make postscreen optional (default is activated)

0b5a40e5 · Hinrikus Wolf · 3a61c9f3 · 0b5a40e5 · 0b5a40e5 · 0b5a40e5
Commit 0b5a40e5 authored 5 years ago by Hinrikus Wolf
--- a/postfix/defaults/main.yml
+++ b/postfix/defaults/main.yml
@@ -12,6 +12,8 @@ postfix_tls_key: /etc/ssl/private/privkey.pem
 postfix_tls_configuration: 'previous'

 postfix_prefer_lmtp: false
+
+postfix_enable_postscreen: true
 postfix_enable_memcached: false
 postfix_login_suffix: ''
 postfix_dnsbl_sites:

--- a/postfix/templates/main.cf.j2
+++ b/postfix/templates/main.cf.j2
@@ -78,6 +78,7 @@ virtual_transport = lmtp:unix:private/dovecot-lmtp
 virtual_gid_maps = static:5000
 {% endif %}

+{% if postfix_enable_postscreen %}
 postscreen_access_list = permit_mynetworks
                         cidr:/etc/postfix/postscreen_access.cidr
 {% if postfix_enable_memcached %}
@@ -105,3 +106,4 @@ postscreen_dnsbl_sites =
 {% for site in postfix_dnsbl_sites %}
 	{{ site.name }}*{{ site.modifier|default(1) }}
 {% endfor %}
+{% endif %}
--- a/postfix/templates/master.cf.j2
+++ b/postfix/templates/master.cf.j2
@@ -9,8 +9,11 @@
 #               (yes)   (yes)   (no)    (never) (100)
 # ==========================================================================

-#smtp     inet  n       -       y       -       -       smtpd
+{% if postfix_enable_postscreen %}
 smtp      inet  n       -       y       -       1       postscreen
+{% else %}
+smtp     inet  n       -       y       -       -       smtpd
+{% endif %}
 smtpd     pass  -       -       y       -       -       smtpd
 {% if postfix_content_filter %}
  -o content_filter={{ postfix_content_filter }}