Postfix/設定
をテンプレートにして作成
[
トップ
] [
新規
|
一覧
|
検索
|
最終更新
|
ヘルプ
]
開始行:
**設定 [#zb5e2716]
#contents
----
***main.cf [#v801ccd2]
# SOFT BOUNCE
#soft_bounce = no
# LOCAL PATHNAME INFORMATION
queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix
data_directory = /var/lib/postfix
# QUEUE AND PROCESS OWNERSHIP
mail_owner = postfix
#default_privs = nobody
# INTERNET HOST AND DOMAIN NAMES
#myhostname = host.domain.tld
#myhostname = virtual.domain.tld
myhostname = mail.example.com
#mydomain = domain.tld
mydomain = example.com
# SENDING MAIL
#myorigin = $myhostname
myorigin = $mydomain
# RECEIVING MAIL
inet_interfaces = all
#inet_interfaces = $myhostname
#inet_interfaces = $myhostname, localhost
#proxy_interfaces =
#proxy_interfaces = 1.2.3.4
#mydestination = $myhostname, localhost.$mydomain, local...
mydestination = $myhostname, localhost.$mydomain, localh...
#mydestination = $myhostname, localhost.$mydomain, local...
# mail.$mydomain, www.$mydomain, ftp.$mydomain
# REJECTING MAIL FOR UNKNOWN LOCAL USERS
#local_recipient_maps = unix:passwd.byname $alias_maps
local_recipient_maps = proxy:unix:passwd.byname $alias_m...
#local_recipient_maps =
unknown_local_recipient_reject_code = 550
# TRUST AND RELAY CONTROL
# mynetworksを省略した時のデフォルトがsubnetではなくなった
#mynetworks_style = class
mynetworks_style = subnet
#mynetworks_style = host
# 省略するとmynetworks_styleが反映される
#mynetworks = 168.100.189.0/28, 127.0.0.0/8
#mynetworks = $config_directory/mynetworks
#mynetworks = hash:/etc/postfix/network_table
#mynetworks = xxx.xxx.xxx.xxx/xx, 127.0.0.0/8
relay_domains = $mydestination
# INTERNET OR INTRANET
#relayhost = $mydomain
#relayhost = [gateway.my.domain]
#relayhost = [mailserver.isp.tld]
#relayhost = uucphost
#relayhost = [an.ip.add.ress]
# REJECTING UNKNOWN RELAY USERS
#relay_recipient_maps = hash:/etc/postfix/relay_recipients
# INPUT RATE CONTROL
#in_flow_delay = 1s
# ALIAS DATABASE
#alias_maps = dbm:/etc/aliases
alias_maps = hash:/etc/aliases
#alias_maps = hash:/etc/aliases, nis:mail.aliases
#alias_maps = netinfo:/aliases
#alias_database = dbm:/etc/aliases
#alias_database = dbm:/etc/mail/aliases
alias_database = hash:/etc/aliases
#alias_database = hash:/etc/aliases, hash:/opt/majordomo...
# ADDRESS EXTENSIONS (e.g., user+foo)
recipient_delimiter = +
# DELIVERY TO MAILBOX
#home_mailbox = Mailbox
home_mailbox = Maildir/
#mail_spool_directory = /var/mail
#mail_spool_directory = /var/spool/mail
#mailbox_command = /some/where/procmail
#mailbox_command = /some/where/procmail -a "$EXTENSION"
#mailbox_transport = lmtp:unix:/file/name
#mailbox_transport = cyrus
#fallback_transport = lmtp:unix:/file/name
#fallback_transport = cyrus
#fallback_transport =
#luser_relay = $user@other.host
#luser_relay = $local@other.host
#luser_relay = admin+$local
# JUNK MAIL CONTROLS
#header_checks = regexp:/etc/postfix/header_checks
# FAST ETRN SERVICE
#fast_flush_domains = $relay_domains
# SHOW SOFTWARE VERSION OR NOT
#smtpd_banner = $myhostname ESMTP $mail_name
#smtpd_banner = $myhostname ESMTP $mail_name ($mail_vers...
