# Managed by Ansible.
# This configuration enables sending emails using this server, but to not receiving any.

pki {{ send_only_mail_server__mail_server_fqdn }} cert "/etc/ansible_certs/certs/{{ send_only_mail_server__mail_server_fqdn }}/fullchain.pem"
pki {{ send_only_mail_server__mail_server_fqdn }} key "/etc/ansible_certs/certs/{{ send_only_mail_server__mail_server_fqdn }}/privkey.pem"

filter "rspamd-dkim-signing" proc-exec "filter-rspamd -settings-id dkim_signing"

listen on lo
listen on eth0 smtps pki {{ send_only_mail_server__mail_server_fqdn }} auth filter "rspamd-dkim-signing"
listen on eth0 tls-require pki {{ send_only_mail_server__mail_server_fqdn }} auth filter "rspamd-dkim-signing"

action "outbound" relay helo {{ send_only_mail_server__mail_server_fqdn }}

match from any auth for any action "outbound"