipient_restrictions=permit_sasl_authenticated,reject + -o milter_macro_daemon_name=ORIGINATING + +pickup unix n - n 60 1 pickup +cleanup unix n - n - 0 cleanup +qmgr unix n - n 300 1 qmgr +tlsmgr unix - - n 1000? 1 tlsmgr +rewrite unix - - n - - trivial-rewrite +bounce unix - - n - 0 bounce +defer unix - - n - 0 bounce +trace unix - - n - 0 bounce +verify unix - - n - 1 verify +flush unix n - n 1000? 0 flush +proxymap unix - - n - - proxymap +proxywrite unix - - n - 1 proxymap +smtp unix - - n - - smtp +relay unix - - n - - smtp + -o syslog_name=postfix/$service_name + -o smtp_helo_timeout=5 -o smtp_connect_timeout=5 +showq unix n - n - - showq +error unix - - n - - error +retry unix - - n - - error +discard unix - - n - - discard +local unix - n n - - local +virtual unix - n n - - virtual +lmtp unix - - n - - lmtp +anvil unix - - n - 1 anvil +scache unix - - n - 1 scache +postlog unix-dgram n - n - 1 postlogd diff --git a/roles/postfix/tasks/main.yml b/roles/postfix/tasks/main.yml index 4856225..3421b52 100644 --- a/roles/postfix/tasks/main.yml +++ b/roles/postfix/tasks/main.yml @@ -47,11 +47,14 @@ - name: Configure postfix ansible.builtin.copy: - src: files/main.cf - dest: /etc/postfix/main.cf + src: '{{ item }}' + dest: /etc/postfix/ owner: root group: root mode: u+rw,g+r,o+r + loop: + - files/master.cf + - files/main.cf notify: - Check postfix - Reload postfix |