POSTFIX - Configuration de Postfix : Différence entre versions
De PedroWiki
(Nouvelle page : = /etc/postfix/main.cf = # SOFT BOUNCE # #soft_bounce = no # LOCAL PATHNAME INFORMATION # #queue_directory = /var/spool/postfix # The command_directory parameter specifi...) |
m (a renommé Configuration de Postfix en POSTFIX - Configuration de Postfix) |
||
| (2 révisions intermédiaires par un autre utilisateur non affichées) | |||
| Ligne 77 : | Ligne 77 : | ||
#mynetworks = $config_directory/mynetworks | #mynetworks = $config_directory/mynetworks | ||
#mynetworks = hash:/etc/postfix/network_table | #mynetworks = hash:/etc/postfix/network_table | ||
| − | mynetworks = 127.0.0.0/8 | + | '''mynetworks = 127.0.0.0/8''' |
#relay_domains = $mydestination | #relay_domains = $mydestination | ||
| Ligne 200 : | Ligne 200 : | ||
# configuration spécifique lors de la formation | # configuration spécifique lors de la formation | ||
| − | mydestination = $mydomain | + | '''mydestination = $mydomain''' |
| − | myorigin = $mydomain | + | '''myorigin = $mydomain''' |
| − | mydomain = ploplo.fr | + | '''mydomain = ploplo.fr''' |
| − | myhostname = smtp | + | '''myhostname = smtp''' |
| − | local_recipient_maps = proxy:unix:passwd.byname $alias_maps ldap:/etc/postfix/ldapusers.conf | + | '''local_recipient_maps = proxy:unix:passwd.byname $alias_maps ldap:/etc/postfix/ldapusers.conf''' |
| − | masquerade_domains = !smtp.ploplo.fr,$mydomain | + | '''masquerade_domains = !smtp.ploplo.fr,$mydomain''' |
| − | maquerade_domains = | + | '''maquerade_domains = ''' |
| − | canonical_maps = hash:/etc/postfix/canonicalmap | + | '''canonical_maps = hash:/etc/postfix/canonicalmap''' |
| − | sender_canonical_maps = hash:/etc/postfix/sendercanonical | + | '''sender_canonical_maps = hash:/etc/postfix/sendercanonical''' |
| − | recipient_canonical_maps = hash:/etc/postfix/recipientcanonical | + | '''recipient_canonical_maps = hash:/etc/postfix/recipientcanonical''' |
| − | relocated_maps = hash:/etc/postfix/reloc | + | '''relocated_maps = hash:/etc/postfix/reloc''' |
| − | mailbox_transport = | + | '''mailbox_transport = ''' |
| − | debug_peer_list = | + | '''debug_peer_list = ''' |
| − | fallback_transport = lmtp:unix:/var/run/cyrus/socket/lmtp | + | '''fallback_transport = lmtp:unix:/var/run/cyrus/socket/lmtp''' |
| − | smtpd_sasl_auth_enable = yes | + | '''smtpd_sasl_auth_enable = yes''' |
| − | broken_sasl_auth_clients = yes | + | '''broken_sasl_auth_clients = yes''' |
| − | smtpd_client_restrictions = hash:/etc/postfix/net-ok,permit_sasl_authenticated,reject | + | '''smtpd_client_restrictions = hash:/etc/postfix/net-ok,permit_sasl_authenticated,reject''' |
| − | smtpd_sender_login_maps = ldap:/etc/postfix/ldap-loginsasl.conf | + | '''smtpd_sender_login_maps = ldap:/etc/postfix/ldap-loginsasl.conf''' |
| − | smtpd_sender_restrictions = reject_sender_login_mismatch | + | '''smtpd_sender_restrictions = reject_sender_login_mismatch''' |
| − | content_filter = mon_transport_pour_filtrage:[127.0.0.1]:10024 | + | '''content_filter = mon_transport_pour_filtrage:[127.0.0.1]:10024''' |
= /etc/postfix/master.cf = | = /etc/postfix/master.cf = | ||
| + | |||
| + | # | ||
| + | # Postfix master process configuration file. For details on the format | ||
| + | # of the file, see the master(5) manual page (command: "man 5 master"). | ||
| + | # | ||
| + | # ========================================================================== | ||
| + | # service type private unpriv chroot wakeup maxproc command + args | ||
| + | # (yes) (yes) (yes) (never) (100) | ||
| + | # ========================================================================== | ||
| + | smtp inet n - '''n''' - - smtpd | ||
| + | #submission inet n - - - - smtpd | ||
| + | # -o smtpd_enforce_tls=yes | ||
| + | # -o smtpd_sasl_auth_enable=yes | ||
| + | # -o smtpd_client_restrictions=permit_sasl_authenticated,reject | ||
| + | #smtps inet n - - - - smtpd | ||
| + | # -o smtpd_tls_wrappermode=yes | ||
| + | # -o smtpd_sasl_auth_enable=yes | ||
| + | # -o smtpd_client_restrictions=permit_sasl_authenticated,reject | ||
| + | #628 inet n - - - - qmqpd | ||
