-
Notifications
You must be signed in to change notification settings - Fork 0
/
mailserver.pp
39 lines (34 loc) · 1014 Bytes
/
mailserver.pp
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
# Generic class for a mailserver installation
# currently only handles the firewall rules
class role::mailserver {
firewall { '400 accept incoming mail traffic':
proto => 'tcp',
dport => ['25', '143', '587', '993'],
action => 'accept',
}
firewall { '400 accept incoming mail traffic IPv6':
proto => 'tcp',
dport => ['25', '143', '587', '993'],
action => 'accept',
provider => 'ip6tables',
}
firewall { '401 accept outgoing mail traffic':
proto => 'tcp',
dport => ['25', '143', '587', '993'],
chain => 'OUTPUT',
action => 'accept',
}
firewall { '401 accept outgoing mail traffic IPv6':
proto => 'tcp',
dport => ['25', '143', '587', '993'],
chain => 'OUTPUT',
action => 'accept',
provider => 'ip6tables',
}
include ::opendkim
include postfixspf
include postsrsd
include postfix
$postfixcertcheck = hiera('monit::postfix::certcheck', {})
create_resources('monit::certcheck', $postfixcertcheck)
}