Add E-Mail Server
This commit is contained in:
Mathias Teier
parent
c20692e73c
commit
5b61d2cce5
|
|
@ -0,0 +1,32 @@
|
|||
version: '2.4'
|
||||
services:
|
||||
mailserver:
|
||||
image: mailserver/docker-mailserver:9.1.0
|
||||
hostname: mail
|
||||
domainname: kagent.at
|
||||
container_name: mailserver
|
||||
#env_file: mailserver.env
|
||||
environment:
|
||||
- ENABLE_SPAMASSASSIN=1
|
||||
- SPAMASSASSIN_SPAM_TO_INBOX=1
|
||||
- ENABLE_CLAMAV=1
|
||||
- ENABLE_FAIL2BAN=1
|
||||
- ENABLE_POSTGREY=0
|
||||
- ENABLE_SASLAUTHD=0
|
||||
- ONE_DIR=1
|
||||
- DMS_DEBUG=0
|
||||
- SSL_TYPE=letsencrypt
|
||||
ports:
|
||||
- "25:25"
|
||||
- "143:143"
|
||||
- "587:587"
|
||||
- "993:993"
|
||||
volumes:
|
||||
- /var/mail/data:/var/mail
|
||||
- /var/mail/state:/var/mail-state
|
||||
- /var/log/mail:/var/log/mail
|
||||
- /etc/localtime:/etc/localtime:ro
|
||||
- ./config/:/tmp/docker-mailserver/${SELINUX_LABEL}
|
||||
- /etc/letsencrypt:/etc/letsencrypt
|
||||
restart: unless-stopped
|
||||
cap_add: [ "NET_ADMIN", "SYS_PTRACE" ]
|
||||
|
|
@ -0,0 +1,36 @@
|
|||
---
|
||||
- hosts: teier.eu
|
||||
gather_facts: no
|
||||
tasks:
|
||||
- name: Check dc directory
|
||||
stat:
|
||||
path: /dc/mail
|
||||
register: mail_dc_dir_stat
|
||||
|
||||
- name: Create mail dc directory
|
||||
file:
|
||||
path: /dc/mail
|
||||
state: directory
|
||||
mode: 0755
|
||||
group: root
|
||||
owner: root
|
||||
when: mail_dc_dir_stat.islnk is not defined
|
||||
|
||||
- name: Copy mailserver.env
|
||||
copy:
|
||||
src: mailserver.env
|
||||
dest: /dc/mail/
|
||||
|
||||
- name: Copy setup.sh
|
||||
copy:
|
||||
src: setup.sh
|
||||
dest: /dc/mail/
|
||||
|
||||
- name: Copy compose file
|
||||
copy:
|
||||
src: docker-compose.yml
|
||||
dest: /dc/mail/
|
||||
|
||||
- name: Start mail
|
||||
shell: "cd /dc/mail && docker-compose up -d"
|
||||
|
||||
|
|
@ -0,0 +1,6 @@
|
|||
---
|
||||
- hosts: teier.eu
|
||||
gather_facts: no
|
||||
tasks:
|
||||
- name: Teardown mail
|
||||
shell: "cd /dc/mail && docker-compose down"
|
||||
|
|
@ -1,7 +1,7 @@
|
|||
---
|
||||
- name: Configure UFW
|
||||
hosts: teier.eu
|
||||
gather_facts: yes
|
||||
gather_facts: no
|
||||
|
||||
tasks:
|
||||
- name: Install ufw
|
||||
|
|
@ -47,13 +47,66 @@
|
|||
port: '8448'
|
||||
proto: tcp
|
||||
|
||||
- name: Allow SMTP Outgoing
|
||||
- name: Allow SMTP
|
||||
community.general.ufw:
|
||||
rule: allow
|
||||
direction: out
|
||||
port: '587'
|
||||
proto: tcp
|
||||
|
||||
|
||||
- name: Allow Mail
|
||||
community.general.ufw:
|
||||
rule: allow
|
||||
port: '25'
|
||||
proto: tcp
|
||||
|
||||
- name: Allow Mail
|
||||
community.general.ufw:
|
||||
rule: allow
|
||||
port: '143'
|
||||
proto: tcp
|
||||
|
||||
- name: Allow Mail
|
||||
community.general.ufw:
|
||||
rule: allow
|
||||
port: '587'
|
||||
proto: tcp
|
||||
|
||||
- name: Allow Mail
|
||||
community.general.ufw:
|
||||
rule: allow
|
||||
port: '993'
|
||||
proto: tcp
|
||||
|
||||
- name: Allow Taript
|
||||
community.general.ufw:
|
||||
rule: allow
|
||||
port: '22'
|
||||
proto: tcp
|
||||
|
||||
- name: Allow Retrocraft
|
||||
community.general.ufw:
|
||||
rule: allow
|
||||
port: '25566'
|
||||
proto: tcp
|
||||
|
||||
- name: Allow Garry's Mod
|
||||
community.general.ufw:
|
||||
rule: allow
|
||||
port: '17015'
|
||||
proto: udp
|
||||
|
||||
- name: Allow Garry's Mod
|
||||
community.general.ufw:
|
||||
rule: allow
|
||||
port: '27015'
|
||||
proto: udp
|
||||
|
||||
- name: Allow Garry's Mod
|
||||
community.general.ufw:
|
||||
rule: allow
|
||||
port: '27015'
|
||||
proto: tcp
|
||||
|
||||
- name: Allow all access from RFC1918 networks to this host
|
||||
community.general.ufw:
|
||||
rule: allow
|
||||
|
|
|
|||
Loading…
Reference in New Issue