summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorGuilhem Moulin <guilhem@fripost.org>2020-01-23 02:26:30 +0100
committerGuilhem Moulin <guilhem@fripost.org>2020-01-23 02:26:35 +0100
commit456e09fa40d01b70ac1788d0338fba00079e4121 (patch)
treea6f2612a0db70c9ed236274c46cb0e19198d0245
parenta092bfd947773281a23419ee0ab62358371b7166 (diff)
Postfix: disable DNS lookups on the internal SMTPds.
Our internal IPs don't have a reverse PTR record, and skipping the resolution speeds up mail delivery. http://www.postfix.org/postconf.5.html#smtpd_peername_lookup
-rw-r--r--roles/common/templates/etc/postfix/master.cf.j22
1 files changed, 2 insertions, 0 deletions
diff --git a/roles/common/templates/etc/postfix/master.cf.j2 b/roles/common/templates/etc/postfix/master.cf.j2
index c481ad4..a9c73f7 100644
--- a/roles/common/templates/etc/postfix/master.cf.j2
+++ b/roles/common/templates/etc/postfix/master.cf.j2
@@ -30,10 +30,12 @@ submissions inet n - y - - smtpd
-o smtpd_sasl_security_options=noanonymous
-o smtpd_sasl_exceptions_networks=
-o smtpd_authorized_xforward_hosts=127.0.0.0/8,[::1]/128{{ ipsec_subnet is defined | ternary(','+ipsec_subnet, '') }}
+ -o smtpd_peername_lookup=no
{% endif %}
{% elif inst in ['IMAP', 'out', 'lists'] %}
[{{ postfix_instance[inst].addr }}]:{{ postfix_instance[inst].port }} inet n - y - - smtpd
-o smtpd_authorized_xforward_hosts=127.0.0.0/8,[::1]/128{{ ipsec_subnet is defined | ternary(','+ipsec_subnet, '') }}
+ -o smtpd_peername_lookup=no
{% endif %}
pickup unix n - y 60 1 pickup
cleanup unix n - y - 0 cleanup