From b441dd4a7c3ce72008968d324a12e5c342d164a3 Mon Sep 17 00:00:00 2001
From: Guilhem Moulin <guilhem@fripost.org>
Date: Sat, 9 Jul 2016 23:46:21 +0200
Subject: Route SMTP traffic from the webmail through IPsec.

---
 roles/out/templates/etc/postfix/main.cf.j2 | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

(limited to 'roles/out')

diff --git a/roles/out/templates/etc/postfix/main.cf.j2 b/roles/out/templates/etc/postfix/main.cf.j2
index ddd46d5..34ac84e 100644
--- a/roles/out/templates/etc/postfix/main.cf.j2
+++ b/roles/out/templates/etc/postfix/main.cf.j2
@@ -27,8 +27,11 @@ multi_instance_group  = {{ postfix_instance[inst].group | default('') }}
 multi_instance_name   = postfix-{{ postfix_instance[inst].name }}
 multi_instance_enable = yes
 
-mynetworks_style = host
-inet_interfaces  = all
+mynetworks      = 127.0.0.0/8, [::1]/128
+{%- if groups.all | length > 1 -%}
+                , {{ ipsec_subnet }}
+{% endif %}
+inet_interfaces = all
 
 # No local delivery
 mydestination        =
-- 
cgit v1.2.3