clone from private repo
This commit is contained in:
commit
c0ae983acb
48 changed files with 2766 additions and 0 deletions
59
mail_system.yml
Normal file
59
mail_system.yml
Normal file
|
|
@ -0,0 +1,59 @@
|
|||
# install a complete mail system with
|
||||
#
|
||||
# - postfix
|
||||
# - dovecot
|
||||
# - clamav (with unofficial signatures)
|
||||
# - rspamd (integrating clamav)
|
||||
#
|
||||
# not included here: list server, roundcube
|
||||
#
|
||||
# Please edit the host's config (inventory/host_vars/${hostname}):
|
||||
# Add a new dictionary 'mailserver':
|
||||
#
|
||||
# mailserver:
|
||||
# postgresql:
|
||||
# host: 127.0.0.1
|
||||
# port: 5432
|
||||
# dbname: mailserver
|
||||
# username: mailserver
|
||||
# password: !vault |
|
||||
# $ANSIBLE_VAULT;1.1;AES256
|
||||
# XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
|
||||
# XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
|
||||
# XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
|
||||
# XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
|
||||
# XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
|
||||
# postfix:
|
||||
# overwrite_config: no
|
||||
# mynetworks: "10.0.0.0/24 [2a01:XXXX:XXXX:XXXX::]/64"
|
||||
# dovecot:
|
||||
# auth_default_realm: mymaindomain.org
|
||||
#
|
||||
# (Use ansible-vault encrypt_string zo encrypt the password.)
|
||||
#
|
||||
# TODOs after running this playbook:
|
||||
#
|
||||
# Configure mail DNS:
|
||||
#
|
||||
# - MX
|
||||
# - PTR (IPv4 and IPv6)
|
||||
#
|
||||
# SPF, DMARC and DKIM DNS records should be created when adding a domain:
|
||||
#
|
||||
# - SPF (IN TXT "v=spf1 mx" or more)
|
||||
# - DMARC (_dmarc IN TXT "v=DMARC1; p=reject; rua=mailto:admin@mymaindomain.org; adkim=s; aspf=s;")
|
||||
# - DKIM (rspamadm dkim_keygen -d mymaindomain.org -s 20190911 -b 4096;
|
||||
# get the DNS entry and save the private key
|
||||
#
|
||||
# Please open the firewall: open or DNAT tcp ports 25, 143, 587, 4190 to the host (incoming)
|
||||
#
|
||||
# Replace the ssl certificates with signed ones.
|
||||
#
|
||||
# Users and domains can be added to the PostgreSQL tables;
|
||||
# code for that is not part of this playbook.
|
||||
|
||||
- name: install mail_system
|
||||
user: root
|
||||
hosts: mail
|
||||
roles:
|
||||
- mail_system
|
||||
Loading…
Add table
Add a link
Reference in a new issue