X-Git-Url: https://git.ralfj.de/ansible.git/blobdiff_plain/b820d6d92e4c558f45c2288d99428b7bbd915312..f95ae12f32d451750876153716f75f553c86d603:/host_vars/template.yml diff --git a/host_vars/template.yml b/host_vars/template.yml index abe746c..941796b 100644 --- a/host_vars/template.yml +++ b/host_vars/template.yml @@ -1,13 +1,31 @@ postfix: + # postmaster email address + postmaster: postmaster@example.org + # optional: Hostname of this email system + hostname: mail.example.org # optional: Whether to put a postscreen on port 25 postscreen: True + # optional: Open another SMTP daemon on port 26 that only accepts mail from local hosts + # (and whitelisted client certs, if applicable). Useful when the source of the mail is in + # a network that blocks port 25 outgoing. + smtpd_26: True # optional: Whether to accept emails for arbitrary destination on the submission port, # authenticated by dovecot. Requires a dovecot: section (see below). submission: True - # optional: Whether to install mailman and add it as a possible postfix transport. - mailman: True # optional: From which IPs to accept mail. mynetworks: '127.0.0.0/8 [::1]/128 203.0.113.0/24' + # optional: Domains for which to receive emails and forward according to virtual_alias_map. + alias_domains: staff.example.org + # optional: Hostnames and SHA1 certificate hashes that are allowed to relay email via this host. + relay_client_cert_whitelist: + - hostname: other.example.org + cert: 00:11:22:33:44:55:66:77:88:99:AA:BB:CC:DD:EE:FF:00:11:22:33 + # optional: Configure a host to relay all outgoing email to. + # Incompatible with smtp_outgoing. + relay_host: mx.example.org + # optional: Files in /etc/postfix ($FILE.crt, $FILE.key) to use as client certificates when + # relaying to the relay_host. + relay_client_cert: client_cert # optional: List multiple outgoing transports using different IP addresses. # Requires default_smtp_outgoing to be set to one of them. The file # /etc/postfix/sender_transport_map on the server can be used to configure @@ -30,34 +48,35 @@ postfix: signing_table: example.org: example.org lists.example.org: example.org - # optional: List of domains and transports to use. The file /etc/postfix/virtual_alias_map - # can be used to configure aliases for these domains. - virtual_mailbox_domains: - - domain: lists.example.org - transport: mailman - - domain: example.org - transport: lmtp:unix:private/dovecot-lmtp + # optional: install and configure mailman + mailman: + default_host: lists.example.org + smtp_outgoing: smtp2 + default_lang: en # if you change this, also run "dpkg-reconfigure mailman" to enable more languages + domains: # the file /etc/postfix/virtual_alias_map can be used to configure aliases + - lists.example.org + default_footer: "-- \n%(list_name)s@%(host_name)s - %(description)s\nConfiguration: %(web_page_url)slistinfo%(cgiext)s/%(list_name)s\nUnsubscribe: %(list_name)s-unsubscribe@%(host_name)s\n" + form_secret: $RANDOM # optional: Install and configure dovecot dovecot: + domains: # the file /etc/postfix/virtual_alias_map can be used to configure aliases + - example.org mysql_password: $RANDOM vmail_uid: 200 mail_gid: 8 - postmaster: postmaster@example.org quota: general: 1G trash: +10M - # optional: File in /etc/postfix that configures client certificates that may use - # this server for relaying arbitrary mail. - relay_client_cert_whitelist: relay_clientcerts - # optional: Configure a host to relay all outgoing email to. - # Incompatible with smtp_outgoing. - relay_host: mx.example.org - # optional: Files in /etc/postfix ($FILE.crt, $FILE.key) to use as client certificates when - # relaying to the relay_host. - relay_client_cert: client_cert + # Hostname used for both web access (to changepw) and SMTP/IMAP servers in emails + # sent by newmail script. + host: mail.example.org + # optional: Where to generate a CGI script that users can use to change their password + changepw_cgi: /srv/mail.example.org/cgi/changepw apache: default_host: www.example.org + webmaster: webmaster@example.org + server_name: web.example.org prosody: host: jabber.example.org @@ -73,5 +92,6 @@ bind: etherpad: domain: pad.example.org default_text: "Welcome to Etherpad!\\n\\nThis pad text is synchronized as you type, so that everyone viewing this page sees the same text. This allows you to collaborate seamlessly on documents!\\n\\nGet involved with Etherpad at http:\/\/etherpad.org\\n" + # Also see for some database configuration advice! mysql_password: $RANDOM admin_password: $RANDOM