# PARALLEL DELIVERY TO THE SAME DESTINATION
#local_destination_concurrency_limit = 2
#default_destination_concurrency_limit = 20
# DEBUGGING CONTROL
debug_peer_level = 2
#debug_peer_list = 127.0.0.1
#debug_peer_list = some.domain
debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
ddd $daemon_directory/$process_name $process_id...
# debugger_command =
# PATH=/bin:/usr/bin:/usr/local/bin; export PATH; ...
# echo where) | gdb $daemon_directory/$process_nam...
# >$config_directory/$process_name.$process_id.log...
#
# debugger_command =
# PATH=/bin:/usr/bin:/sbin:/usr/sbin; export PATH;...
# -dmS $process_name gdb $daemon_directory/$proces...
# $process_id & sleep 1
# INSTALL-TIME CONFIGURATION INFORMATION
sendmail_path = /usr/sbin/sendmail
newaliases_path = /usr/bin/newaliases
mailq_path = /usr/bin/mailq
setgid_group = postdrop
html_directory = no
manpage_directory = /usr/local/man
sample_directory = /etc/postfix
readme_directory = no
# SASL AUTH Section
#
smtpd_sasl_auth_enable = yes
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
smtpd_sasl_local_domain = $mydomain
smtpd_sasl_security_options = noanonymous
smtpd_sasl_tls_security_options = $smtpd_sasl_security_o...
broken_sasl_auth_clients = no
##
# UTF8 Support
smtputf8_enable = yes
# SSL/TLS/SNI Section
#
# SNIに対応した
# maps には 「メールサーバーのFQDN 鍵含んだ証明書へのフ...
# postmap -F btree:/etc/postfix/snimaps としてbase64にし...
tls_server_sni_maps = btree:/etc/postfix/snimaps
#
# SNIで失敗したときはデフォルトを読みにいくのでこちらも...
# 以前はcertとkeyで分けて設定していたが
# 証明書更新時などレースコンディションが起こるため
# 鍵くっつけたファイルを読めるようになった
# さらにRSA以外のアルゴリズムで作られた鍵の証明書を複数...
smtpd_tls_chain_files = /etc/letsencrypt/live/example.co...
# /etc/pki/tls/certs/ed25519.pem ...
#
# autoでよしなにしてくれる(default)
smtpd_tls_eecdh_grade = auto
#
# TLSv1.3対応
smtp_tls_session_cache_database = btree:/var/lib/postfix...
smtpd_tls_session_cache_database = btree:/var/lib/postfi...
smtp_tls_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1, T...
smtpd_tls_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1, ...
smtp_tls_mandatory_protocols = !SSLv2, !SSLv3, !TLSv1, !...
smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3, !TLSv1, ...
smtp_tls_exclude_ciphers = eNULL, aNULL, MD5, DES, IDEA,...
smtpd_tls_exclude_ciphers = eNULL, aNULL, MD5, DES, IDEA...
smtp_tls_mandatory_exclude_ciphers = eNULL, aNULL, MD5, ...
smtpd_tls_mandatory_exclude_ciphers = eNULL, aNULL, MD5,...
smtp_tls_mandatory_ciphers = high
smtpd_tls_mandatory_ciphers = high
smtp_tls_security_level = may
smtpd_tls_security_level = may
smtp_tls_loglevel = 1
smtpd_tls_loglevel = 1
smtp_tls_ciphers = high
smtpd_tls_ciphers = high
#
tls_preempt_cipherlist = yes
tls_random_source = dev:/dev/urandom
tls_high_cipherlist = TLS_AES_256_GCM_SHA384:TLS_CHACHA2...
