summaryrefslogtreecommitdiffstats
path: root/roles/common/templates/etc
diff options
context:
space:
mode:
Diffstat (limited to 'roles/common/templates/etc')
-rw-r--r--roles/common/templates/etc/fail2ban/jail.local.j210
-rw-r--r--roles/common/templates/etc/iptables/services.j23
2 files changed, 13 insertions, 0 deletions
diff --git a/roles/common/templates/etc/fail2ban/jail.local.j2 b/roles/common/templates/etc/fail2ban/jail.local.j2
index 96f2d6b..661c862 100644
--- a/roles/common/templates/etc/fail2ban/jail.local.j2
+++ b/roles/common/templates/etc/fail2ban/jail.local.j2
@@ -71,3 +71,13 @@ port = imap2,imap3,imaps,pop3,pop3s
filter = dovecot
logpath = /var/log/mail.log
{% endif %}
+
+
+{% if 'MSA' in group_names %}
+[sasl]
+
+enabled = true
+port = submission
+filter = sasl
+logpath = /var/log/mail.warn
+{% endif %}
diff --git a/roles/common/templates/etc/iptables/services.j2 b/roles/common/templates/etc/iptables/services.j2
index cd7a8bd..5243ae1 100644
--- a/roles/common/templates/etc/iptables/services.j2
+++ b/roles/common/templates/etc/iptables/services.j2
@@ -18,3 +18,6 @@ in tcp 25 # SMTP
{% if 'IMAP' in group_names %}
in tcp 993 # IMAPS
{% endif %}
+{% if 'MSA' in group_names %}
+in tcp 587 # SMTP-AUTH
+{% endif %}
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-31 08:55:42 +0000