You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

main.cf 3.2KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980
  1. # See /usr/share/postfix/main.cf.dist for a commented, more complete version
  2. # Debian specific: Specifying a file name will cause the first
  3. # line of that file to be used as the name. The Debian default
  4. # is /etc/mailname.
  5. #myorigin = /etc/mailname
  6. smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
  7. biff = no
  8. # appending .domain is the MUA's job.
  9. append_dot_mydomain = no
  10. # Uncomment the next line to generate "delayed mail" warnings
  11. #delay_warning_time = 4h
  12. readme_directory = no
  13. # See http://www.postfix.org/COMPATIBILITY_README.html -- default to 2 on
  14. # fresh installs.
  15. compatibility_level = 2
  16. # TLS parameters
  17. smtpd_tls_cert_file=/etc/ssl/certs/fullchain.pem
  18. smtpd_tls_key_file=/etc/ssl/certs/privkey.pem
  19. smtpd_use_tls=yes
  20. smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
  21. smtpd_tls_loglevel=1
  22. smtpd_tls_received_header=yes
  23. smtp_use_tls=yes
  24. smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
  25. # See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
  26. # information on enabling SSL in the smtp client.
  27. mydomain = {{ salt['pillar.get']("model:common:mail:domain") }}
  28. myhostname = {{ salt['pillar.get']("model:common:mail:host") }}
  29. mailbox_command = procmail -a "$EXTENSION"
  30. mailbox_size_limit = 0
  31. message_size_limit = 0
  32. recipient_delimiter = +
  33. recipient_bcc_maps = pgsql:/etc/postfix/pgsql_recipient_bcc.cf
  34. transport_maps = pgsql:/etc/postfix/pgsql_transport.cf
  35. virtual_mailbox_domains = pgsql:/etc/postfix/pgsql_virtual_mailbox_domains.cf
  36. virtual_mailbox_maps = pgsql:/etc/postfix/pgsql_virtual_mailbox_maps.cf
  37. virtual_alias_maps = pgsql:/etc/postfix/pgsql_virtual_alias_maps.cf,
  38. pgsql:/etc/postfix/pgsql_virtual_alias_maps_regexp.cf,
  39. pgsql:/etc/postfix/pgsql_virtual_alias_domain_maps.cf,
  40. pgsql:/etc/postfix/pgsql_virtual_alias_maps_alias.cf
  41. relay_domains = pgsql:/etc/postfix/pgsql_relay_domains.cf
  42. virtual_uid_maps=static:7788
  43. virtual_gid_maps=static:7788
  44. virtual_transport=lmtp:inet:{{ salt['pillar.get']("model:dovecot:host") }}:{{ salt['pillar.get']("model:dovecot:lmtp:port") }}
  45. dovecot_destination_recipient_limit = 1
  46. smtpd_sasl_type=dovecot
  47. smtpd_sasl_path=inet:{{ salt['pillar.get']("model:dovecot:host") }}:{{ salt['pillar.get']("model:dovecot:sasl:port") }}
  48. smtpd_sasl_auth_enable=yes
  49. smtpd_sasl_local_domain=$myhostname
  50. smtpd_helo_required=yes
  51. smtpd_helo_restrictions=reject_invalid_helo_hostname
  52. smtpd_recipient_restrictions=permit_mynetworks,
  53. permit_sasl_authenticated,
  54. reject_unknown_recipient_domain,
  55. reject_unauth_pipelining,
  56. reject_unauth_destination
  57. milter_default_action = accept
  58. smtpd_milters = inet:{{ salt['pillar.get']("model:milterSasl:host") }}:{{ salt['pillar.get']("model:milterSasl:port") }},
  59. inet:{{ salt['pillar.get']("model:opendkim:host") }}:{{ salt['pillar.get']("model:opendkim:port") }}
  60. non_smtpd_milters = inet:{{ salt['pillar.get']("model:opendkim:host") }}:{{ salt['pillar.get']("model:opendkim:port") }}
  61. smtpd_relay_restrictions = permit_mynetworks,
  62. permit_sasl_authenticated,
  63. reject_unknown_recipient_domain,
  64. reject_unauth_pipelining,
  65. reject_unauth_destination