1 class debian_org::mail_incoming_port {
2 case getfromhash($site::nodeinfo, 'mail_port') {
3 Numeric: { $mail_port = sprintf("%d", getfromhash($site::nodeinfo, 'mail_port')) }
4 /^(\d+)$/: { $mail_port = $1 }
5 default: { $mail_port = '25' }
8 ferm::rule { 'dsa-mail':
9 description => 'Allow SMTP',
10 rule => "&SERVICE_RANGE(tcp, $mail_port, \$SMTP_SOURCES)"
13 ferm::rule { 'dsa-mail-v6':
14 description => 'Allow SMTP',
16 rule => "&SERVICE_RANGE(tcp, $mail_port, \$SMTP_V6_SOURCES)"
18 $autocertdir = hiera('paths.auto_certs_dir')
19 dnsextras::tlsa_record{ 'tlsa-mailport':
21 certfile => "${autocertdir}/${::fqdn}.crt",