1 files changed, 72 insertions, 0 deletions

diff --git a/inventory/host_vars/ch-testvm-prometheus.yml b/inventory/host_vars/ch-testvm-prometheus.yml
index 879ef694..1c9bcfab 100644
--- a/inventory/host_vars/ch-testvm-prometheus.yml
+++ b/inventory/host_vars/ch-testvm-prometheus.yml
@@ -37,3 +37,75 @@ network:
 ntp_variant: systemd-timesyncd
 
 sshd_allowusers_host: "{{ normal_users_host | union(admin_users_host) | union(['greenbone']) }}"
+
+
+## test
+
+opendkim_admin_mail: postmaster@chaox.org
+opendkim_internal_hosts:
+  - 127.0.0.1
+  - "{{ network_zones.lan.prefix }}"
+  - "{{ network_zones.svc.prefix }}"
+
+opendkim_domains:
+  chaox.org:
+    keys:
+      test-2024-07:
+        keylength: 2048
+
+
+postfix_base_mynetworks:
+  - "127.0.0.0/8"
+  - "[::ffff:127.0.0.0]/104"
+  - "[::1]/128"
+  - "{{ network_zones.svc.prefix }}"
+  - "{{ network_zones.lan.prefix }}"
+
+postfix_base_mydestination:
+  - "$myhostname"
+  - "{{ host_name }}.{{ host_domain }}"
+  - "localhost"
+  - mailrelay.chaox.org
+
+postfix_base_inet_interfaces:
+  - "all"
+
+postfix_base_relayhost: 192.168.28.250
+
+
+postfix_relay_sender_canonical_maps:
+  rewrite_chaox_subdomains:
+    type: regexp
+    content: |
+      /^(.+)@(.+)\.chaox\.org$/i   ${1}%${2}@chaox.org
+
+postfix_relay_local_header_rewrite_clients:
+  - "permit_inet_interfaces"
+  - "permit_mynetworks"
+
+postfix_relay_dkim_signer: "opendkim"
+
+
+postfix_submission_hostname: mailrelay.chaox.org
+
+postfix_submission_tls:
+  certificate_provider: static-ca
+  certificate_config:
+    ca:
+      key_content: "{{ chaos_at_home_internal_ca_key }}"
+      cert_content: "{{ chaos_at_home_internal_ca_cert }}"
+
+
+postfix_submission_auth_saslauthd:
+  mechanism: ldap
+  ldap_options:
+    auth_method: fastbind
+    servers: ldaps://ldap.chaos-at-home.org
+    tls_check_peer: yes
+    tls_cacert_content: "{{ chaos_at_home_internal_ca_cert }}"
+    filter: "%u@chaos-at-home.org"
+
+postfix_submission_allowed_sender_domains:
+  - chaox.org
+
+postfix_submission_dkim_signer: "opendkim"