##
# Thirdparty Relay Restriction Section
#
## GENERAL OPTIOSNS
smtpd_helo_required = yes
disable_vrfy_command = yes
## SMTP CONNECTION RESTRICTIONS
# RBLチェックを入れる
smtpd_client_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_rbl_client bl.spamcop.net,
reject_rbl_client zen.spamhaus.org,
reject_unknown_client_hostname
## HELO/EHLO RESTRICTIONS
smtpd_helo_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_invalid_hostname,
reject_unknown_hostname,
reject_non_fqdn_hostname
## ETRN RESTRICTIONS
smtpd_etrn_restrictions =
permit_mynetworks,
reject_invalid_hostname
## MAIL FROM RESTRICTIONS
smtpd_sender_restrictions =
permit_mynetworks,
reject_unknown_sender_domain
## RCPT TO RESTRICTIONS
smtpd_relay_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_destination,
## IF USE PYTHON SPF
check_policy_service unix:private/policyd-spf
policyd-spf_time_limit = 3600
##
# milter Section
# Apply to ClamAV->OpenDKIM->OpenDMARC->SpamAssassin
smtpd_milters =
inet:127.0.0.1:7357
inet:127.0.0.1:8891
inet:127.0.0.1:8893
unix:/var/run/spamass-milter/postfix/sock
enable_long_queue_ids = yes
meta_directory = /etc/postfix
shlib_directory = no
#### PostScreen Config
postscreen_access_list =
permit_mynetworks
postscreen_blacklist_action = drop
postscreen_dnsbl_threshold = 2
postscreen_dnsbl_sites =
bl.spamcop.net,
zen.spamhaus.org,
postscreen_dnsbl_action = drop
compatibility_level = 2
# SRS implement by postsrsd
# SRS対応
sender_canonical_maps = tcp:localhost:10001
sender_canonical_classes = envelope_sender
recipient_canonical_maps = tcp:localhost:10002
recipient_canonical_classes= envelope_recipient,header_r...
***master.cf [#q81c5327]
#
# Postfix master process configuration file. For detail...
# of the file, see the master(5) manual page (command: "...
#
# Do not forget to execute "postfix reload" after editin...
#
# ======================================================...
# service type private unpriv chroot wakeup maxproc ...
# (yes) (yes) (yes) (never) (100)
# ======================================================...
#
# PostScreen対応
#smtp inet n - n - - ...
smtp inet n - n - 1 ...
#
smtpd pass - - n - - ...
dnsblog unix - - n - 0 ...
tlsproxy unix - - n - 0 ...
submission inet n - n - - ...
-o syslog_name=postfix/submission
-o smtpd_tls_security_level=encrypt
-o smtpd_sasl_auth_enable=yes
-o smtpd_reject_unlisted_recipient=no
# -o smtpd_client_restrictions=$mua_client_restrictions
# -o smtpd_helo_restrictions=$mua_helo_restrictions
# -o smtpd_sender_restrictions=$mua_sender_restrictions
-o smtpd_recipient_restrictions=permit_sasl_authentica...
-o milter_macro_daemon_name=ORIGINATING
#
# SMTPS(465)対応
smtps inet n - n - - ...
-o syslog_name=postfix/smtps
-o smtpd_tls_wrappermode=yes
-o smtpd_sasl_auth_enable=yes
-o smtpd_reject_unlisted_recipient=no
# -o smtpd_client_restrictions=$mua_client_restrictions
# -o smtpd_helo_restrictions=$mua_helo_restrictions
# -o smtpd_sender_restrictions=$mua_sender_restrictions
-o smtpd_recipient_restrictions=permit_sasl_authentica...
-o milter_macro_daemon_name=ORIGINATING
#628 inet n - n - - ...
pickup unix n - n 60 1 ...
cleanup unix n - n - 0 ...
qmgr unix n - n 300 1 ...
#qmgr unix n - n 300 1 ...
tlsmgr unix - - n 1000? 1 ...
rewrite unix - - n - - ...
bounce unix - - n - 0 ...
defer unix - - n - 0 ...
trace unix - - n - 0 ...
verify unix - - n - 1 ...
flush unix n - n 1000? 0 ...
proxymap unix - - n - - ...
proxywrite unix - - n - 1 ...
smtp unix - - n - - ...
relay unix - - n - - ...
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - n - - ...
error unix - - n - - ...
retry unix - - n - - ...
discard unix - - n - - ...
local unix - n n - - ...
virtual unix - n n - - ...
lmtp unix - - n - - ...
anvil unix - - n - 1 ...
scache unix - - n - 1 ...
