From 953f6a7a8963a2976196e83a4a937c7762b31ab8 Mon Sep 17 00:00:00 2001 From: Johannes Löthberg Date: Sun, 10 May 2015 14:03:37 +0200 Subject: Add smtpd.confs --- lucifer.kyriasis.com/smtpd.conf | 70 +++++++++++++++++++++++++++++++++ theos.kyriasis.com/smtpd.conf | 85 +++++++++++++++++++++++++++++++++++++++++ 2 files changed, 155 insertions(+) create mode 100644 lucifer.kyriasis.com/smtpd.conf create mode 100644 theos.kyriasis.com/smtpd.conf diff --git a/lucifer.kyriasis.com/smtpd.conf b/lucifer.kyriasis.com/smtpd.conf new file mode 100644 index 0000000..0553210 --- /dev/null +++ b/lucifer.kyriasis.com/smtpd.conf @@ -0,0 +1,70 @@ +## +# PKI information +# + +pki lucifer.kyriasis.com certificate "/etc/smtpd/certs/lucifer.kyriasis.com.crt" +pki lucifer.kyriasis.com key "/etc/smtpd/certs/lucifer.kyriasis.com.key" +pki lucifer.kyriasis.com ca "/etc/smtpd/certs/sub.class1.server.ca.pem" + + +## +# Listen directives +# + +listen on eth0 port 25 tls pki lucifer.kyriasis.com auth-optional +listen on eth0 port 587 tls-require pki lucifer.kyriasis.com auth +listen on eth0 port 465 smtps pki lucifer.kyriasis.com auth + +listen on lo port 10029 tag DKIM-OUT + +listen on localhost + + +## +# Tables +# + +# If you edit the file, you have to run "smtpctl update table users" +table users file:/etc/smtpd/users + + +## +# Relay for hosts we act as a backup for +# + +accept from any \ + for domain "theos.kyriasis.com" \ + relay backup lucifer.kyriasis.com + + +## +# Incoming +# + +# Handle emails directly to local domain +accept from any \ + for domain "lucifer.kyriasis.com" \ + deliver to mda "/usr/bin/maildrop -d %{user.username}" + +# Handle incoming to top-level domains +accept from any \ + for domain { kyriasis.com, the-tk.com } \ + virtual \ + deliver to mda "/usr/bin/maildrop -d %{user.username}" + +# Handle local mail +accept from local \ + for local \ + deliver to mda "/usr/bin/maildrop -d %{user.username}" + + +## +# Outgoing +# + +accept tagged DKIM-OUT \ + for any \ + relay + +accept for any \ + relay via smtp://127.0.0.1:10028 diff --git a/theos.kyriasis.com/smtpd.conf b/theos.kyriasis.com/smtpd.conf new file mode 100644 index 0000000..baa2d0e --- /dev/null +++ b/theos.kyriasis.com/smtpd.conf @@ -0,0 +1,85 @@ +## +# PKI information +# + +pki theos.kyriasis.com certificate "/etc/smtpd/certs/chained.pem" +pki theos.kyriasis.com key "/etc/smtpd/certs/theos.kyriasis.com.key" +pki theos.kyriasis.com ca "/etc/smtpd/certs/ca.pem" + + +## +# Listen directives +# + +listen on eth0 port 25 tls pki theos.kyriasis.com auth-optional +listen on eth0 port 587 tls-require pki theos.kyriasis.com auth +listen on eth0 port 465 smtps pki theos.kyriasis.com auth + +listen on lo port 10026 tag DKIM-IN +listen on lo port 10029 tag DKIM-OUT + +listen on localhost + + +## +# Tables +# + +# If you edit the file, you have to run "smtpctl update table users" +table users file:/etc/smtpd/users + + +## +# Relay for hosts we act as a backup for +# + +accept from any \ + for domain "lucifer.kyriasis.com" \ + relay backup theos.kyriasis.com + + +## +# Incoming +# + +# Handle incoming to mailing-lists +accept tagged DKIM-IN \ + from any \ + for domain "lists.kyriasis.com" virtual { "@lists.kyriasis.com" = lists } \ + deliver to mda "/usr/local/bin/mlmmj-receive -L /home/lists/spool/%{dest.user:strip}/" + +# Handle emails directly to local domain +accept tagged DKIM-IN \ + from any \ + for domain "theos.kyriasis.com" \ + alias { root = kyrias } \ + deliver to mda "/usr/bin/maildrop -d %{user.username}" + +# Handle incoming to top-level domains +accept tagged DKIM-IN \ + from any \ + for domain { kyriasis.com, the-tk.com } \ + virtual \ + deliver to mda "/usr/bin/maildrop -d %{user.username}" + +# Handle local mail +accept from local \ + for local \ + deliver to mda "/usr/bin/maildrop -d %{user.username}" + +# Relay everything not already accepted through dkimproxy +accept from any \ + for domain { kyriasis.com, theos.kyriasis.com, the-tk.com } \ + relay via smtp://127.0.0.1:10025 + + +## +# Outgoing +# + +accept tagged DKIM-OUT \ + for any \ + relay + +accept for any \ + relay via smtp://127.0.0.1:10028 -- cgit v1.2.3-54-g00ecf