thomas
/
sovereign
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
No Description
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
879 Commits
1 Branch
Tree: a518f9c035
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'a518f9c035'
${ noResults }
sovereign/roles/mailserver/tasks/postfix.yml

postfix.yml 2.2KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667 
  1. - name: Install Postgres

  2.   apt: pkg=postgresql state=present

  3.   tags:

  4.     - dependencies

  5. 

  6. - name: Install Postfix and related packages

  7.   apt: pkg={{ item }} state=installed

  8.   with_items:

  9.     - libsasl2-modules

  10.     - postfix

  11.     - postfix-pcre

  12.     - postfix-pgsql

  13.     - postgrey

  14.     - python-psycopg2

  15.     - sasl2-bin

  16.   tags:

  17.     - dependencies

  18. 

  19. - name: Set password for PostgreSQL admin user

  20.   become: true

  21.   become_user: postgres

  22.   postgresql_user: name={{ db_admin_username }} password={{ db_admin_password }} encrypted=yes

  23.   notify: import sql postfix

  24. 

  25. - name: Create database user for mail server

  26.   postgresql_user: login_host=localhost login_user={{ db_admin_username }} login_password="{{ db_admin_password }}" name={{ mail_db_username }} password="{{ mail_db_password }}" encrypted=yes state=present

  27.   notify: import sql postfix

  28. 

  29. - name: Create database for mail server

  30.   postgresql_db: login_host=localhost login_user={{ db_admin_username }} login_password="{{ db_admin_password }}" name={{ mail_db_database }} state=present owner={{ mail_db_username }}

  31.   notify: import sql postfix

  32. 

  33. - name: Copy import.sql

  34.   template: src=mailserver.sql.j2 dest=/etc/postfix/import.sql owner=root group=root mode=0600

  35.   notify: import sql postfix

  36. 

  37. - name: Create postfix maps directory

  38.   file: path=/etc/postfix/maps state=directory owner=root group=root

  39.   when: mail_header_privacy == 1

  40. 

  41. - name: Copy smtp_header_checks.pcre

  42.   copy: src=etc_postfix_maps_smtp_header_checks.pcre dest=/etc/postfix/maps/smtp_header_checks.pcre owner=root group=root

  43.   when: mail_header_privacy == 1

  44. 

  45. - name: Copy main.cf

  46.   template: src=etc_postfix_main.cf.j2 dest=/etc/postfix/main.cf owner=root group=root

  47.   notify: restart postfix

  48. 

  49. - name: Copy master.cf

  50.   copy: src=etc_postfix_master.cf dest=/etc/postfix/master.cf owner=root group=root

  51.   notify: restart postfix

  52. 

  53. - name: Copy additional postfix configuration files

  54.   template: src=etc_postfix_{{ item }}.j2 dest=/etc/postfix/{{ item }} owner=root group=root

  55.   with_items:

  56.     - pgsql-virtual-alias-maps.cf

  57.     - pgsql-virtual-mailbox-domains.cf

  58.     - pgsql-virtual-mailbox-maps.cf

  59.   notify: restart postfix

  60. 

  61. - name: Set firewall rules for postfix

  62.   ufw: rule=allow port={{ item }} proto=tcp

  63.   with_items:

  64.     - smtp

  65.     - ssmtp

  66.     - submission

  67.   tags: ufw