#
## SPF対応
policyd-spf unix - n n - 0 ...
user=nobody argv=/usr/libexec/postfix/policyd-spf
#
# ======================================================...
# Interfaces to non-Postfix software. Be sure to examine...
# pages of the non-Postfix software to find out what opt...
#
# Many of the following services use the Postfix pipe(8)...
# agent. See the pipe(8) man page for information about...
# and other message envelope options.
# ======================================================...
#
# maildrop. See the Postfix MAILDROP_README file for det...
# Also specify in main.cf: maildrop_destination_recipien...
#
#maildrop unix - n n - - ...
# flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d...
#
# ======================================================...
#
# Recent Cyrus versions can use the existing "lmtp" mast...
#
# Specify in cyrus.conf:
# lmtp cmd="lmtpd -a" listen="localhost:lmtp" proto...
#
# Specify in main.cf one or more of the following:
# mailbox_transport = lmtp:inet:localhost
# virtual_transport = lmtp:inet:localhost
#
# =====================================================...
#
# Cyrus 2.1.5 (Amos Gouaux)
# Also specify in main.cf: cyrus_destination_recipient_l...
#
#cyrus unix - n n - - ...
# user=cyrus argv=/cyrus/bin/deliver -e -r ${sender} -m...
#
# ======================================================...
#
# Old example of delivery via Cyrus.
#
#old-cyrus unix - n n - - ...
# flags=R user=cyrus argv=/cyrus/bin/deliver -e -m ${ex...
#
# ======================================================...
#
# See the Postfix UUCP_README file for configuration det...
#
#uucp unix - n n - - ...
# flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $n...
#
# ======================================================...
#
# Other external delivery methods.
#
#ifmail unix - n n - - ...
# flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $next...
#
#bsmtp unix - n n - - ...
# flags=Fq. user=bsmtp argv=/usr/local/sbin/bsmtp -f $s...
#
#scalemail-backend unix - n n - ...
# flags=R user=scalemail argv=/usr/lib/scalemail/bin/sc...
# ${nexthop} ${user} ${extension}
#
#mailman unix - n n - - ...
# flags=FR user=list argv=/usr/lib/mailman/bin/postfix-...
# ${nexthop} ${user}
終了行:
**設定 [#zb5e2716]
#contents
----
***main.cf [#v801ccd2]
# SOFT BOUNCE
#soft_bounce = no
# LOCAL PATHNAME INFORMATION
queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix
data_directory = /var/lib/postfix
# QUEUE AND PROCESS OWNERSHIP
mail_owner = postfix
#default_privs = nobody
# INTERNET HOST AND DOMAIN NAMES
#myhostname = host.domain.tld
#myhostname = virtual.domain.tld
myhostname = mail.example.com
#mydomain = domain.tld
mydomain = example.com
# SENDING MAIL
#myorigin = $myhostname
myorigin = $mydomain
# RECEIVING MAIL
inet_interfaces = all
#inet_interfaces = $myhostname
#inet_interfaces = $myhostname, localhost
#proxy_interfaces =
#proxy_interfaces = 1.2.3.4
#mydestination = $myhostname, localhost.$mydomain, local...
mydestination = $myhostname, localhost.$mydomain, localh...
#mydestination = $myhostname, localhost.$mydomain, local...
# mail.$mydomain, www.$mydomain, ftp.$mydomain
# REJECTING MAIL FOR UNKNOWN LOCAL USERS
#local_recipient_maps = unix:passwd.byname $alias_maps
local_recipient_maps = proxy:unix:passwd.byname $alias_m...