| + | pickup fifo n - - 60 1 pickup | ||
| + | cleanup unix n - - - 0 cleanup | ||
| + | qmgr fifo n - n 300 1 qmgr | ||
| + | #qmgr fifo n - - 300 1 oqmgr | ||
| + | tlsmgr unix - - - 1000? 1 tlsmgr | ||
| + | rewrite unix - - - - - trivial-rewrite | ||
| + | bounce unix - - - - 0 bounce | ||
| + | defer unix - - - - 0 bounce | ||
| + | trace unix - - - - 0 bounce | ||
| + | verify unix - - - - 1 verify | ||
| + | flush unix n - - 1000? 0 flush | ||
| + | proxymap unix - - n - - proxymap | ||
| + | smtp unix - - '''n''' - - smtp | ||
| + | # When relaying mail as backup MX, disable fallback_relay to avoid MX loops | ||
| + | relay unix - - - - - smtp | ||
| + | -o fallback_relay= | ||
| + | # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5 | ||
| + | showq unix n - - - - showq | ||
| + | error unix - - - - - error | ||
| + | discard unix - - - - - discard | ||
| + | local unix - n n - - local | ||
| + | virtual unix - n n - - virtual | ||
| + | '''lmtp''' unix - - '''n''' - - '''lmtp''' | ||
| + | anvil unix - - - - 1 anvil | ||
| + | scache unix - - - - 1 scache | ||
| + | # | ||
| + | # ==================================================================== | ||
| + | # Interfaces to non-Postfix software. Be sure to examine the manual | ||
| + | # pages of the non-Postfix software to find out what options it wants. | ||
| + | # | ||
| + | # Many of the following services use the Postfix pipe(8) delivery | ||
| + | # agent. See the pipe(8) man page for information about ${recipient} | ||
| + | # and other message envelope options. | ||
| + | # ==================================================================== | ||
| + | # | ||
| + | # maildrop. See the Postfix MAILDROP_README file for details. | ||
| + | # Also specify in main.cf: maildrop_destination_recipient_limit=1 | ||
| + | # | ||
| + | maildrop unix - n n - - pipe | ||
| + | flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient} | ||
| + | # | ||
| + | # See the Postfix UUCP_README file for configuration details. | ||
| + | # | ||
| + | uucp unix - n n - - pipe | ||
| + | flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient) | ||
| + | # | ||
| + | # Other external delivery methods. | ||
| + | # | ||
| + | ifmail unix - n n - - pipe | ||
| + | flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient) | ||
| + | bsmtp unix - n n - - pipe | ||
| + | flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient | ||
| + | scalemail-backend unix - n n - 2 pipe | ||
| + | flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension} | ||
| + | mailman unix - n n - - pipe | ||
| + | flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py | ||
| + | ${nexthop} ${user} | ||
| + | '''mon_transport_pour_filtrage unix - - n - 2 smtp''' | ||
| + | '''-o smtp_data_done_timeout=1200''' | ||
| + | '''127.0.0.1:10025 inet n - n - - smtpd''' | ||
| + | '''-o content_filter=''' | ||
| + | '''-o local_recipient_maps=''' | ||
| + | '''-o relay_recipient_maps=''' | ||
| + | '''-o smtpd_restriction_classes=''' | ||
| + | '''-o smtpd_client_restrictions=''' | ||
| + | '''-o smtpd_helo_restrictions=''' | ||
| + | '''-o smtpd_sender_restrictions=''' | ||
| + | '''-o smtpd_recipient_restrictions=permit_mynetworks,reject''' | ||
| + | '''-o mynetworks=127.0.0.1''' | ||
| + | '''-o strict_rfc821_envelopes=yes''' | ||
| + | '''-o smtpd_error_sleep_time=0''' | ||
| + | '''-o smtpd_soft_error_limit=1001''' | ||
| + | '''-o smtpd_hard_error_limit=1000''' | ||
| + | '''-o smtpd_client_connection_count_limit=0''' | ||
| + | '''-o smtpd_client_connection_rate_limit=0''' | ||
| + | '''-o receive_override_options=no_header_body_checks ''' | ||
[[Category:Configuration]] | [[Category:Configuration]] | ||
[[Category:Postfix]] | [[Category:Postfix]] | ||
Version actuelle datée du 5 mars 2009 à 15:46
/etc/postfix/main.cf
