Adding top.sls and postfix/satellite.sls

diff --git a/postfix/satellite.sls b/postfix/satellite.sls
new file mode 100644 (file)
index 0000000..1daa7cf
--- /dev/null
+++ b/postfix/satellite.sls
@@ -0,0 +1,59 @@
+{% set postfix = salt['grains.filter_by']({
+  'Debian': {
+    'aliases_file': '/etc/aliases',
+  },
+  'Gentoo': {
+    'aliases_file': '/etc/mail/aliases',
+  },
+  'RedHat': {
+    'aliases_file': '/etc/aliases',
+  },
+  'Arch' : {
+    'aliases_file': '/etc/aliases',
+  },
+},
+%}
+
+postfix:
+  manage_master_config: False
+
+  sasl_passwd:
+    - mail.brehm-online.com: vmail:uhu
+    - helga-six.brehm-online.com: vmail:uhu
+
+  config:
+    smtpd_banner: $myhostname ESMTP $mail_name (Debian/GNU)
+    biff: 'no'
+    smtp_tls_CApath = /etc/ssl/certs
+    append_dot_mydomain: 'yes'
+    readme_directory: 'no'
+    mydestination: localhost, localhost.localdomain
+    relayhost: 
+    mynetworks: 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
+    mailbox_size_limit: 0
+    recipient_delimiter: +
+    inet_interfaces: all
+
+    # Alias
+    alias_maps: hash:/etc/aliases
+    alias_database: hash:/etc/aliases
+
+    # SMTP server
+    smtpd_tls_session_cache_database: btree:${data_directory}/smtpd_scache
+    smtpd_use_tls: 'yes'
+
+    # SMTP server certificate and key (from pillar data)
+    smtpd_tls_cert_file: /etc/postfix/ssl/server-cert.crt
+    smtpd_tls_key_file: /etc/postfix/ssl/server-cert.key
+
+    # SMTP client
+    smtp_sasl_auth_enable: 'yes'
+    smtp_sasl_password_maps: 'hash:/etc/postfix/smtp_auth'
+    smtp_sasl_security_options: 'noanonymous'
+    smtp_tls_cert_file: '/etc/postfix/postfix.pem'
+    smtp_tls_enforce_peername: 'no'
+    smtp_tls_key_file: '/etc/postfix/postfix.pem'
+    smtp_tls_session_cache_database: 'btree:${data_directory}/smtp_scache'
+    smtp_use_tls: 'yes'
+
+# vim: ts=2 sw=2 et

diff --git a/top.sls b/top.sls
new file mode 100644 (file)
index 0000000..6427cce
--- /dev/null
+++ b/top.sls
@@ -0,0 +1,7 @@
+base:
+  'ns2.uhu-banane.de':
+    - postfix.satellite
+
+  'ns3.uhu-banane.de':
+    - postfix.satellite
+