#local_recipient_maps =
unknown_local_recipient_reject_code = 550
# TRUST AND RELAY CONTROL
# mynetworksを省略した時のデフォルトがsubnetではなくなった
#mynetworks_style = class
mynetworks_style = subnet
#mynetworks_style = host
# 省略するとmynetworks_styleが反映される
#mynetworks = 168.100.189.0/28, 127.0.0.0/8
#mynetworks = $config_directory/mynetworks
#mynetworks = hash:/etc/postfix/network_table
#mynetworks = xxx.xxx.xxx.xxx/xx, 127.0.0.0/8
relay_domains = $mydestination
# INTERNET OR INTRANET
#relayhost = $mydomain
#relayhost = [gateway.my.domain]
#relayhost = [mailserver.isp.tld]
#relayhost = uucphost
#relayhost = [an.ip.add.ress]
# REJECTING UNKNOWN RELAY USERS
#relay_recipient_maps = hash:/etc/postfix/relay_recipients
# INPUT RATE CONTROL
#in_flow_delay = 1s
# ALIAS DATABASE
#alias_maps = dbm:/etc/aliases
alias_maps = hash:/etc/aliases
#alias_maps = hash:/etc/aliases, nis:mail.aliases
#alias_maps = netinfo:/aliases
#alias_database = dbm:/etc/aliases
#alias_database = dbm:/etc/mail/aliases
alias_database = hash:/etc/aliases
#alias_database = hash:/etc/aliases, hash:/opt/majordomo...
# ADDRESS EXTENSIONS (e.g., user+foo)
recipient_delimiter = +
# DELIVERY TO MAILBOX
#home_mailbox = Mailbox
home_mailbox = Maildir/
#mail_spool_directory = /var/mail
#mail_spool_directory = /var/spool/mail
#mailbox_command = /some/where/procmail
#mailbox_command = /some/where/procmail -a "$EXTENSION"
#mailbox_transport = lmtp:unix:/file/name
#mailbox_transport = cyrus
#fallback_transport = lmtp:unix:/file/name
#fallback_transport = cyrus
#fallback_transport =
#luser_relay = $user@other.host
#luser_relay = $local@other.host
#luser_relay = admin+$local
# JUNK MAIL CONTROLS
#header_checks = regexp:/etc/postfix/header_checks
# FAST ETRN SERVICE
#fast_flush_domains = $relay_domains
# SHOW SOFTWARE VERSION OR NOT
#smtpd_banner = $myhostname ESMTP $mail_name
#smtpd_banner = $myhostname ESMTP $mail_name ($mail_vers...
# PARALLEL DELIVERY TO THE SAME DESTINATION
#local_destination_concurrency_limit = 2
#default_destination_concurrency_limit = 20
# DEBUGGING CONTROL
debug_peer_level = 2
#debug_peer_list = 127.0.0.1
#debug_peer_list = some.domain
debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
ddd $daemon_directory/$process_name $process_id...
# debugger_command =
# PATH=/bin:/usr/bin:/usr/local/bin; export PATH; ...
# echo where) | gdb $daemon_directory/$process_nam...
# >$config_directory/$process_name.$process_id.log...
#
# debugger_command =
# PATH=/bin:/usr/bin:/sbin:/usr/sbin; export PATH;...
# -dmS $process_name gdb $daemon_directory/$proces...
# $process_id & sleep 1
# INSTALL-TIME CONFIGURATION INFORMATION
sendmail_path = /usr/sbin/sendmail
newaliases_path = /usr/bin/newaliases
mailq_path = /usr/bin/mailq
setgid_group = postdrop
html_directory = no
manpage_directory = /usr/local/man
sample_directory = /etc/postfix
readme_directory = no
# SASL AUTH Section
#
smtpd_sasl_auth_enable = yes
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
smtpd_sasl_local_domain = $mydomain
smtpd_sasl_security_options = noanonymous
smtpd_sasl_tls_security_options = $smtpd_sasl_security_o...
broken_sasl_auth_clients = no
##
# UTF8 Support
smtputf8_enable = yes
# SSL/TLS/SNI Section
#
# SNIに対応した
# maps には 「メールサーバーのFQDN 鍵含んだ証明書へのフ...
# postmap -F btree:/etc/postfix/snimaps としてbase64にし...
tls_server_sni_maps = btree:/etc/postfix/snimaps
#
# SNIで失敗したときはデフォルトを読みにいくのでこちらも...
# 以前はcertとkeyで分けて設定していたが
# 証明書更新時などレースコンディションが起こるため
# 鍵くっつけたファイルを読めるようになった
# さらにRSA以外のアルゴリズムで作られた鍵の証明書を複数...
smtpd_tls_chain_files = /etc/letsencrypt/live/example.co...
