adrien/ansible-role-postfix
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Externalize role

Browse source
This commit is contained in:
Adrien Reslinger 2018-10-08 19:35:21 +02:00
commit 6dd27f2df4
Signed by: adrien
GPG key ID: DA7B27055C66D6DE
18 changed files with 1740 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

7
templates/etc/opendkim/KeyTable.j2 Normal file
View file

@ -0,0 +1,7 @@
# OPENDKIM KEY TABLE
# To use this file, uncomment the #KeyTable option in /etc/opendkim.conf,
# then uncomment the following line and replace example.com with your domain
# name, then restart OpenDKIM. Additional keys may be added on separate lines.
#default._domainkey.example.com example.com:default:/etc/opendkim/keys/default.private
default._domainkey.{{ postfix_mydomain }} {{ postfix_mydomain }}:default:/etc/opendkim/keys/{{ postfix_mydomain }}/default.private

26
templates/etc/opendkim/SigningTable.j2 Normal file
View file

@ -0,0 +1,26 @@
# OPENDKIM SIGNING TABLE
# This table controls how to apply one or more signatures to outgoing messages based
# on the address found in the From: header field. In simple terms, this tells
# OpenDKIM "how" to apply your keys.
# To use this file, uncomment the SigningTable option in /etc/opendkim.conf,
# then uncomment one of the usage examples below and replace example.com with your
# domain name, then restart OpenDKIM.
# WILDCARD EXAMPLE
# Enables signing for any address on the listed domain(s), but will work only if
# "refile:/etc/opendkim/SigningTable" is included in /etc/opendkim.conf.
# Create additional lines for additional domains.
#*@example.com default._domainkey.example.com
*@{{ postfix_mydomain }} default._domainkey.{{ postfix_mydomain }}
# NON-WILDCARD EXAMPLE
# If "file:" (instead of "refile:") is specified in /etc/opendkim.conf, then
# wildcards will not work. Instead, full user@host is checked first, then simply host,
# then user@.domain (with all superdomains checked in sequence, so "foo.example.com"
# would first check "user@foo.example.com", then "user@.example.com", then "user@.com"),
# then .domain, then user@*, and finally *. See the opendkim.conf(5) man page under
# "SigningTable" for more details.
#example.com default._domainkey.example.com

11
templates/etc/opendkim/TrustedHosts.j2 Normal file
View file

@ -0,0 +1,11 @@
# OPENDKIM TRUSTED HOSTS
# To use this file, uncomment the #ExternalIgnoreList and/or the #InternalHosts
# option in /etc/opendkim.conf then restart OpenDKIM. Additional hosts
# may be added on separate lines (IP addresses, hostnames, or CIDR ranges).
# The localhost IP (127.0.0.1) should always be the first entry in this file.
127.0.0.1
::1
#host.example.com
#192.168.1.0/24
{{ postfix_myhostname }}
*.{{ postfix_mydomain }}