Server { services = (log processing smtpIncoming smtpOutgoing imap webmail cli webadmin) serverName = "hermes" sslRandomFile = "/var/opt/axigen/axigen_cert.pem" smtpFiltersFile = "filters/smtpFilters.script" scriptFilters = ( { name = "WASieveServer" type = sieve file = "/var/opt/axigen/filters//wasieve-server.sieve" } ) socketFilters = ( { name = "AV:AVAST-INET" address = "inet://127.0.0.1:5036" protocolFile = "/var/opt/axigen/filters/avast-av.afsl" idleTimeout = 300 actionOnMatch = pass maxConnections = 10 maxMessageSize = 10240 } { name = "AV:AVAST-LOCAL" address = "local:///var/run/avast4/local.sock" protocolFile = "/var/opt/axigen/filters/avast-av.afsl" idleTimeout = 300 actionOnMatch = pass maxConnections = 10 maxMessageSize = 10240 } { name = "AV:AVG" address = "inet://127.0.0.1:55555" protocolFile = "/var/opt/axigen/filters/avg.afsl" idleTimeout = 300 actionOnMatch = pass maxConnections = 10 maxMessageSize = 10240 } { name = "AV:ClamAV" address = "inet://127.0.0.1:3310" protocolFile = "/var/opt/axigen/filters/clam-av.afsl" idleTimeout = 300 actionOnMatch = pass maxConnections = 10 maxMessageSize = 10240 } { name = "AV:Commtouch" address = "inet://127.0.0.1:8088" protocolFile = "/var/opt/axigen/filters/commtouch.afsl" idleTimeout = 300 actionOnMatch = pass maxConnections = 10 maxMessageSize = 10240 } { name = "AV:SpamAssassin" address = "inet://127.0.0.1:783" protocolFile = "/var/opt/axigen/filters/spamassassin.afsl" idleTimeout = 300 actionOnMatch = pass maxConnections = 10 maxMessageSize = 10240 } { name = "AV:SpamAssassinBundled" address = "inet://127.0.0.1:1987" protocolFile = "/var/opt/axigen/filters/spamassassin.afsl" idleTimeout = 300 actionOnMatch = pass maxConnections = 10 maxMessageSize = 10240 } { name = "ClamAV-local" address = "local:///var/run/clamav/clamd.ctl" protocolFile = "filters/clam-av.afsl" idleTimeout = 60 actionOnMatch = discard maxConnections = 10 maxMessageSize = 10240 } ) serverActiveFilters = ( { filterName = "AV:SpamAssassin" filterType = socket priority = 3 applyOn = (local relay) } { filterName = "WASieveServer" filterType = script priority = 195 applyOn = (local) } ) primaryDomain = "staffenski.de" enableIOSynchronization = no maxIndexingThreads = 2 maxMigrationThreads = 10 defaultTimeZone = "GMT" defaultLanguage = "de" serverDataLocation = "serverData/" domainStorageParams = ( { domainName = "staffenski.de" domainStorageLocation = "/var/opt/axigen/domains/staffenski.de/" domainObjectStorageLocation = "/var/opt/axigen/domains/staffenski.de//objects" messageStorageLocations = ( "/var/opt/axigen/domains/staffenski.de//messages" ) enable = yes enableMACLSupport = yes activationLevel = 100 activateWithoutParent = no } ) userMaps = ( { name = "usermap1" type = local localFile = "" userdbConnectorType = local userdbConnectorName = "" } ) log = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 listeners = ( { address = 127.0.0.1:2000 enable = no } ) path = "log" enableSecurityLog = no rules = ( { priority = 100 hostname = "*" module = * logLevel = 31 fileName = "everything.txt" fileSize = 5120 fileTime = 86400 fileCount = 0 rotatePeriod = none type = local } { priority = 1000 hostname = "*" module = * logLevel = 31 fileName = "default.txt" fileSize = 5120 fileTime = 86400 fileCount = 0 rotatePeriod = none type = local } ) } dnr = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 timeout = 5 retries = 3 cacheSize = 1000 nameServers = ( { priority = 5 address = 192.168.99.254 timeout = 5 retries = 3 } ) } processing = { logType = internal logLevel = 31 logHost = 127.0.0.1:2000 maxSchedInterval = 28800 schedInterval = 300 maxRetryCount = 20 queuePath = "queue" queueEntryCount = 64 procQueueSize = 256 deliveryThreads = 20 messagesPerSecond = 20 disableInterval = 300 filteringThreads = 20 greylistingCache = 10 } smtpIncoming = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 maxConnThreads = 20 minConnThreads = 2 listeners = ( { address = 127.0.0.1:25 enable = yes idleTimeout = 300 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () sslEnable = no sslControl = { allowedVersions = (tls1_1 tls1_2) certFile = "axigen_cert.pem" caFile = "none" dhParamFile = "none" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } listenerDomain = "" } { address = 192.168.99.252:25 enable = yes idleTimeout = 300 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () sslEnable = no sslControl = { allowedVersions = (tls1_1 