Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Postfix main.cf :
- # See /usr/share/postfix/main.cf.dist for a commented, more complete version
- # Debian specific: Specifying a file name will cause the first
- # line of that file to be used as the name. The Debian default
- # is /etc/mailname.
- #myorigin = /etc/mailname
- smtpd_banner = $myhostname ESMTP ready
- biff = no
- # appending .domain is the MUA's job.
- append_dot_mydomain = no
- # Uncomment the next line to generate "delayed mail" warnings
- #delay_warning_time = 4h
- readme_directory = /usr/share/doc/postfix
- # TLS parameters
- smtpd_tls_cert_file = /etc/postfix/ssl/xxx.ro.crt
- smtpd_tls_key_file = /etc/postfix/ssl/xxx.ro.key
- smtpd_tls_CAfile = /etc/postfix/ssl/ca.pem
- smtpd_tls_CApath = /etc/postfix/ssl
- smtpd_use_tls=yes
- smtpd_tls_loglevel = 1
- smtpd_tls_received_header = yes
- smtpd_tls_session_cache_timeout = 3600s
- tls_random_source = dev:/dev/urandom
- smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
- smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
- # See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
- # information on enabling SSL in the smtp client.
- myhostname = xxx.ro
- alias_maps = hash:/etc/aliases
- alias_database = hash:/etc/aliases
- myorigin = /etc/mailname
- mydestination = localhost.localdomain, localhost
- relayhost =
- mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 192.168.10.9/32
- #mailbox_command = procmail -a "$EXTENSION"
- mailbox_size_limit = 0
- recipient_delimiter = +
- inet_interfaces = all
- virtual_mailbox_domains = mysql:/etc/postfix/mysql-virtual-mailbox-domains.cf
- virtual_mailbox_maps = mysql:/etc/postfix/mysql-virtual-mailbox-maps.cf
- virtual_alias_maps = mysql:/etc/postfix/mysql-virtual-alias-maps.cf,mysql:/etc/postfix/mysql-email2email.cf
- virtual_transport = dovecot
- #dovecot_destination_recipient_limit = 1
- smtpd_helo_required = yes
- disable_vrfy_command = yes
- strict_rfc821_envelopes = yes
- invalid_hostname_reject_code = 554
- multi_recipient_bounce_reject_code = 554
- non_fqdn_reject_code = 554
- relay_domains_reject_code = 554
- unknown_address_reject_code = 554
- unknown_client_reject_code = 554
- unknown_hostname_reject_code = 554
- unknown_local_recipient_reject_code = 554
- unknown_relay_recipient_reject_code = 554
- #unknown_sender_reject_code = 554
- unknown_virtual_alias_reject_code = 554
- unknown_virtual_mailbox_reject_code = 554
- unverified_recipient_reject_code = 554
- unverified_sender_reject_code = 554
- html_directory = /usr/share/doc/postfix/html
- #smtpd_recipient_restrictions = permit_mynetworks permit_sasl_authenticated reject_unauth_destination
- smtpd_recipient_restrictions =
- reject_invalid_hostname,
- reject_unknown_recipient_domain,
- reject_unauth_pipelining,
- permit_mynetworks,
- permit_sasl_authenticated,
- reject_unauth_destination,
- reject_rbl_client dsn.rfc-ignorant.org,
- reject_rbl_client sbl-xbl.spamhaus.org,
- reject_rbl_client bl.spamcop.net,
- reject_rbl_client cbl.abuseat.org,
- reject_rbl_client ix.dnsbl.manitu.net,
- reject_rbl_client combined.rbl.msrbl.net,
- reject_rbl_client rabl.nuclearelephant.com,
- permit
- dovecot_destination_recipient_limit = 1
- smtpd_sasl_type = dovecot
- smtpd_sasl_path = private/auth
- smtpd_sasl_auth_enable = yes
- content_filter = smtp-amavis:[127.0.0.1]:10024
- receive_override_options = no_address_mappings
- message_size_limit = 0
- milter_default_action = accept
- milter_protocol = 2
- smtpd_milters = inet:localhost:12345
- non_smtpd_milters = inet:localhost:12345
- ==================================================
- Postfix master.cf :
- #
- # Postfix master process configuration file. For details on the format
- # of the file, see the master(5) manual page (command: "man 5 master").
- #
- # Do not forget to execute "postfix reload" after editing this file.
