start trying to migrate mail into the main puppet config

author: Jesse Luehrs <doy@tozt.net> 2018-12-05 06:32:38 -0500
committer: Jesse Luehrs <doy@tozt.net> 2018-12-05 06:32:38 -0500
commit: 59715baf043453027d91172aedda60228101f4fc (patch)
tree: 189b8b2e5f1ed1608ad425e788e11109728d5aa3 /modules/mail/files
parent: aceaedaa9361951848cb3b5e8a7207611a1be90e (diff)
download: puppet-tozt-59715baf043453027d91172aedda60228101f4fc.tar.gz
puppet-tozt-59715baf043453027d91172aedda60228101f4fc.zip
5 files changed, 145 insertions, 0 deletions
diff --git a/modules/mail/files/dhparam.pem b/modules/mail/files/dhparam.pem
new file mode 100644
index 0000000..bb54913
--- /dev/null
+++ b/modules/mail/files/dhparam.pem
@@ -0,0 +1,13 @@
+-----BEGIN DH PARAMETERS-----
+MIICCAKCAgEA7AdtK45QmalmavuKKleQB98HE03rd9I0RarkQLnVyQ9CKTQY6sqr
+1TmWf6nzEU6ALnToanaTX30R30p28mz9pNbSK942wR8Gkiz22BTRNl3sykbAwvHA
+e5ZM51w7OY3LOPTa1YT2P2grnu4H39oujN4SrzdQxzKGgOQVacYAsavRwh4v7VgI
+grqbe1IjNHdsNhM7h+5DlXGMhNtMdH9dGkW/LiQvHGencbfK+2VmoJHoa2J3UgVE
+bizm9UHFXcWd2duVAFVQZx9PgOL6xIPtBTN6If45B+4nsrYFr/GsXk/DCtSTI9rP
+VEYEpGFgOz5gLFQJO+QySpRgkeQlge+WiC7XbRd1owrY7GuM3jSSVKFTGrhKa1wG
+DbGSD97OeI1aCgOKWFk3CBe5ezq0JvkeRbrE3Y4Y3/y4pY+mKf0Xd65acRf7E0th
+OiI9gNOBdQQ5FlZSHvxxJg5gpNLmytjMEHMLRbSLON6nxNyRF/m0rIKrdSnmhYiI
+nBQbq4u2wKtN4I4yvuSUD9NqQVZXYk9RH2agW7SovGWHlteYVmKdBWq7iZjcuWT2
+15S5kdv3rnUs3F955PTbDfDkf2nlNcghEqYvLXggzptH27HcO/RWFuDd1lxkeKv1
+H+b4OBHlywZEon13wf0ktj7Xg4GqN0tfbr3koIHaTvYC9CGmFaAhEAsCAQI=
+-----END DH PARAMETERS-----
diff --git a/modules/mail/files/dkim_signing.conf b/modules/mail/files/dkim_signing.conf
new file mode 100644
index 0000000..b1ddead
--- /dev/null
+++ b/modules/mail/files/dkim_signing.conf
@@ -0,0 +1 @@
+use_esld = false;
diff --git a/modules/mail/files/docker-compose.yml b/modules/mail/files/docker-compose.yml
new file mode 100644
index 0000000..747ba65
--- /dev/null
+++ b/modules/mail/files/docker-compose.yml
@@ -0,0 +1,97 @@
+version: '2'
+
+services:
+
+  front:
+    image: mailu/nginx:$VERSION
+    restart: always
+    env_file: .env
+    ports:
+    - "$BIND_ADDRESS4:80:80"
+    - "$BIND_ADDRESS4:443:443"
+    - "$BIND_ADDRESS4:110:110"
+    - "$BIND_ADDRESS4:143:143"
+    - "$BIND_ADDRESS4:993:993"
+    - "$BIND_ADDRESS4:995:995"
+    - "$BIND_ADDRESS4:25:25"
+    - "$BIND_ADDRESS4:465:465"
+    - "$BIND_ADDRESS4:587:587"
+    volumes:
+      - "$ROOT/certs:/certs"
+
+  redis:
+    image: redis:alpine
+    restart: always
+    volumes:
+      - "$ROOT/redis:/data"
+
+  imap:
+    image: mailu/dovecot:$VERSION
+    restart: always
+    env_file: .env
+    volumes:
+      - "$ROOT/data:/data"
+      - "$ROOT/mail:/mail"
+      - "$ROOT/overrides:/overrides"
+    depends_on:
+      - front
+
+  smtp:
