X-Git-Url: https://dehnerts.com/gitweb/?a=blobdiff_plain;f=master.cf;h=4e3da11926ec6aa0f9f8f3de19ea6606a86a0681;hb=0cc1534f7c1c4ce61b29220b2ba149bf4f1a004a;hp=e6a2c71c115e9e719ebd6fd78abddf353c1a2822;hpb=cd6caa75b09c3c9c1ce74030e4038ce1a4f3bb3e;p=sysconfig%2Fpostfix.git diff --git a/master.cf b/master.cf index e6a2c71..4e3da11 100644 --- a/master.cf +++ b/master.cf @@ -8,7 +8,6 @@ # service type private unpriv chroot wakeup maxproc command + args # (yes) (yes) (yes) (never) (100) # ========================================================================== -smtp inet n - - - - smtpd #submission inet n - - - - smtpd # -o smtpd_tls_security_level=encrypt # -o smtpd_sasl_auth_enable=yes @@ -34,6 +33,31 @@ flush unix n - - 1000? 0 flush proxymap unix - - n - - proxymap proxywrite unix - - n - 1 proxymap smtp unix - - - - - smtp +#smtp inet n - - - - smtpd +# +# Before-filter SMTP server. Receive mail from the network and +# pass it to the content filter on localhost port 10025. +# +# I *think* that the maxproc cap wants to be no more than the number +# of spampd processes that can run, but I'm not really sure +# (and hopefully it doesn't *really* matter) +smtp inet n - - - 5 smtpd + -o smtpd_proxy_filter=127.0.0.1:10025 + -o smtpd_client_connection_count_limit=15 +# +# After-filter SMTP server. Receive mail from the content filter +# on localhost port 10026. +# +127.0.0.1:10026 inet n - n - - smtpd + -o smtpd_authorized_xforward_hosts=127.0.0.0/8 + -o smtpd_client_restrictions= + -o smtpd_helo_restrictions= + -o smtpd_sender_restrictions= + -o smtpd_recipient_restrictions=permit_mynetworks,reject + -o smtpd_data_restrictions= + -o mynetworks=127.0.0.0/8 + -o receive_override_options=no_unknown_recipient_checks + # When relaying mail as backup MX, disable fallback_relay to avoid MX loops relay unix - - - - - smtp -o smtp_fallback_relay=