# /etc/pki/tls/certs/ed25519.pem ...
#
# autoでよしなにしてくれる(default)
smtpd_tls_eecdh_grade = auto
#
# TLSv1.3対応
smtp_tls_session_cache_database = btree:/var/lib/postfix...
smtpd_tls_session_cache_database = btree:/var/lib/postfi...
smtp_tls_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1, T...
smtpd_tls_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1, ...
smtp_tls_mandatory_protocols = !SSLv2, !SSLv3, !TLSv1, !...
smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3, !TLSv1, ...
smtp_tls_exclude_ciphers = eNULL, aNULL, MD5, DES, IDEA,...
smtpd_tls_exclude_ciphers = eNULL, aNULL, MD5, DES, IDEA...
smtp_tls_mandatory_exclude_ciphers = eNULL, aNULL, MD5, ...
smtpd_tls_mandatory_exclude_ciphers = eNULL, aNULL, MD5,...
smtp_tls_mandatory_ciphers = high
smtpd_tls_mandatory_ciphers = high
smtp_tls_security_level = may
smtpd_tls_security_level = may
smtp_tls_loglevel = 1
smtpd_tls_loglevel = 1
smtp_tls_ciphers = high
smtpd_tls_ciphers = high
#
tls_preempt_cipherlist = yes
tls_random_source = dev:/dev/urandom
tls_high_cipherlist = TLS_AES_256_GCM_SHA384:TLS_CHACHA2...
##
# Thirdparty Relay Restriction Section
#
## GENERAL OPTIOSNS
smtpd_helo_required = yes
disable_vrfy_command = yes
## SMTP CONNECTION RESTRICTIONS
# RBLチェックを入れる
smtpd_client_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_rbl_client bl.spamcop.net,
reject_rbl_client zen.spamhaus.org,
reject_unknown_client_hostname
## HELO/EHLO RESTRICTIONS
smtpd_helo_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_invalid_hostname,
reject_unknown_hostname,
reject_non_fqdn_hostname
## ETRN RESTRICTIONS
smtpd_etrn_restrictions =
permit_mynetworks,
reject_invalid_hostname
## MAIL FROM RESTRICTIONS
smtpd_sender_restrictions =
permit_mynetworks,
reject_unknown_sender_domain
## RCPT TO RESTRICTIONS
smtpd_relay_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_destination,
## IF USE PYTHON SPF
check_policy_service unix:private/policyd-spf
policyd-spf_time_limit = 3600
##
# milter Section
# Apply to ClamAV->OpenDKIM->OpenDMARC->SpamAssassin
smtpd_milters =
inet:127.0.0.1:7357
inet:127.0.0.1:8891
inet:127.0.0.1:8893
unix:/var/run/spamass-milter/postfix/sock
enable_long_queue_ids = yes
meta_directory = /etc/postfix
shlib_directory = no
#### PostScreen Config
postscreen_access_list =
permit_mynetworks
postscreen_blacklist_action = drop
postscreen_dnsbl_threshold = 2
postscreen_dnsbl_sites =
bl.spamcop.net,
zen.spamhaus.org,
postscreen_dnsbl_action = drop
compatibility_level = 2
# SRS implement by postsrsd
# SRS対応
sender_canonical_maps = tcp:localhost:10001
sender_canonical_classes = envelope_sender
recipient_canonical_maps = tcp:localhost:10002
recipient_canonical_classes= envelope_recipient,header_r...
***master.cf [#q81c5327]
#
# Postfix master process configuration file. For detail...
# of the file, see the master(5) manual page (command: "...
#
# Do not forget to execute "postfix reload" after editin...
#
# ======================================================...
# service type private unpriv chroot wakeup maxproc ...
# (yes) (yes) (yes) (never) (100)
# ======================================================...
#
# PostScreen対応
#smtp inet n - n - - ...
smtp inet n - n - 1 ...
#
smtpd pass - - n - - ...
dnsblog unix - - n - 0 ...
tlsproxy unix - - n - 0 ...
submission inet n - n - - ...