- #
- # ==========================================================================
- # service type private unpriv chroot wakeup maxproc command + args
- # (yes) (yes) (yes) (never) (100)
- # ==========================================================================
- smtp inet n - - - - smtpd
- #smtp inet n - - - 1 postscreen
- #smtpd pass - - - - - smtpd
- #dnsblog unix - - - - 0 dnsblog
- #tlsproxy unix - - - - 0 tlsproxy
- submission inet n - - - - smtpd
- # -o syslog_name=postfix/submission
- # -o smtpd_tls_security_level=encrypt
- -o smtpd_sasl_auth_enable=yes
- -o smtpd_client_restrictions=permit_sasl_authenticated,
- permit_mynetworks,
- check_relay_domains,
- reject_unauth_destination,
- reject_rbl_client zen.spamhaus.org,
- reject_rbl_client dsn.rfc-ignorant.org,
- reject_rbl_client sbl-xbl.spamhaus.org,
- reject_rbl_client bl.spamcop.net,
- reject_rbl_client cbl.abuseat.org,
- reject_rbl_client ix.dnsbl.manitu.net,
- reject_rbl_client combined.rbl.msrbl.net,
- reject_rbl_client rabl.nuclearelephant.com,
- reject
- smtps inet n - - - - smtpd
- # -o smtpd_tls_wrappermode=yes
- # -o smtpd_sasl_auth_enable=yes
- # -o smtpd_client_restrictions=permit_sasl_authenticated,reject
- # -o milter_macro_daemon_name=ORIGINATING
- #628 inet n - - - - qmqpd
- pickup fifo n - - 60 1 pickup
- cleanup unix n - - - 0 cleanup
- qmgr fifo n - n 300 1 qmgr
- #qmgr fifo n - n 300 1 oqmgr
- tlsmgr unix - - - 1000? 1 tlsmgr
- rewrite unix - - - - - trivial-rewrite
- bounce unix - - - - 0 bounce
- defer unix - - - - 0 bounce
- trace unix - - - - 0 bounce
- verify unix - - - - 1 verify
- flush unix n - - 1000? 0 flush
- proxymap unix - - n - - proxymap
- proxywrite unix - - n - 1 proxymap
- smtp unix - - - - - smtp
- relay unix - - - - - smtp
- # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
- showq unix n - - - - showq
- error unix - - - - - error
- retry unix - - - - - error
- discard unix - - - - - discard
- local unix - n n - - local
- virtual unix - n n - - virtual
- lmtp unix - - - - - lmtp
- anvil unix - - - - 1 anvil
- scache unix - - - - 1 scache
- #
- #
- # maildrop. See the Postfix MAILDROP_README file for details.
- # Also specify in main.cf: maildrop_destination_recipient_limit=1
- #
- maildrop unix - n n - - pipe
- flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
- #
- # See the Postfix UUCP_README file for configuration details.
- #
- uucp unix - n n - - pipe
- flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
- #
- # Other external delivery methods.
- #
- ifmail unix - n n - - pipe
- flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
- bsmtp unix - n n - - pipe
- flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient
- scalemail-backend unix - n n - 2 pipe
- flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension}
- mailman unix - n n - - pipe
- flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
- ${nexthop} ${user}
- #dovecot unix - n n - - pipe flags=DRhu user=vmail:vmail argv=/usr/lib/dovecot/deliver -f ${sender} -d ${recipient}
- dovecot unix - n n - - pipe
- flags=DRhu user=vmail:vmail argv=/usr/lib/dovecot/deliver -d ${recipient}
- smtp-amavis unix - - n - 2 smtp
- -o smtp_data_done_timeout=1200
- -o smtp_send_xforward_command=yes
- -o disable_dns_lookups=yes
- -o max_use=20
- -o smtpd_milters=inet:127.0.0.1:12345
- 127.0.0.1:10025 inet n - n - - smtpd
- -o content_filter=
- -o smtpd_delay_reject=no
- -o smtpd_client_restrictions=permit_mynetworks,reject
- -o smtpd_helo_restrictions=
- -o smtpd_sender_restrictions=
- -o smtpd_recipient_restrictions=permit_mynetworks,reject
- -o smtpd_data_restrictions=reject_unauth_pipelining
- -o smtpd_end_of_data_restrictions=
- -o smtpd_restriction_classes=
- -o mynetworks=127.0.0.0/8
- -o smtpd_error_sleep_time=0
- -o smtpd_soft_error_limit=1001
- -o smtpd_hard_error_limit=1000
- -o smtpd_client_connection_count_limit=0
- -o smtpd_client_connection_rate_limit=0
- -o receive_override_options=no_header_body_checks,no_unknown_recipient_checks,no_milters
- -o local_header_rewrite_clients=
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