# SOFT BOUNCE # #soft_bounce = no # LOCAL PATHNAME INFORMATION # #queue_directory = /var/spool/postfix # The command_directory parameter specifies the location of all # postXXX commands. # command_directory = /usr/sbin # The daemon_directory parameter specifies the location of all Postfix # daemon programs (i.e. programs listed in the master.cf file). This # directory must be owned by root. # daemon_directory = /usr/lib/postfix # QUEUE AND PROCESS OWNERSHIP # #mail_owner = postfix # The default_privs parameter specifies the default rights used by # the local delivery agent for delivery to external file or command. # These rights are used in the absence of a recipient user context. # DO NOT SPECIFY A PRIVILEGED USER OR THE POSTFIX OWNER. # #default_privs = nobody # INTERNET HOST AND DOMAIN NAMES # #myhostname = host.domain.tld #myhostname = virtual.domain.tld #mydomain = domain.tld # SENDING MAIL # #myorigin = /etc/mailname #myorigin = $myhostname #myorigin = $mydomain # RECEIVING MAIL #inet_interfaces = all #inet_interfaces = $myhostname #inet_interfaces = $myhostname, localhost #proxy_interfaces = #proxy_interfaces = 1.2.3.4 # The mydestination parameter specifies the list of domains that this # machine considers itself the final destination for. # #mydestination = $myhostname, localhost.$mydomain, localhost #mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain #mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain, # mail.$mydomain, www.$mydomain, ftp.$mydomain # REJECTING MAIL FOR UNKNOWN LOCAL USERS # #local_recipient_maps = unix:passwd.byname $alias_maps #local_recipient_maps = proxy:unix:passwd.byname $alias_maps #local_recipient_maps = unknown_local_recipient_reject_code = 550 # TRUST AND RELAY CONTROL #mynetworks_style = class #mynetworks_style = subnet #mynetworks_style = host #mynetworks = 168.100.189.0/28, 127.0.0.0/8 #mynetworks = $config_directory/mynetworks #mynetworks = hash:/etc/postfix/network_table mynetworks = 127.0.0.0/8 #relay_domains = $mydestination # INTERNET OR INTRANET #relayhost = $mydomain #relayhost = [gateway.my.domain] #relayhost = [mailserver.isp.tld] #relayhost = uucphost #relayhost = [an.ip.add.ress] # REJECTING UNKNOWN RELAY USERS # #relay_recipient_maps = hash:/etc/postfix/relay_recipients # INPUT RATE CONTROL # #in_flow_delay = 1s # ADDRESS REWRITING # ALIAS DATABASE # #alias_maps = dbm:/etc/aliases #alias_maps = hash:/etc/aliases #alias_maps = hash:/etc/aliases, nis:mail.aliases #alias_maps = netinfo:/aliases #alias_database = dbm:/etc/aliases #alias_database = dbm:/etc/mail/aliases #alias_database = hash:/etc/aliases #alias_database = hash:/etc/aliases, hash:/opt/majordomo/aliases # ADDRESS EXTENSIONS (e.g., user+foo) # #recipient_delimiter = + # DELIVERY TO MAILBOX # #home_mailbox = Mailbox #home_mailbox = Maildir/ #mail_spool_directory = /var/mail #mail_spool_directory = /var/spool/mail #mailbox_command = /usr/bin/procmail #mailbox_command = /usr/bin/procmail -a "$EXTENSION" #mailbox_transport = lmtp:unix:/file/name #mailbox_transport = cyrus #fallback_transport = lmtp:unix:/file/name #fallback_transport = cyrus #fallback_transport = #luser_relay = $user@other.host #luser_relay = $local@other.host #luser_relay = admin+$local # JUNK MAIL CONTROLS # #header_checks = regexp:/etc/postfix/header_checks # FAST ETRN SERVICE # #fast_flush_domains = $relay_domains # SHOW SOFTWARE VERSION OR NOT # #smtpd_banner = $myhostname ESMTP $mail_name #smtpd_banner = $myhostname ESMTP $mail_name ($mail_version) smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu) # PARALLEL DELIVERY TO THE SAME DESTINATION # #local_destination_concurrency_limit = 2 #default_destination_concurrency_limit = 20 # DEBUGGING CONTROL # #debug_peer_level = 2 #debug_peer_list = 127.0.0.1 #debug_peer_list = some.domain debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin xxgdb $daemon_directory/$process_name $process_id & sleep 5 # debugger_command = # PATH=/bin:/usr/bin:/sbin:/usr/sbin; export PATH; screen # -dmS $process_name gdb $daemon_directory/$process_name # $process_id & sleep 1 # INSTALL-TIME CONFIGURATION INFORMATION # sendmail_path = /usr/sbin/sendmail #newaliases_path = #mailq_path = setgid_group = postdrop # html_directory: The location of the Postfix HTML documentation. # #html_directory = # manpage_directory: The location of the Postfix on-line manual pages. # #manpage_directory = # sample_directory: The location of the Postfix sample