postfix/rootfs/etc/confd/templates/main.cf.tmpl

84 lines
3.2 KiB
Cheetah
Raw Normal View History

2016-07-06 09:42:10 +00:00
compatibility_level = 2
2016-07-08 08:21:21 +00:00
2016-07-06 09:42:10 +00:00
mail_owner = postfix
myhostname = {{getenv "MYHOSTNAME"}}
mydomain = {{getenv "MYDOMAIN"}}
myorigin = $mydomain
2021-12-21 16:30:02 +00:00
mydestination = $myhostname, localhost
2016-07-08 08:21:21 +00:00
2021-12-21 16:37:02 +00:00
proxy_interfaces = {{getenv "EXTERNAL_IP"}}
2016-07-06 09:42:10 +00:00
unknown_local_recipient_reject_code = 550
2021-09-28 08:12:12 +00:00
mynetworks_style = host
2016-07-06 09:42:10 +00:00
relay_domains = $mydestination
recipient_delimiter = +
2016-07-08 08:21:21 +00:00
2016-10-28 11:05:20 +00:00
mailbox_transport = lmtp:{{getenv "LMTP_HOST"}}
mailbox_size_limit = {{getenv "MAILBOX_SIZELIMIT" "0"}}
smtpd_banner = {{getenv "SMTP_BANNER"}} $myhostname ESMTP $mail_name
2016-07-08 08:21:21 +00:00
2021-12-21 17:19:11 +00:00
virtual_mailbox_maps = pgsql:/etc/postfix/pgsql-virtual-mailbox-maps.cf
2021-08-23 13:20:57 +00:00
virtual_mailbox_domains = pgsql:/etc/postfix/pgsql-virtual-mailbox-domains.cf
virtual_alias_maps = pgsql:/etc/postfix/pgsql-virtual-alias-maps.cf
2016-10-28 11:05:20 +00:00
virtual_transport = lmtp:inet:{{getenv "LMTP_HOST"}}:{{getenv "LMTP_PORT"}}
2016-07-08 08:21:21 +00:00
2021-08-23 13:20:57 +00:00
smtpd_tls_key_file=/etc/ssl/mail/tls.key
smtpd_tls_cert_file=/etc/ssl/mail/tls.crt
2016-07-08 08:21:21 +00:00
2019-02-18 13:48:21 +00:00
smtp_tls_security_level = {{getenv "TLS_SECURITY_LEVEL" "may"}}
smtp_tls_auth_only = yes
2016-10-28 11:05:20 +00:00
smtpd_tls_security_level = {{getenv "TLS_SECURITY_LEVEL" "may"}}
2016-07-08 08:21:21 +00:00
smtpd_tls_auth_only = yes
2019-02-18 13:48:21 +00:00
smtp_tls_mandatory_protocols = {{getenv "TLS_PROTOCOLS" "!SSLv2, !SSLv3, !TLSv1, !TLSv1.1"}}
smtp_tls_protocols = {{getenv "TLS_PROTOCOLS" "!SSLv2, !SSLv3, !TLSv1, !TLSv1.1"}}
smtp_tls_mandatory_ciphers = {{getenv "TLS_CIPHERS" "high"}}
smtp_tls_ciphers = {{getenv "TLS_CIPHERS" "high"}}
smtp_tls_mandatory_exclude_ciphers = {{getenv "TLS_EXCLUDE_CIPHERS" "aNULL, MD5, 3DES"}}
smtp_tls_exclude_ciphers = {{getenv "TLS_EXCLUDE_CIPHERS" "aNULL, MD5, 3DES"}}
smtp_tls_wrappermode = no
smtpd_tls_mandatory_protocols = {{getenv "TLS_PROTOCOLS" "!SSLv2, !SSLv3, !TLSv1, !TLSv1.1"}}
smtpd_tls_protocols = {{getenv "TLS_PROTOCOLS" "!SSLv2, !SSLv3, !TLSv1, !TLSv1.1"}}
2016-10-28 11:05:20 +00:00
smtpd_tls_mandatory_ciphers = {{getenv "TLS_CIPHERS" "high"}}
smtpd_tls_ciphers = {{getenv "TLS_CIPHERS" "high"}}
smtpd_tls_mandatory_exclude_ciphers = {{getenv "TLS_EXCLUDE_CIPHERS" "aNULL, MD5, 3DES"}}
smtpd_tls_exclude_ciphers = {{getenv "TLS_EXCLUDE_CIPHERS" "aNULL, MD5, 3DES"}}
2016-07-08 08:21:21 +00:00
smtpd_tls_wrappermode = no
lmtp_tls_mandatory_ciphers = $smtpd_tls_mandatory_ciphers
lmtp_tls_ciphers = $smtpd_tls_ciphers
2021-08-24 08:41:54 +00:00
smtpd_tls_session_cache_database = lmdb:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = lmdb:${data_directory}/smtp_scache
2016-07-08 08:21:21 +00:00
2016-07-06 09:42:10 +00:00
smtpd_sasl_type = dovecot
2016-10-28 11:05:20 +00:00
smtpd_sasl_path = inet:{{getenv "DOVECOT_HOST"}}:{{getenv "DOVECOT_AUTH_PORT"}}
2016-07-06 09:42:10 +00:00
smtpd_sasl_auth_enable = yes
2021-09-28 08:02:18 +00:00
smtpd_tls_auth_only = yes
2021-09-28 07:54:55 +00:00
smtpd_sasl_tls_security_options = noanonymous
2016-07-08 08:21:21 +00:00
2021-09-28 07:46:55 +00:00
smtpd_relay_restrictions = permit_mynetworks, permit_sasl_authenticated, defer_unauth_destination
2021-11-22 15:21:21 +00:00
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, defer_unauth_destination, reject_unverified_recipient
2016-07-08 08:21:21 +00:00
2022-01-22 18:58:58 +00:00
smtpd_sender_restrictions = reject_sender_login_mismatch
2022-01-24 16:56:25 +00:00
smtpd_sender_login_maps = pgsql:/etc/postfix/pgsql-login-maps.cf
2022-01-22 18:58:58 +00:00
2021-12-22 10:34:40 +00:00
smtpd_milters={{getenv "RSPAMD_ADDRESS" "inet:127.0.0.1:11332"}}
non_smtpd_milters=$smtpd_milters
milter_mail_macros="i {mail_addr} {client_addr} {client_name} {auth_authen}"
2016-07-06 09:42:10 +00:00
milter_default_action = accept
2016-07-08 08:21:21 +00:00
milter_macro_daemon_name = ORIGINATING
2016-07-11 12:22:43 +00:00
milter_connect_macros = "i j {daemon_name} v {if_name} _"
2016-07-08 08:21:21 +00:00
2016-10-28 11:05:20 +00:00
message_size_limit = {{getenv "MESSAGE_SIZELIMIT" "20000000"}}
2016-07-08 08:21:21 +00:00
2016-07-07 12:53:32 +00:00
tls_preempt_cipherlist = yes
2016-07-08 08:21:21 +00:00
2021-11-22 15:57:12 +00:00
smtputf8_enable = yes
2016-07-08 07:58:07 +00:00
biff = no
2021-08-24 08:16:27 +00:00
maillog_file = /dev/stdout