-o syslog_name=postfix/submission
-o smtpd_tls_security_level=encrypt
-o smtpd_sasl_auth_enable=yes
-o smtpd_reject_unlisted_recipient=no
# -o smtpd_client_restrictions=$mua_client_restrictions
# -o smtpd_helo_restrictions=$mua_helo_restrictions
# -o smtpd_sender_restrictions=$mua_sender_restrictions
-o smtpd_recipient_restrictions=permit_sasl_authentica...
-o milter_macro_daemon_name=ORIGINATING
#
# SMTPS(465)対応
smtps inet n - n - - ...
-o syslog_name=postfix/smtps
-o smtpd_tls_wrappermode=yes
-o smtpd_sasl_auth_enable=yes
-o smtpd_reject_unlisted_recipient=no
# -o smtpd_client_restrictions=$mua_client_restrictions
# -o smtpd_helo_restrictions=$mua_helo_restrictions
# -o smtpd_sender_restrictions=$mua_sender_restrictions
-o smtpd_recipient_restrictions=permit_sasl_authentica...
-o milter_macro_daemon_name=ORIGINATING
#628 inet n - n - - ...
pickup unix n - n 60 1 ...
cleanup unix n - n - 0 ...
qmgr unix n - n 300 1 ...
#qmgr unix n - n 300 1 ...
tlsmgr unix - - n 1000? 1 ...
rewrite unix - - n - - ...
bounce unix - - n - 0 ...
defer unix - - n - 0 ...
trace unix - - n - 0 ...
verify unix - - n - 1 ...
flush unix n - n 1000? 0 ...
proxymap unix - - n - - ...
proxywrite unix - - n - 1 ...
smtp unix - - n - - ...
relay unix - - n - - ...
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - n - - ...
error unix - - n - - ...
retry unix - - n - - ...
discard unix - - n - - ...
local unix - n n - - ...
virtual unix - n n - - ...
lmtp unix - - n - - ...
anvil unix - - n - 1 ...
scache unix - - n - 1 ...
#
## SPF対応
policyd-spf unix - n n - 0 ...
user=nobody argv=/usr/libexec/postfix/policyd-spf
#
# ======================================================...
# Interfaces to non-Postfix software. Be sure to examine...
# pages of the non-Postfix software to find out what opt...
#
# Many of the following services use the Postfix pipe(8)...
# agent. See the pipe(8) man page for information about...
# and other message envelope options.
# ======================================================...
#
# maildrop. See the Postfix MAILDROP_README file for det...
# Also specify in main.cf: maildrop_destination_recipien...
#
#maildrop unix - n n - - ...
# flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d...
#
# ======================================================...
#
# Recent Cyrus versions can use the existing "lmtp" mast...
#
# Specify in cyrus.conf:
# lmtp cmd="lmtpd -a" listen="localhost:lmtp" proto...
#
# Specify in main.cf one or more of the following:
# mailbox_transport = lmtp:inet:localhost
# virtual_transport = lmtp:inet:localhost
#
# =====================================================...
#
# Cyrus 2.1.5 (Amos Gouaux)
# Also specify in main.cf: cyrus_destination_recipient_l...
#
#cyrus unix - n n - - ...
# user=cyrus argv=/cyrus/bin/deliver -e -r ${sender} -m...
#
# ======================================================...
#
# Old example of delivery via Cyrus.
#
#old-cyrus unix - n n - - ...
# flags=R user=cyrus argv=/cyrus/bin/deliver -e -m ${ex...
#
# ======================================================...
#
# See the Postfix UUCP_README file for configuration det...
#
#uucp unix - n n - - ...
# flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $n...
#
# ======================================================...
#
# Other external delivery methods.
#
#ifmail unix - n n - - ...
# flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $next...
#
#bsmtp unix - n n - - ...
# flags=Fq. user=bsmtp argv=/usr/local/sbin/bsmtp -f $s...
#
#scalemail-backend unix - n n - ...
# flags=R user=scalemail argv=/usr/lib/scalemail/bin/sc...
# ${nexthop} ${user} ${extension}
#
#mailman unix - n n - - ...
# flags=FR user=list argv=/usr/lib/mailman/bin/postfix-...
# ${nexthop} ${user}
ページ名: