Page MenuHomePhabricator
Paste P17756

mx diff
ActivePublic
Actions

Authored by jbond on Nov 17 2021, 3:57 PM.
Tags
None
Referenced Files
F34752028: mx diff
Nov 17 2021, 3:57 PM
Subscribers
None
Notice: /Stage[main]/Exim4/File[/etc/exim4/exim4.conf]/content:
--- /etc/exim4/exim4.conf 2021-10-27 17:42:26.529141324 +0000
+++ /tmp/puppet-file20211117-3484112-1ql4it3 2021-11-17 15:57:03.226708552 +0000
@@ -10,8 +10,6 @@
WIKI_INTERFACE=<; 208.80.153.46 ; 2620:0:860:2:208:80:153:46
-OTRSQUERY=SELECT value0 FROM system_address WHERE value0='${quote_mysql:$local_part@$domain}' AND valid_id=1;
-
VERP_BOUNCE_LOCALPART_REGEXP = \N^wiki-\w+-\w+-\w+-[+/\w]+$\N
###############################
@@ -267,56 +265,33 @@
-subscribe : -unsubscribe
local_part_suffix_optional
-# LDAP accounts
-ldap_account:
+# send phabricator.wm.org emails to Phabricator
+phabricator:
driver = manualroute
- domains = wikimedia.org
- condition = ${lookup ldap \
- {user="cn=eximagent,ou=other,dc=corp,dc=wikimedia,dc=org" pass=LDAPPASSWORD \
- ldap:///ou=people,dc=corp,dc=wikimedia,dc=org?mail?sub?(&(objectClass=inetOrgPerson)(mail=${quote_ldap:$local_part}@$domain)(x121Address=1))} \
- {true}fail}
- local_part_suffix = +*
- local_part_suffix_optional
+ domains = +phab_domains
+ route_list = * phabricator.discovery.wmnet byname
+ transport = remote_smtp
+
+# Query the flat file of email addresses for the existence of the queue address
+# $local_part@$domain, and manually route to the OTRS server if
+# successful. The flat file is generated using a systemd timer once per hour
+otrs:
+ driver = manualroute
+ domains = +local_domains
+ require_files =
+ data = ${lookup{$local_part@$domain}lsearch*{}}
+ route_list = * mendelevium.eqiad.wmnet byname
transport = remote_smtp
- route_list = * aspmx.l.google.com
-ldap_group:
+# Gsuite accounts
+gsuite_account:
driver = manualroute
domains = wikimedia.org
- condition = ${lookup ldap \
- {user="cn=eximagent,ou=other,dc=corp,dc=wikimedia,dc=org" pass=LDAPPASSWORD \
- ldap:///ou=groups,dc=corp,dc=wikimedia,dc=org?businessCategory?sub?(businessCategory=${quote_ldap:$local_part}@$domain)} \
- {true}fail}
local_part_suffix = +*
local_part_suffix_optional
transport = remote_smtp
route_list = * aspmx.l.google.com
-ldap_alias:
- driver = redirect
- domains = wikimedia.org
- data = ${lookup ldap \
- {user="cn=eximagent,ou=other,dc=corp,dc=wikimedia,dc=org" pass=LDAPPASSWORD \
- ldap:///ou=people,dc=corp,dc=wikimedia,dc=org?mail?sub?(&(objectClass=inetOrgPerson)(initials=${quote_ldap:$local_part}@$domain)(x121Address=1))} \
- {$value}fail}
-
-# send phabricator.wm.org emails to Phabricator
-phabricator:
- driver = manualroute
- domains = +phab_domains
- route_list = * phabricator.discovery.wmnet byname
- transport = remote_smtp
-
-# Query the OTRS MySQL server(s) for the existence of the queue address
-# $local_part@$domain, and manually route to the OTRS server if
-# successful.
-otrs:
- driver = manualroute
- domains = +local_domains
- condition = ${lookup mysql{OTRSQUERY}{true}fail}
- route_list = * otrs1001.eqiad.wmnet byname
- transport = remote_smtp
-
# Redirect postmaster@$domain if it hasn't been accepted before
postmaster:
driver = redirect
@@ -396,3 +371,4 @@
*@*.ulsfo.wmnet root@wikimedia.org F
*@*.eqsin.wmnet root@wikimedia.org F
*@*.drmrs.wmnet root@wikimedia.org F
+# vim: set syntax=exim:
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL