Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
cluebringer.conf [2012-06-08 11:09] – randerson | cluebringer.conf [2013-12-06 12:29] (current) – Fix heading levels rspencer | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | =====[server]===== | + | ====== cluebringer.conf ====== |
- | ====protocols==== | + | ===== [server] ===== |
- | List of protocols to load, one per line | + | |
- | < | + | ==== protocols ==== |
+ | |||
+ | List of protocols to load, one per line: | ||
+ | |||
+ | < | ||
+ | protocols=<< | ||
Postfix | Postfix | ||
Bizanga | Bizanga | ||
- | EOT</ | + | EOT |
+ | </ | ||
- | ====modules==== | + | ==== modules ==== |
- | List of modules to load, one per line | + | |
- | < | + | List of modules to load, one per line: |
+ | |||
+ | < | ||
+ | modules=<< | ||
Core | Core | ||
AccessControl | AccessControl | ||
Line 19: | Line 28: | ||
Greylisting | Greylisting | ||
Quotas | Quotas | ||
- | EOT</ | + | EOT |
+ | </ | ||
- | ====user==== | + | ==== user ==== |
- | User to become after starting up | + | |
- | < | + | |
- | ====group==== | + | User to become after starting up: |
- | Group to become after starting up | + | |
- | < | + | |
- | ====pid_file==== | + | < |
- | Filename to store pid of parent process | + | user=root |
- | < | + | </ |
- | ====cache_file==== | + | ==== group ==== |
- | Filename to store cache | + | |
- | < | + | |
- | ====background==== | + | Group to become after starting up: |
- | Prevent cbpolicyd from going into the background | + | |
- | < | + | < |
+ | group=admins | ||
+ | </ | ||
+ | |||
+ | ==== pid_file ==== | ||
+ | |||
+ | Filename to store pid of parent process: | ||
+ | |||
+ | < | ||
+ | # | ||
+ | </ | ||
+ | |||
+ | ==== cache_file ==== | ||
+ | |||
+ | Filename to store cache: | ||
+ | |||
+ | < | ||
+ | cache_file=/ | ||
+ | </ | ||
+ | |||
+ | ==== background ==== | ||
+ | |||
+ | Prevent cbpolicyd from going into the background: | ||
+ | |||
+ | < | ||
+ | background=no | ||
+ | </ | ||
+ | ==== Preforking configuration ==== | ||
- | ====Preforking configuration==== | ||
* min_server | * min_server | ||
* min_spare_servers | * min_spare_servers | ||
Line 50: | Line 80: | ||
One may want to use the following as a rough guideline... | One may want to use the following as a rough guideline... | ||
+ | |||
* Small mailserver: | * Small mailserver: | ||
* Medium mailserver: 4, 4, 12, 25, 1000 | * Medium mailserver: 4, 4, 12, 25, 1000 | ||
* Large mailserver: 8, 8, 16, 64, 1000 | * Large mailserver: 8, 8, 16, 64, 1000 | ||
- | < | + | < |
+ | min_servers=4 | ||
min_spare_servers=4 | min_spare_servers=4 | ||
max_spare_servers=12 | max_spare_servers=12 | ||
max_servers=25 | max_servers=25 | ||
- | max_requests=1000</ | + | max_requests=1000 |
+ | </ | ||
+ | ==== log_level ==== | ||
+ | |||
+ | Specify the level of logging to use when policyd is running: | ||
+ | |||
+ | < | ||
+ | log_level=2 | ||
+ | </ | ||
- | ====log_level==== | ||
- | Specify the level of logging to use when policyd is running | ||
- | < | ||
Logging levels: | Logging levels: | ||
+ | |||
* 0 - Errors only | * 0 - Errors only | ||
* 1 - Warnings and errors | * 1 - Warnings and errors | ||
Line 71: | Line 109: | ||
* 4 - Debugging | * 4 - Debugging | ||
- | ====log_file==== | + | ==== log_file ==== |
- | File to log to instead of STDOUT | + | |
- | < | + | File to log to instead of STDOUT: |
+ | |||
+ | < | ||
+ | log_file=/ | ||
+ | </ | ||
+ | |||
+ | ==== Log destination and methods ==== | ||
+ | |||
+ | Log destination for mail logs: | ||
- | ====Log destination and methods==== | ||
- | Log destination for mail logs | ||
* main - Default. Log to policyd' | * main - Default. Log to policyd' | ||
* syslog | * syslog | ||
* < | * < | ||
- | Valid methods for syslog | + | Valid methods for syslog: |
* native | * native | ||
* unix - Unix socket | * unix - Unix socket | ||
Line 88: | Line 133: | ||
Example: unix native | Example: unix native | ||
- | < | + | < |
+ | log_mail=mail@syslog: | ||
+ | </ | ||
Example: unix socket | Example: unix socket | ||
- | < | + | < |
+ | log_mail=mail@syslog: | ||
+ | </ | ||
Example: udp | Example: udp | ||
- | < | + | < |
+ | log_mail=mail@syslog: | ||
+ | </ | ||
Example: Solaris | Example: Solaris | ||
- | < | + | < |
+ | log_mail=local0@syslog: | ||
+ | </ | ||
Default: | Default: | ||
- | < | + | < |
+ | log_mail=maillog | ||
+ | </ | ||
+ | |||
+ | ==== log_detail ==== | ||
+ | |||
+ | Things to log in extreme detail: | ||
- | ====log_detail==== | ||
- | Things to log in extreme detail | ||
* modules | * modules | ||
