Add postfix/main.cf
This commit is contained in:
81
postfix/main.cf
Normal file
81
postfix/main.cf
Normal file
@@ -0,0 +1,81 @@
|
|||||||
|
# See http://www.postfix.org/COMPATIBILITY_README.html
|
||||||
|
compatibility_level = 3.9
|
||||||
|
maillog_file = /var/log/mail.log
|
||||||
|
|
||||||
|
# Text that follows the 220 code in the SMTP server's greeting banner.
|
||||||
|
# You MUST specify $myhostname at the start due to an RFC requirement.
|
||||||
|
smtpd_banner = $myhostname ESMTP $mail_name (Debian)
|
||||||
|
|
||||||
|
# IP protocols to use: ipv4, ipv6, or all
|
||||||
|
# (set this explicitly so `post-install upgrade-configuration' wont complain)
|
||||||
|
inet_protocols = all
|
||||||
|
inet_interfaces = all
|
||||||
|
|
||||||
|
mynetworks_style = host
|
||||||
|
|
||||||
|
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
|
||||||
|
|
||||||
|
mydestination = $myhostname, tobiastime.xyz, mx.tobiastime.xyz, localhost.localdomain, localhost
|
||||||
|
|
||||||
|
# Maximum size of a user mailbox
|
||||||
|
mailbox_size_limit = 0
|
||||||
|
home_mailbox = mail/
|
||||||
|
|
||||||
|
# List of alias maps to use to lookup local addresses.
|
||||||
|
# Per Debian Policy it should be /etc/aliases.
|
||||||
|
alias_maps = hash:/etc/aliases
|
||||||
|
|
||||||
|
# List of alias maps to make indexes on, when running newaliases.
|
||||||
|
alias_database = hash:/etc/aliases
|
||||||
|
|
||||||
|
# Notify (or not) local biff service when new mail arrives.
|
||||||
|
# Rarely used these days.
|
||||||
|
biff = no
|
||||||
|
|
||||||
|
# Separator between user name and address extension (user+foo@domain)
|
||||||
|
recipient_delimiter = +
|
||||||
|
|
||||||
|
cyrus_sasl_config_path = /etc/postfix/sasl
|
||||||
|
|
||||||
|
### TLS settings
|
||||||
|
# SMTP server RSA key and certificate in PEM format
|
||||||
|
# enter the actual path
|
||||||
|
smtpd_tls_key_file = /path/2/privkey.pem
|
||||||
|
smtpd_tls_cert_file = /path/2/cert.pem
|
||||||
|
# SMTP Server security level: none|may|encrypt
|
||||||
|
smtpd_tls_security_level = may
|
||||||
|
|
||||||
|
# List of CAs for SMTP Client to trust
|
||||||
|
# Prefer this over _CApath when smtp is running chrooted
|
||||||
|
# enter actual path
|
||||||
|
smtp_tls_CAfile = /path/2/ca-certificates.crt
|
||||||
|
|
||||||
|
# SMTP Client TLS security level: none|may|encrypt|...
|
||||||
|
smtp_tls_security_level = encrypt
|
||||||
|
|
||||||
|
# SMTP Client TLS session cache
|
||||||
|
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
|
||||||
|
smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination
|
||||||
|
|
||||||
|
smtpd_tls_auth_only = yes
|
||||||
|
smtpd_tls_loglevel = 1
|
||||||
|
smtpd_tls_received_header = yes
|
||||||
|
|
||||||
|
myhostname = mx.tobiastime.xyz
|
||||||
|
smtp_dns_support_level = dnssec
|
||||||
|
|
||||||
|
milter_default_action = accept
|
||||||
|
milter_protocol = 6
|
||||||
|
|
||||||
|
#utilize actual port
|
||||||
|
smtpd_milters = inet:localhost:12345
|
||||||
|
non_smtpd_milters = inet:localhost:12334
|
||||||
|
|
||||||
|
smtpd_sasl_auth_enable = yes
|
||||||
|
smtpd_sasl_type = dovecot
|
||||||
|
smtpd_sasl_path = private/auth
|
||||||
|
header_checks = regexp:/etc/postfix/header_checks
|
||||||
|
|
||||||
|
smtpd_sender_restrictions =
|
||||||
|
reject_sender_login_mismatch,
|
||||||
|
reject_unknown_sender_domain
|
||||||
Reference in New Issue
Block a user