postfix: don't rate-limit our IPsec subnet.

author: Guilhem Moulin <guilhem@fripost.org> 2017-06-01 19:12:37 +0200
committer: Guilhem Moulin <guilhem@fripost.org> 2017-06-02 10:03:45 +0200
commit: 22aca135a5d1658b0d753e85cc7db8342fd96730 (patch)
tree: 1aa445756594ce68b20edb5e29ca03fcd0769a5f /roles/common/templates/etc
parent: 8cfd584400a9852c4bd7c4b3d50ff0cacc8ec019 (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/roles/common/templates/etc/postfix/master.cf.j2 b/roles/common/templates/etc/postfix/master.cf.j2
index 52b2ec4..71deb29 100644
--- a/roles/common/templates/etc/postfix/master.cf.j2
+++ b/roles/common/templates/etc/postfix/master.cf.j2
@@ -24,8 +24,10 @@ submission inet n       -       -       -       -       smtpd
   -o tls_high_cipherlist=EECDH+AESGCM:!MEDIUM:!LOW:!EXP:!aNULL:!eNULL
 {% if groups.webmail | difference([inventory_hostname]) | length > 0 %}
 [{{ postfix_instance.MSA.addr }}]:{{ postfix_instance.MSA.port }} inet n       -       -       -       -       smtpd
+  -o broken_sasl_auth_clients=no
   -o smtpd_tls_security_level=none
   -o smtpd_sasl_security_options=noanonymous
+  -o smtpd_sasl_exceptions_networks=
 {% endif %}
 {% elif inst in ['IMAP', 'out', 'lists'] %}
 [{{ postfix_instance[inst].addr }}]:{{ postfix_instance[inst].port }} inet n       -       -       -       -       smtpd
author	Guilhem Moulin <guilhem@fripost.org>	2017-06-01 19:12:37 +0200
committer	Guilhem Moulin <guilhem@fripost.org>	2017-06-02 10:03:45 +0200
commit	22aca135a5d1658b0d753e85cc7db8342fd96730 (patch)
tree	1aa445756594ce68b20edb5e29ca03fcd0769a5f /roles/common/templates/etc
parent	8cfd584400a9852c4bd7c4b3d50ff0cacc8ec019 (diff)