flyingscorpio/self-hosting
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

Setup nftables for mailserver_postfix

Browse source
This commit is contained in:
Tunui Franken 2024-09-28 11:40:02 +02:00
parent 0f6bc98576
commit b933680621
3 changed files with 13 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
roles/mailserver_postfix/files/nftables/input.d/smtp-submission.conf Normal file
View file

@ -0,0 +1 @@
tcp dport {25, 587} accept comment "Allow SMTP/submission from all"

4
roles/mailserver_postfix/meta/main.yml Normal file
View file

@ -0,0 +1,4 @@
---
dependencies:
- role: setup_nftables

8
roles/mailserver_postfix/tasks/main.yml
View file

@ -39,3 +39,11 @@
group: root group: root
mode: "644" mode: "644"
notify: Restart postfix service notify: Restart postfix service
- name: Allow incoming SMTP/submission
become: true
ansible.builtin.copy:
src: nftables/input.d/smtp-submission.conf
dest: /etc/nftables/input.d/smtp-submission.conf
mode: 0640
notify: Reload nftables service