configuration files. # This parameter is obsolete as of Postfix 2.1. # #sample_directory = # readme_directory: The location of the Postfix README files. # #readme_directory = # configuration spécifique lors de la formation mydestination = $mydomain myorigin = $mydomain mydomain = ploplo.fr myhostname = smtp local_recipient_maps = proxy:unix:passwd.byname $alias_maps ldap:/etc/postfix/ldapusers.conf masquerade_domains = !smtp.ploplo.fr,$mydomain maquerade_domains = canonical_maps = hash:/etc/postfix/canonicalmap sender_canonical_maps = hash:/etc/postfix/sendercanonical recipient_canonical_maps = hash:/etc/postfix/recipientcanonical relocated_maps = hash:/etc/postfix/reloc mailbox_transport = debug_peer_list = fallback_transport = lmtp:unix:/var/run/cyrus/socket/lmtp smtpd_sasl_auth_enable = yes broken_sasl_auth_clients = yes smtpd_client_restrictions = hash:/etc/postfix/net-ok,permit_sasl_authenticated,reject smtpd_sender_login_maps = ldap:/etc/postfix/ldap-loginsasl.conf smtpd_sender_restrictions = reject_sender_login_mismatch content_filter = mon_transport_pour_filtrage:[127.0.0.1]:10024
/etc/postfix/master.cf
#
# Postfix master process configuration file. For details on the format
# of the file, see the master(5) manual page (command: "man 5 master").
#
# ==========================================================================
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (100)
# ==========================================================================
smtp inet n - n - - smtpd
#submission inet n - - - - smtpd
# -o smtpd_enforce_tls=yes
# -o smtpd_sasl_auth_enable=yes
# -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#smtps inet n - - - - smtpd
# -o smtpd_tls_wrappermode=yes
# -o smtpd_sasl_auth_enable=yes
# -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#628 inet n - - - - qmqpd
pickup fifo n - - 60 1 pickup
cleanup unix n - - - 0 cleanup
qmgr fifo n - n 300 1 qmgr
#qmgr fifo n - - 300 1 oqmgr
tlsmgr unix - - - 1000? 1 tlsmgr
rewrite unix - - - - - trivial-rewrite
bounce unix - - - - 0 bounce
defer unix - - - - 0 bounce
trace unix - - - - 0 bounce
verify unix - - - - 1 verify
flush unix n - - 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - n - - smtp
# When relaying mail as backup MX, disable fallback_relay to avoid MX loops
relay unix - - - - - smtp
-o fallback_relay=
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - - - - showq
error unix - - - - - error
discard unix - - - - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
anvil unix - - - - 1 anvil
scache unix - - - - 1 scache
#
# ====================================================================
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
#
# Many of the following services use the Postfix pipe(8) delivery
# agent. See the pipe(8) man page for information about ${recipient}
# and other message envelope options.
# ====================================================================
#
# maildrop. See the Postfix MAILDROP_README file for details.
# Also specify in main.cf: maildrop_destination_recipient_limit=1
#
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
#
# See the Postfix UUCP_README file for configuration details.
#
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
#
# Other external delivery methods.
#
ifmail unix - n n - - pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient
scalemail-backend unix - n n - 2 pipe
flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension}
mailman unix - n n - - pipe
flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
${nexthop} ${user}
mon_transport_pour_filtrage unix - - n - 2 smtp
-o smtp_data_done_timeout=1200
127.0.0.1:10025 inet n - n - - smtpd
-o content_filter=
-o local_recipient_maps=
-o relay_recipient_maps=
-o smtpd_restriction_classes=
-o smtpd_client_restrictions=
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o mynetworks=127.0.0.1
-o strict_rfc821_envelopes=yes
-o smtpd_error_sleep_time=0
-o smtpd_soft_error_limit=1001
-o smtpd_hard_error_limit=1000
-o smtpd_client_connection_count_limit=0
-o smtpd_client_connection_rate_limit=0
-o receive_override_options=no_header_body_checks
