Ansible Role postfix
This role installs and configures postfix.
Runs on
Debian
Fedora 35
RHEL 7 (and compatible)
RHEL 8 (and compatible)
RHEL 9 (and compatible)
Ubuntu 16
Mandatory Role Variables
Variable |
Description |
|---|---|
|
Host name of the mail server. |
Example:
# mandatory
postfix__relayhost: 'mail.example.com:587'
Optional Role Variables
Variable |
Description |
Default Value |
|---|---|---|
|
Boolean. See https://www.postfix.org/postconf.5.html#biff |
|
|
See https://www.postfix.org/postconf.5.html#bounce_queue_lifetime |
|
|
The local network interface addresses that this mail system receives mail on. |
|
|
The Internet protocols Postfix will attempt to use when making or accepting connections. Specify one or more of |
|
|
See https://www.postfix.org/postconf.5.html#mailbox_size_limit |
|
|
See https://www.postfix.org/postconf.5.html#maximal_queue_lifetime |
|
|
See https://www.postfix.org/postconf.5.html#message_size_limit |
|
|
See https://www.postfix.org/postconf.5.html#recipient_delimiter |
|
|
Password for the specified user |
|
|
Username with access to the mail server. |
|
|
Enables or disables the postfix service, analogous to |
|
|
Changes the state of the postfix service, analogous to |
|
|
See https://www.postfix.org/postconf.5.html#smtp_destination_concurrency_limit |
|
|
See https://www.postfix.org/postconf.5.html#smtp_destination_recipient_limit |
|
|
Enable SASL authentication in the Postfix SMTP client. By default, the Postfix SMTP client uses no authentication. |
|
|
List of Postfix SMTP client SASL security options, separated by commas. Possible options: |
|
|
SMTPS wrappermode (TCP port 465) requires setting „smtp_tls_wrappermode = yes“, and „smtp_tls_security_level = encrypt“ (or stronger). The default SMTP TLS security level for the Postfix SMTP client. When a non-empty value is specified, this overrides the obsolete parameters smtp_use_tls, smtp_enforce_tls, and smtp_tls_enforce_peername; when no value is specified for smtp_tls_enforce_peername or the obsolete parameters, the default SMTP TLS security level is none. |
unset |
|
SMTPS wrappermode (TCP port 465) requires setting „smtp_tls_wrappermode = yes“, and „smtp_tls_security_level = encrypt“ (or stronger). Request that the Postfix SMTP client connects using the SUBMISSIONS/SMTPS protocol instead of using the STARTTLS command. |
|
Example:
# optional
postfix__biff: false
postfix__bounce_queue_lifetime: '5d'
postfix__inet_interfaces: 'all'
postfix__inet_protocols: 'all'
postfix__mailbox_size_limit: 51200000
postfix__maximal_queue_lifetime: '5d'
postfix__message_size_limit: 10240000
postfix__recipient_delimiter: ''
postfix__relayhost_password: ''
postfix__relayhost_username: ''
postfix__service_enabled: true
postfix__service_state: 'started'
postfix__smtp_destination_concurrency_limit: 20
postfix__smtp_destination_recipient_limit: 50
postfix__smtp_sasl_auth_enable: true
postfix__smtp_sasl_security_options:
- 'noplaintext'
- 'noanonymous'
postfix__smtp_tls_security_level: 'encrypt'
postfix__smtp_tls_wrappermode: true