2009-08-28 11:15:35 +02:00
|
|
|
= Postfix Puppet module
|
2008-12-03 17:53:28 +01:00
|
|
|
|
2009-08-28 11:15:35 +02:00
|
|
|
This module will help install and configure postfix.
|
|
|
|
|
|
|
|
|
|
A couple of classes will preconfigure postfix for common needs.
|
|
|
|
|
|
2012-12-30 15:43:06 +01:00
|
|
|
This module needs:
|
|
|
|
|
|
|
|
|
|
- the concat module: git://labs.riseup.net/shared-concat
|
|
|
|
|
|
2009-12-17 16:37:53 +01:00
|
|
|
Config
|
|
|
|
|
------
|
2010-11-10 19:25:58 +01:00
|
|
|
- set $postfix_use_amavisd="yes" to include postfix::amavis
|
2011-03-05 04:55:18 +01:00
|
|
|
- set $postfix_anon_sasl="yes" to hide the originating IP in email
|
|
|
|
|
relayed for an authenticated SASL client; this needs Postfix
|
|
|
|
|
2.3 or later to work; beware! Postfix logs the header replacement
|
|
|
|
|
has been done, which means that you are storing this information,
|
|
|
|
|
unless you are anonymizing your logs.
|
2011-03-05 04:45:37 +01:00
|
|
|
- set $postfix_manage_header_checks="yes" to manage header checks (see
|
|
|
|
|
postfix::header_checks for details)
|
2012-04-07 20:40:42 +02:00
|
|
|
- set $postfix_manage_transport_regexp="yes" to manage header checks (see
|
|
|
|
|
postfix::transport_regexp for details)
|
|
|
|
|
- set $postfix_manage_virtual_regexp="yes" to manage header checks (see
|
|
|
|
|
postfix::virtual_regexp for details)
|
2010-11-10 21:17:00 +01:00
|
|
|
- set $postfix_manage_tls_policy="yes" to manage TLS policy (see
|
|
|
|
|
postfix::tlspolicy for details)
|
2011-09-13 07:18:56 +02:00
|
|
|
- by default, postfix will bind to all interfaces, but sometimes you don't want
|
|
|
|
|
that. To bind to specific interfaces, use the $postfix_inet_interfaces
|
|
|
|
|
variable and set it to exactly what would be in the main.cf file.
|
|
|
|
|
- some hosts have weird-looking host names (dedicated servers and VPSes). To
|
|
|
|
|
set the server's domain of origin, set the $postfix_myorigin value
|
2009-12-17 16:37:53 +01:00
|
|
|
|
2009-08-28 11:15:35 +02:00
|
|
|
== Example:
|
|
|
|
|
|
|
|
|
|
include postfix
|
|
|
|
|
|
|
|
|
|
postfix::config { "relay_domains": value => "localhost host.foo.com" }
|
2008-12-03 17:53:28 +01:00
|
|
|
|
2012-12-30 15:43:06 +01:00
|
|
|
Deprecation notice
|
|
|
|
|
------------------
|
|
|
|
|
|
|
|
|
|
It used to be that one could drop header checks snippets into the
|
|
|
|
|
following source directories:
|
|
|
|
|
|
|
|
|
|
"puppet:///modules/site-postfix/${fqdn}/header_checks.d"
|
|
|
|
|
"puppet:///modules/site-postfix/header_checks.d"
|
|
|
|
|
"puppet:///files/etc/postfix/header_checks.d"
|
|
|
|
|
"puppet:///modules/postfix/header_checks.d"
|
|
|
|
|
|
|
|
|
|
... and TLS policy snippets into those:
|
|
|
|
|
|
|
|
|
|
"puppet:///modules/site-postfix/${fqdn}/tls_policy.d"
|
|
|
|
|
"puppet:///modules/site-postfix/tls_policy.d"
|
|
|
|
|
"puppet:///modules/postfix/tls_policy.d"
|
|
|
|
|
|
|
|
|
|
This is not supported anymore.
|
|
|
|
|
|
|
|
|
|
Every such snippet much now be configured using the (respectively)
|
|
|
|
|
postfix::header_checks_snippet and postfix::tlspolicy_snippet defines.
|
