changed fixed vars to definable ones
This commit is contained in:
@@ -19,7 +19,7 @@
|
||||
- {key: "message_size_limit", value: "0"}
|
||||
- {key: "milter_default_action", value: "accept"}
|
||||
- {key: "mydestination", value: "'localhost, kashyyyk, coruscant'"}
|
||||
- {key: "myhostname", value: "kashyyyk.universe.local"}
|
||||
- {key: "myhostname", value: "{{ hostname | default(ansible_hostname) }}"}
|
||||
- {key: "mynetworks", value: "'{{ mynetworks }}'"}
|
||||
- {key: "mynetworks_style", value: "subnet"}
|
||||
- {key: "readme_directory", value: "no"}
|
||||
@@ -50,12 +50,12 @@
|
||||
- {key: "smtpd_sasl_type", value: "dovecot"}
|
||||
- {key: "smtpd_sender_restrictions", value: "'hash:/etc/postfix/access, permit_mynetworks, reject_non_fqdn_sender, check_sender_access hash:/etc/postfix/sender_access'"}
|
||||
- {key: "smtpd_tls_auth_only", value: "yes"}
|
||||
- {key: "smtpd_tls_cert_file", value: "/etc/letsencrypt/live/tantooine.myfirewall.org/fullchain.pem"}
|
||||
- {key: "smtpd_tls_cert_file", value: "/etc/letsencrypt/live/{{ npm_cert }}/fullchain.pem"}
|
||||
- {key: "smtpd_tls_dh1024_param_file", value: "${config_directory}/dh2048.pem"}
|
||||
- {key: "smtpd_tls_dh512_param_file", value: "${config_directory}/dh512.pem"}
|
||||
- {key: "smtpd_tls_eecdh_grade", value: "strong"}
|
||||
- {key: "smtpd_tls_exclude_ciphers", value: "'aNULL,MD5,RC4,DES,IDEA,SEED,3DES'"}
|
||||
- {key: "smtpd_tls_key_file", value: "/etc/letsencrypt/live/tantooine.myfirewall.org/privkey.pem"}
|
||||
- {key: "smtpd_tls_key_file", value: "/etc/letsencrypt/live/{{ npm_cert }}/privkey.pem"}
|
||||
- {key: "smtpd_tls_loglevel", value: "1"}
|
||||
- {key: "smtpd_tls_mandatory_ciphers", value: "high"}
|
||||
- {key: "smtpd_tls_mandatory_exclude_ciphers", value: "'aNULL,MD5,RC4,IDEA,SEED,3DES'"}
|
||||
|
||||
Reference in New Issue
Block a user