* tracking | * tracking | ||
Line 112: | Line 169: | ||
There is no default for this configuration option. Options can be | There is no default for this configuration option. Options can be | ||
- | separated by commas | + | separated by commas: |
- | < | + | |
- | ====proto==== | + | < |
- | Protocol to use " | + | log_detail=modules, |
- | < | + | </ |
+ | |||
+ | ==== proto ==== | ||
+ | |||
+ | Protocol to use " | ||
+ | |||
+ | < | ||
+ | proto=tcp | ||
+ | </ | ||
+ | |||
+ | ==== host ==== | ||
+ | |||
+ | IP to listen on, * for all. Blank for unix sockets. Defaults to *: | ||
+ | |||
+ | < | ||
+ | host=* | ||
+ | </ | ||
+ | |||
+ | ==== port ==== | ||
+ | |||
+ | Port to run on, in the case of a unix socket it would be the path. Defaults to 10031: | ||
+ | |||
+ | < | ||
+ | port=10031 | ||
+ | port=/ | ||
+ | </ | ||
- | ====host==== | + | ==== timeout_idle |
- | IP to listen on, * for all. Blank for unix sockets. Defaults to * | + | |
- | < | + | |
- | ====port==== | + | Time out in communication with clients: |
- | Port to run on, in the case of a unix socket it would be the path. Defaults to 10031 | + | |
- | < | + | |
- | port=/ | + | |
- | ====timeout_idle==== | ||
- | Time out in communication with clients | ||
* Idle timeout in postfix defaults to 1015s (active connection) | * Idle timeout in postfix defaults to 1015s (active connection) | ||
*< | *< | ||
Line 135: | Line 209: | ||
*< | *< | ||
- | ====cidr_allow/ | + | ==== cidr_allow/ |
Comma, whitespace or semi-colon separated. Contains a CIDR block to compare the clients IP to. If cidr_allow or cidr_deny options are given, the incoming client must match a cidr_allow and not match a cidr_deny otherwise the client connection will be closed. | Comma, whitespace or semi-colon separated. Contains a CIDR block to compare the clients IP to. If cidr_allow or cidr_deny options are given, the incoming client must match a cidr_allow and not match a cidr_deny otherwise the client connection will be closed. | ||
- | < | ||
- | cidr_deny=</ | ||
- | =====[database]===== | + | < |
+ | cidr_allow=0.0.0.0/0 | ||
+ | cidr_deny= | ||
+ | </ | ||
- | ====DSN==== | + | ===== [database] ===== |
- | Database access details | + | |
- | < | + | ==== DSN ==== |
+ | |||
+ | Database access details: | ||
+ | |||
+ | < | ||
+ | # | ||
DSN=DBI: | DSN=DBI: | ||
# | # | ||
- | # | + | #Password= |
+ | </ | ||
+ | |||
+ | ==== bypass_mode ==== | ||
+ | |||
+ | What to do when there is a database connection problem: | ||
- | ====bypass_mode==== | ||
- | What to do when there is a database connection problem | ||
< | < | ||
- | # tempfail | + | # tempfail - Return temporary failure |
- | # pass - Return success | + | # pass - Return success |
- | bypass_mode=tempfail</ | + | bypass_mode=tempfail |
+ | </ | ||
- | ====bypass_timeout==== | + | ==== bypass_timeout ==== |
- | How many seconds before retrying a DB connection | + | |
- | < | + | How many seconds before retrying a DB connection: |
+ | |||
+ | < | ||
+ | bypass_timeout=30 | ||
+ | </ | ||
+ | |||
+ | ==== table_prefix ==== | ||
- | ====table_prefix==== | ||
Table prefix to use, be sure to generate the schema with the table prefix aswell! | Table prefix to use, be sure to generate the schema with the table prefix aswell! | ||
- | < | ||
- | =====Module enabling/disabling===== | + | < |
- | The defaults are listed below | + | # |
+ | </code> | ||
- | * Access Control module | + | ===== Module enabling/disabling ===== |
- | *< | + | |
- | enable=1</code> | + | |
- | * Accounting module | + | The defaults are listed below. |
- | *< | + | |
- | enable=1</ | + | |
- | * Amavis | + | Access Control |
- | *< | + | |
- | enable=0 # Disabled by default</ | + | |
- | * CheckHelo module | + | < |
- | *< | + | [AccessControl] |
- | enable=1</ | + | enable=1 |
+ | </ | ||
- | * CheckSPF | + | Accounting |
- | *< | + | |
- | enable=1</ | + | |
- | * Greylisting module | + | < |
- | *< | + | [Accounting] |
+ | enable=1 | ||
+ | </ | ||
+ | |||
+ | Amavis module: | ||
+ | |||
+ | < | ||
+ | [Amavis] | ||
+ | enable=0 # Disabled by default | ||
+ | </ | ||
+ | |||
+ | CheckHelo module: | ||
+ | |||
+ | < | ||
+ | [CheckHelo] | ||
+ | enable=1 | ||
+ | </ | ||
+ | |||
+ | CheckSPF module: | ||
+ | |||
+ | < | ||
+ | [CheckSPF] | ||
+ | enable=1 | ||
+ | </ | ||
+ | |||
+ | Greylisting module: | ||
+ | |||
+ | < | ||
+ | [Greylisting] | ||
enable=1 | enable=1 | ||
# | # | ||
# | # | ||
- | # | + | # |
+ | </ | ||
- | * Quotas module | + | Quotas module: |
- | *< | + | |
- | enable=1</ | + | < |
+ | [Quotas] | ||
+ | enable=1 | ||
+ | </ |