Unterschiede
Hier werden die Unterschiede zwischen zwei Versionen der Seite angezeigt.
Beide Seiten, vorherige Überarbeitung Vorherige Überarbeitung Nächste Überarbeitung | Vorherige Überarbeitung Nächste ÜberarbeitungBeide Seiten, nächste Überarbeitung | ||
server_und_serverdienste:benno_-_das_echte_mailarchiv [2024/01/06 21:46] – loma | server_und_serverdienste:benno_-_das_echte_mailarchiv [2024/01/06 21:57] – [Archivierung von der Mailcow (Briefkuh)] loma | ||
---|---|---|---|
Zeile 205: | Zeile 205: | ||
===== Archivierung von der Mailcow (Briefkuh) ===== | ===== Archivierung von der Mailcow (Briefkuh) ===== | ||
+ | Hier gestaltet sich die Konfiguration im Cow Docker sehr einfach. Zu editieren sind 3 Dateien. | ||
+ | * Maicow Docker 2023-12a | ||
+ | * System: Ubuntu 22.04 LTS | ||
+ | * Docker direkt von http:// | ||
+ | * Datenverzeichnis: | ||
+ | Grundsätzlich sollte ja für Postfix nur die Datei '' | ||
+ | nano extra.cf | ||
+ | |||
+ | # Mailarchiv | ||
+ | milter_default_action = tempfail | ||
+ | |||
+ | nano main.cf | ||
+ | |||
+ | ... | ||
+ | - non_smtpd_milters = inet: | ||
+ | + non_smtpd_milters = inet: | ||
+ | |||
+ | nano master.cf | ||
+ | |||
+ | <code bash> | ||
+ | # inter-mx with postscreen on 25/tcp | ||
+ | smtp | ||
+ | 10025 inet n | ||
+ | -o postscreen_upstream_proxy_protocol=haproxy | ||
+ | -o syslog_name=haproxy | ||
+ | smtpd pass - | ||
+ | -o smtpd_helo_restrictions=permit_mynetworks, | ||
+ | -o smtpd_sasl_auth_enable=no | ||
+ | -o smtpd_sender_restrictions=permit_mynetworks, | ||
+ | | ||
+ | -o milter_default_action=tempfail | ||
+ | -o smtpd_milters=inet: | ||
+ | |||
+ | # smtpd tls-wrapped (smtps) on 465/tcp | ||
+ | # TLS protocol can be modified by setting smtps_smtpd_tls_mandatory_protocols in extra.cf | ||
+ | smtps inet n | ||
+ | -o smtpd_tls_wrappermode=yes | ||
+ | -o smtpd_client_restrictions=permit_mynetworks, | ||
+ | -o smtpd_tls_mandatory_protocols=$smtps_smtpd_tls_mandatory_protocols | ||
+ | -o tls_preempt_cipherlist=yes | ||
+ | -o cleanup_service_name=smtp_sender_cleanup | ||
+ | -o syslog_name=postfix/ | ||
+ | | ||
+ | -o milter_default_action=tempfail | ||
+ | -o smtpd_milters=inet: | ||
+ | |||
+ | 10465 inet n | ||
+ | -o smtpd_upstream_proxy_protocol=haproxy | ||
+ | -o smtpd_tls_wrappermode=yes | ||
+ | -o smtpd_client_restrictions=permit_mynetworks, | ||
+ | -o smtpd_tls_mandatory_protocols=$smtps_smtpd_tls_mandatory_protocols | ||
+ | -o tls_preempt_cipherlist=yes | ||
+ | -o cleanup_service_name=smtp_sender_cleanup | ||
+ | -o syslog_name=postfix/ | ||
+ | | ||
+ | -o milter_default_action=tempfail | ||
+ | -o smtpd_milters=inet: | ||
+ | |||
+ | # smtpd with starttls on 587/tcp | ||
+ | # TLS protocol can be modified by setting submission_smtpd_tls_mandatory_protocols in extra.cf | ||
+ | submission inet n | ||
+ | -o smtpd_client_restrictions=permit_mynetworks, | ||
+ | -o smtpd_enforce_tls=yes | ||
+ | -o smtpd_tls_security_level=encrypt | ||
+ | -o smtpd_tls_mandatory_protocols=$submission_smtpd_tls_mandatory_protocols | ||
+ | -o tls_preempt_cipherlist=yes | ||
+ | -o cleanup_service_name=smtp_sender_cleanup | ||
+ | -o syslog_name=postfix/ | ||
+ | | ||
+ | -o milter_default_action=tempfail | ||
+ | -o smtpd_milters=inet: | ||
+ | |||
+ | 10587 inet n | ||
+ | -o smtpd_upstream_proxy_protocol=haproxy | ||
+ | -o smtpd_client_restrictions=permit_mynetworks, | ||
+ | -o smtpd_enforce_tls=yes | ||
+ | -o smtpd_tls_security_level=encrypt | ||
+ | -o smtpd_tls_mandatory_protocols=$submission_smtpd_tls_mandatory_protocols | ||
+ | -o tls_preempt_cipherlist=yes | ||
+ | -o cleanup_service_name=smtp_sender_cleanup | ||
+ | -o syslog_name=postfix/ | ||
+ | | ||
+ | -o milter_default_action=tempfail | ||
+ | -o smtpd_milters=inet: | ||
+ | |||
+ | # used by SOGo | ||
+ | # smtpd_sender_restrictions should match main.cf, but with check_sasl_access prepended for login-as-mailbox-user function | ||
+ | 588 inet n - | ||
+ | -o smtpd_client_restrictions=permit_mynetworks, | ||
+ | -o smtpd_tls_auth_only=no | ||
+ | -o smtpd_sender_restrictions=check_sasl_access, | ||
+ | -o cleanup_service_name=smtp_sender_cleanup | ||
+ | -o syslog_name=postfix/ | ||
+ | | ||
+ | -o milter_default_action=tempfail | ||
+ | -o smtpd_milters=inet: | ||
+ | </ | ||
+ | Danach noch den Docker für Postfix neu starten: '' | ||
===== Links ===== | ===== Links ===== | ||
* [[https:// | * [[https:// |