rocky_exim_config

mcedit /etc/exim/exim.conf

#MAIN CONFIGURATION SETTINGS
    #need change
    primary_hostname = mail.domain.local
    #need change
    domainlist local_domains = domain.local : domain1.local
hostlist   relay_from_hosts = 127.0.0.1 : 192.168.150.0/24
auth_advertise_hosts = *
daemon_smtp_ports = 25 : 465
disable_ipv6

tls_on_connect_ports = 465
tls_advertise_hosts = *
tls_certificate = /etc/ssl/certs/mail.pem
tls_privatekey = /etc/ssl/certs/mail.pem

log_file_path = syslog : /var/log/exim/exim_%slog
syslog_timestamp = false
syslog_duplication = false
syslog_processname = exim_150.110

log_selector = \
        +all_parents \
        +lost_incoming_connection \
        +received_sender \
        +received_recipients \
        +smtp_confirmation \
        +smtp_syntax_error \
        +smtp_protocol_error \
        -queue_run
acl_smtp_rcpt = acl_check_rcpt
    #need change
    qualify_domain = domain.local
allow_domain_literals = false
never_users = root
rfc1413_hosts = *
rfc1413_query_timeout = 0s
ignore_bounce_errors_after = 5m
timeout_frozen_after = 3d
freeze_tell = postmaster
message_size_limit = 10M
split_spool_directory = true
smtp_banner = "ESMTP"

#ACCESS LISTS
begin acl
  acl_check_rcpt:
    accept
      local_parts = postmaster
      domains = +local_domains
      #require verify         = sender

    accept
      hosts = : 127.0.0.1 
    accept
      authenticated = *
    deny
      sender_domains = +local_domains
      message = need auth for local domain
    deny
      condition = ${if eq{$sender_helo_name}{}{yes}{no}}
      message = HELO/EHLO required by SMTP RFC
    accept
      domains        = +local_domains
        endpass
      verify         = recipient
      message        = unknown user
    deny
      message = relay not permitted

#ROUTERS CONFIGURATION
begin routers
dnslookup:
        driver = dnslookup
        domains = ! +local_domains
        transport = remote_smtp
        ignore_target_hosts = 0.0.0.0 : 127.0.0.0/8
        no_more

system_aliases:
        driver = redirect
        data = ${lookup{$local_part}lsearch{/etc/aliases}}

virtual_user:
        debug_print = "R: local_user for $local_part@$domain"
        driver = accept
        domains = +local_domains
        transport = dovecot_lmtp
        cannot_route_message = Unknown user

#TRANSPORTS CONFIGURATION
begin transports
remote_smtp:
    driver = smtp

dovecot_lmtp:
    driver = lmtp
    socket = /var/run/dovecot/lmtp
    #maximum number of deliveries per batch, default 1
    batch_max = 200
    #allow suffixes/prefixes (default unset)
    rcpt_include_affixes

#RETRY CONFIGURATION
begin retry
*                      *           F,2h,15m; G,16h,1h,1.5; F,4d,6h

#REWRITE CONFIGURATION
begin rewrite

#AUTHENTICATION CONFIGURATION
begin authenticators
auth_plain:
    driver = dovecot
    public_name = PLAIN
    server_socket = /var/run/dovecot/auth-client
    server_set_id = $auth1

auth_login:
    driver = dovecot
    public_name = LOGIN
    server_socket = /var/run/dovecot/auth-client
    server_set_id = $auth1

auth_cram_md5:
    driver = dovecot
    public_name = CRAM-MD5
    server_socket = /var/run/dovecot/auth-client
    server_set_id = $auth1