From 47f90d0916ac34ef132e3bb6da92a4a67dffbba8 Mon Sep 17 00:00:00 2001
From: Cullum Smith <cullum@sacredheartsc.com>
Date: Thu, 3 Oct 2024 08:37:38 -0400
Subject: add postfix/rspamd

---
 vars/common                | 7 +++++++
 vars/hostclass/smtp_server | 4 ++++
 vars/hostname/smtp1        | 3 +++
 vars/os/freebsd            | 1 +
 4 files changed, 15 insertions(+)
 create mode 100644 vars/hostclass/smtp_server
 create mode 100644 vars/hostname/smtp1

(limited to 'vars')

diff --git a/vars/common b/vars/common
index 5c22f09..7c54673 100644
--- a/vars/common
+++ b/vars/common
@@ -11,6 +11,7 @@ root_authorized_keys='ssh-ed25519 changeme
 ssh-ed25519 changeme'
 root_mail_alias="you@${email_domain}"
 smtp_host_ip=1.2.3.4
+pkg_host_ip=1.2.3.4
 timezone=America/New_York
 
 # hostname  id  ipv4
@@ -20,6 +21,11 @@ idm2      2   5.6.7.8"
 
 reverse_dns_zones="0.168.192.in-addr.arpa  12.11.10.in-addr.arpa"
 
+rspamd_privkey='changeme with: rspamadm keypair'
+rspamd_pubkey='changeme with: rspamadm keypair'
+rspamd_ro_password='changeme'
+rspamd_rw_password='changeme'
+
 
 ###############################################################################
 # Variables following this line do not (generally) need to be changed.
@@ -38,6 +44,7 @@ krb5_renew_lifetime=7d
 nslcd_min_uid=1000
 nscd_ttl=600
 nscd_negative_ttl=20
+rspamd_port=11334
 ssh_authzkeys_uid=789
 ssh_authzkeys_username=sshkeys
 tcp_buffer_size=2097152  # suitable for 1 GigE
diff --git a/vars/hostclass/smtp_server b/vars/hostclass/smtp_server
new file mode 100644
index 0000000..1e8838e
--- /dev/null
+++ b/vars/hostclass/smtp_server
@@ -0,0 +1,4 @@
+#!/bin/sh
+
+allowed_tcp_ports="ssh smtp submission ${rspamd_port} http https"
+postfix_mynetworks='127.0.0.1/8'
diff --git a/vars/hostname/smtp1 b/vars/hostname/smtp1
new file mode 100644
index 0000000..f7da91f
--- /dev/null
+++ b/vars/hostname/smtp1
@@ -0,0 +1,3 @@
+#!/bin/sh
+
+cnames=smtp
diff --git a/vars/os/freebsd b/vars/os/freebsd
index 9f5f068..308408b 100644
--- a/vars/os/freebsd
+++ b/vars/os/freebsd
@@ -11,6 +11,7 @@ see_other_uids=0
 export ASSUME_ALWAYS_YES=yes
 acme_standalone_port=9080
 acme_uid=169
+acme_webroot=/usr/local/www/acme
 keytab_dir=/var/db/keytabs
 nfscbd_port=7745
 nslcd_user=nslcd
-- 
cgit v1.2.3