+    image: mailu/postfix:$VERSION
+    restart: always
+    env_file: .env
+    volumes:
+      - "$ROOT/data:/data"
+      - "$ROOT/overrides:/overrides"
+    depends_on:
+      - front
+
+  antispam:
+    image: mailu/rspamd:$VERSION
+    restart: always
+    env_file: .env
+    volumes:
+      - "$ROOT/filter:/var/lib/rspamd"
+      - "$ROOT/dkim:/dkim"
+      - "$ROOT/overrides/rspamd:/etc/rspamd/override.d"
+    depends_on:
+      - front
+
+  antivirus:
+    image: mailu/$ANTIVIRUS:$VERSION
+    restart: always
+    env_file: .env
+    volumes:
+      - "$ROOT/filter:/data"
+
+  webdav:
+    image: mailu/$WEBDAV:$VERSION
+    restart: always
+    env_file: .env
+    volumes:
+      - "$ROOT/dav:/data"
+
+  admin:
+    image: mailu/admin:$VERSION
+    restart: always
+    env_file: .env
+    volumes:
+      - "$ROOT/data:/data"
+      - "$ROOT/dkim:/dkim"
+      - /var/run/docker.sock:/var/run/docker.sock:ro
+    depends_on:
+      - redis
+
+  webmail:
+    image: "mailu/$WEBMAIL:$VERSION"
+    restart: always
+    env_file: .env
+    volumes:
+      - "$ROOT/webmail:/data"
+
+  fetchmail:
+    image: mailu/fetchmail:$VERSION
+    restart: always
+    env_file: .env
+    volumes:
+      - "$ROOT/data:/data"
diff --git a/modules/mail/files/env b/modules/mail/files/env
new file mode 100644
index 0000000..ab79b29
--- /dev/null
+++ b/modules/mail/files/env
@@ -0,0 +1,26 @@
+ROOT=/media/persistent
+VERSION=1.5
+DOMAIN=new.tozt.net
+HOSTNAMES=newsmtp.tozt.net
+POSTMASTER=admin
+TLS_FLAVOR=letsencrypt
+AUTH_RATELIMIT=10/minute;1000/hour
+DISABLE_STATISTICS=True
+ADMIN=true
+WEBMAIL=rainloop
+WEBDAV=radicale
+ANTIVIRUS=none
+MESSAGE_SIZE_LIMIT=50000000
+RELAYNETS=172.16.0.0/12
+RELAYHOST=
+FETCHMAIL_DELAY=600
+RECIPIENT_DELIMITER=+
+DMARC_RUA=admin
+DMARC_RUF=admin
+WELCOME=false
+WEB_ADMIN=/admin
+WEB_WEBMAIL=/webmail
+SITENAME=tozt.net
+WEBSITE=https://tozt.net/
+COMPOSE_PROJECT_NAME=mailu
+PASSWORD_SCHEME=SHA512-CRYPT
diff --git a/modules/mail/files/service b/modules/mail/files/service
new file mode 100644
index 0000000..f1da3bb
--- /dev/null
+++ b/modules/mail/files/service
@@ -0,0 +1,8 @@
+[Unit]
+Description = runs mailu
+After=network.target
+
+[Service]
+ExecStart=/usr/local/bin/docker-compose up
+Restart=on-failure
+WorkingDirectory=/media/persistent
author	Jesse Luehrs <doy@tozt.net>	2018-12-05 06:32:38 -0500
committer	Jesse Luehrs <doy@tozt.net>	2018-12-05 06:32:38 -0500
commit	59715baf043453027d91172aedda60228101f4fc (patch)
tree	189b8b2e5f1ed1608ad425e788e11109728d5aa3 /modules/mail/files
parent	aceaedaa9361951848cb3b5e8a7207611a1be90e (diff)
download	puppet-tozt-59715baf043453027d91172aedda60228101f4fc.tar.gz puppet-tozt-59715baf043453027d91172aedda60228101f4fc.zip