summaryrefslogtreecommitdiffstats
path: root/roles/common/templates/etc
diff options
context:
space:
mode:
authorGuilhem Moulin <guilhem@fripost.org>2017-06-01 19:12:37 +0200
committerGuilhem Moulin <guilhem@fripost.org>2017-06-02 10:03:45 +0200
commit22aca135a5d1658b0d753e85cc7db8342fd96730 (patch)
tree1aa445756594ce68b20edb5e29ca03fcd0769a5f /roles/common/templates/etc
parent8cfd584400a9852c4bd7c4b3d50ff0cacc8ec019 (diff)
postfix: don't rate-limit our IPsec subnet.
Diffstat (limited to 'roles/common/templates/etc')
-rw-r--r--roles/common/templates/etc/postfix/master.cf.j22
1 files changed, 2 insertions, 0 deletions
diff --git a/roles/common/templates/etc/postfix/master.cf.j2 b/roles/common/templates/etc/postfix/master.cf.j2
index 52b2ec4..71deb29 100644
--- a/roles/common/templates/etc/postfix/master.cf.j2
+++ b/roles/common/templates/etc/postfix/master.cf.j2
@@ -24,8 +24,10 @@ submission inet n - - - - smtpd
-o tls_high_cipherlist=EECDH+AESGCM:!MEDIUM:!LOW:!EXP:!aNULL:!eNULL
{% if groups.webmail | difference([inventory_hostname]) | length > 0 %}
[{{ postfix_instance.MSA.addr }}]:{{ postfix_instance.MSA.port }} inet n - - - - smtpd
+ -o broken_sasl_auth_clients=no
-o smtpd_tls_security_level=none
-o smtpd_sasl_security_options=noanonymous
+ -o smtpd_sasl_exceptions_networks=
{% endif %}
{% elif inst in ['IMAP', 'out', 'lists'] %}
[{{ postfix_instance[inst].addr }}]:{{ postfix_instance[inst].port }} inet n - - - - smtpd