projects
/
ansible.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
restrict coturn port range
[ansible.git]
/
roles
/
email
/
templates
/
master.cf
diff --git
a/roles/email/templates/master.cf
b/roles/email/templates/master.cf
index f0537462c3bd7439e49a615dfbd1c58350744aed..fb582cb76100cb94bd24ffaa8428e6c3d2462d8b 100644
(file)
--- a/
roles/email/templates/master.cf
+++ b/
roles/email/templates/master.cf
@@
-9,7
+9,7
@@
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (no) (never) (100)
# ==========================================================================
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (no) (never) (100)
# ==========================================================================
-{% if postfix.postscreen
is defined and postfix.postscreen
%}
+{% if postfix.postscreen
| default(False)
%}
smtp inet n - y - 1 postscreen
smtpd pass - - y - - smtpd
dnsblog unix - - y - 0 dnsblog
smtp inet n - y - 1 postscreen
smtpd pass - - y - - smtpd
dnsblog unix - - y - 0 dnsblog
@@
-17,8
+17,14
@@
tlsproxy unix - - y - 0 tlsproxy
{% else %}
smtp inet n - y - - smtpd
{% endif %}
{% else %}
smtp inet n - y - - smtpd
{% endif %}
+{% if postfix.smtpd_26 | default(False) %}
+26 inet n - y - - smtpd
+ -o syslog_name=postfix/smtpd2
+ -o smtpd_tls_security_level=encrypt
+ -o smtpd_recipient_restrictions=permit_mynetworks,permit_tls_clientcerts,reject
+{% endif %}
-{% if postfix.submission
is defined and postfix.submission
%}
+{% if postfix.submission
| default(False)
%}
submission inet n - y - - smtpd
-o syslog_name=postfix/submission
-o smtpd_tls_security_level=encrypt
submission inet n - y - - smtpd
-o syslog_name=postfix/submission
-o smtpd_tls_security_level=encrypt