summaryrefslogtreecommitdiffstats
path: root/roles/IMAP/files/etc/dovecot/conf.d/10-ssl.conf
diff options
context:
space:
mode:
Diffstat (limited to 'roles/IMAP/files/etc/dovecot/conf.d/10-ssl.conf')
-rw-r--r--roles/IMAP/files/etc/dovecot/conf.d/10-ssl.conf8
1 files changed, 8 insertions, 0 deletions
diff --git a/roles/IMAP/files/etc/dovecot/conf.d/10-ssl.conf b/roles/IMAP/files/etc/dovecot/conf.d/10-ssl.conf
index a733e94..4eabe53 100644
--- a/roles/IMAP/files/etc/dovecot/conf.d/10-ssl.conf
+++ b/roles/IMAP/files/etc/dovecot/conf.d/10-ssl.conf
@@ -5,6 +5,14 @@
# SSL/TLS support: yes, no, required. <doc/wiki/SSL.txt>
ssl = required
+# No need for SSL if the packets are protected by IPSec.
+local 172.16.0.1 {
+ protocol imap {
+ disable_plaintext_auth = no
+ ssl = no
+ }
+}
+
# PEM encoded X.509 SSL/TLS certificate and private key. They're opened before
# dropping root privileges, so keep the key file unreadable by anyone but
# root. Included doc/mkcert.sh can be used to easily generate self-signed
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-04 00:05:52 +0000