tls1_2) certFile = "none" caFile = "none" dhParamFile = "none" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } listenerDomain = "" } { address = 192.168.99.252:465 enable = yes idleTimeout = 300 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () sslEnable = yes sslControl = { allowedVersions = (tls1_1 tls1_2) certFile = "/var/opt/axigen/axigen_cert.pem" caFile = "none" dhParamFile = "/var/opt/axigen/axigen_dh.pem" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } listenerDomain = "" } ) maxErrors = 20 maxAuthErrors = 5 mappingData = { userMap = "none" mappingHost = "127.0.0.1" mappingPort = 200 } userdbConnectorType = local userdbConnectorName = "" serviceAccessControl = { maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = ( { ipSet = 127.0.0.1-127.0.0.1 enable = yes priority = 51 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 20 peerTimeInterval = 60 } { ipSet = 192.168.99.0/255.255.255.0 enable = yes priority = 50 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 20 peerTimeInterval = 60 } ) denyRules = ( { ipSet = 0.0.0.0-254.255.255.255 enable = yes priority = 1000 } ) } maxReceivedHeaders = 30 enableSmtpRouting = no } smtpOutgoing = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 maxConnThreads = 20 minConnThreads = 2 enableIPv6 = no } pop3 = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 maxConnThreads = 20 minConnThreads = 2 listeners = ( { address = 0.0.0.0:110 enable = no idleTimeout = 300 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () sslEnable = no sslControl = { allowedVersions = (tls1_1 tls1_2) certFile = "axigen_cert.pem" caFile = "none" dhParamFile = "none" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } } ) maxErrors = 20 maxAuthErrors = 5 serviceAccessControl = { maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = ( { ipSet = 0.0.0.0-254.255.255.255 enable = yes priority = 1000 maxConnections = 0 maxIntervalConnections = 0 timeInterval = 60 peerMaxConnections = 0 peerMaxIntervalConnections = 0 peerTimeInterval = 60 } ) denyRules = () } allowStartTLS = yes secureConnAllowLogin = yes secureConnAuthTypes = (plain login cram-md5 digest-md5 gssapi) plainConnAllowLogin = no plainConnAuthTypes = (cram-md5 digest-md5 gssapi) userdbConnectorType = local userdbConnectorName = "" greetingsText = "AXIGEN POP3 server on %D ready %U" } imap = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 maxConnThreads = 20 minConnThreads = 2 listeners = ( { address = 127.0.0.1:143 enable = no idleTimeout = 1800 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () sslEnable = no sslControl = { allowedVersions = (tls1_1 tls1_2) certFile = "axigen_cert.pem" caFile = "none" dhParamFile = "none" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } } { address = 192.168.99.252:143 enable = yes idleTimeout = 1800 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () sslEnable = no sslControl = { allowedVersions = (tls1_1 tls1_2) certFile = "none" caFile = "none" dhParamFile = "none" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } } { address = 192.168.99.252:993 enable = yes idleTimeout = 1800 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () sslEnable = yes sslControl = { allowedVersions = (tls1_1 tls1_2) certFile = "/var/opt/axigen/axigen_cert.pem" caFile = "none" dhParamFile = "none" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } } ) maxErrors = 20 maxAuthErrors = 5 serviceAccessControl = { maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = ( { ipSet = 192.168.99.0/255.255.255.0 enable = yes priority = 50 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 20 peerTimeInterval = 60 } ) denyRules = ( { ipSet = 0.0.0.0-254.255.255.255 enable = yes priority = 1000 } ) } allowStartTLS = yes secureConnAllowLogin = yes secureConnAuthTypes = (plain login cram-md5 digest-md5 gssapi) plainConnAllowLogin = no plainConnAuthTypes = (cram-md5 digest-md5 gssapi) userdbConnectorType = local userdbConnectorName = "" greetingsText = "AXIGEN IMAP4rev1 service is ready" } webmail = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 maxConnThreads = 20 minConnThreads = 2 listeners = ( { address = 0.0.0.0:80 enable = no idleTimeout = 300 maxConnections = 1000 maxIntervalConnections = 1200 timeInterval = 60 peerMaxConnections = 100 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () sslEnable = no sslControl = { allowedVersions = (tls1_1 tls1_2) certFile = "axigen_cert.pem" caFile = "none" dhParamFile = "none" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } } { address = 192.168.99.252:80 enable = yes idleTimeout = 300 maxConnections = 1000 maxIntervalConnections = 1200 timeInterval = 60 peerMaxConnections = 100 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () sslEnable = no sslControl = { allowedVersions = (tls1_1 tls1_2) certFile = "none" caFile = "none" dhParamFile = "none" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } } { address = 192.168.99.252:433 enable = yes idleTimeout = 300 maxConnections = 1000 maxIntervalConnections = 1200 timeInterval = 60 peerMaxConnections = 100 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () sslEnable = yes sslControl = { allowedVersions = (ssl2 ssl3 tls1 tls1_1 tls1_2) certFile = "/var/opt/axigen/axigen_cert.pem" caFile = "none" dhParamFile = "/var/opt/axigen/axigen_dh.pem" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = no useEphemeralKey = no requestClientAuth = no } } ) maxErrors = 20 maxAuthErrors = 5 serviceAccessControl = { maxConnections = 1000 maxIntervalConnections = 1200 timeInterval = 60 peerMaxConnections = 100 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = ( { ipSet = 0.0.0.0-254.255.255.255 enable = yes priority = 1000 maxConnections = 0 maxIntervalConnections = 0 timeInterval = 60 peerMaxConnections = 0 peerMaxIntervalConnections = 0 peerTimeInterval = 60 } ) denyRules = () } sessionIdleTimeout = 900 sessionActivityTimeout = 216000 allowKeepAlive = yes allowLargeIncomingData = no httpHeadersMaxSize = 64 httpBodyMaxSize = 64 uploadMaxSize = 16384 urlRedirects = ( { address = 127.0.0.1:8000 host = "localhost" port = 8443 auto = yes } ) path = "webmail" hostNameResolver = ( { host = "hermes.staffenski.local" domain = "staffenski.de" sslEnable = yes sslControl = { allowedVersions = (ssl2 ssl3 tls1 tls1_1 tls1_2) certFile = "/var/opt/axigen/axigen_cert.pem" caFile = "none" dhParamFile = "/var/opt/axigen/axigen_dh.pem" maxChainDepth = 1 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDH" preferServerCipherSuiteOrder = no useEphemeralKey = no requestClientAuth = no } } ) showDomainList = no userdbConnectorType = local userdbConnectorName = "" enableMobileWebmail = no enableActiveSync = no enableIcalCalendar = yes enableIcalFreebusy = yes userInterfaceType = ajaxDefault enablePasswordRecovery = no enableUsernameRecovery = no allowSPNEGOAuth = yes enableWebDAVCardDAV = yes enableWebDAVCalDAV = yes } webadmin = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 maxConnThreads = 20 minConnThreads = 2 listeners = ( { address = 192.168.99.252:9000 enable = yes idleTimeout = 300 maxConnections = 1000 maxIntervalConnections = 1200 timeInterval = 60 peerMaxConnections = 100 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () sslEnable = no sslControl = { allowedVersions = (ssl2 ssl3 tls1_2) certFile = "/var/opt/axigen/axigen_cert.pem" caFile = "none" dhParamFile = "/var/opt/axigen/axigen_dh.pem" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } } ) maxErrors = 20 maxAuthErrors = 5 serviceAccessControl = { maxConnections = 1000 maxIntervalConnections = 1200 timeInterval = 60 peerMaxConnections = 100 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = ( { ipSet = 0.0.0.0-254.255.255.255 enable = yes priority = 1000 maxConnections = 0 maxIntervalConnections = 0 timeInterval = 60 peerMaxConnections = 0 peerMaxIntervalConnections = 0 peerTimeInterval = 60 } ) denyRules = () } sessionIdleTimeout = 900 sessionActivityTimeout = 216000 allowKeepAlive = yes allowLargeIncomingData = no httpHeadersMaxSize = 64 httpBodyMaxSize = 64 uploadMaxSize = 16384 urlRedirects = ( { address = 127.0.0.1:8000 host = "localhost" port = 8443 auto = yes } ) path = "webadmin" } cli = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 maxConnThreads = 20 minConnThreads = 2 listeners = ( { address = 127.0.0.1:7000 enable = yes idleTimeout = 300 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 10 peerMaxIntervalConnections = 50 peerTimeInterval = 60 allowRules = ( { ipSet = 192.0.2.0-192.0.2.255 enable = no priority = 100 maxConnections = 2000 maxIntervalConnections = 10 timeInterval = 60 peerMaxConnections = 10 peerMaxIntervalConnections = 50 peerTimeInterval = 60 } ) denyRules = ( { ipSet = 192.0.2.1-192.0.2.127 enable = no priority = 100 } ) sslEnable = no sslControl = { allowedVersions = (ssl3 tls1 tls1_1 tls1_2) certFile = "axigen_cert.pem" caFile = "none" dhParamFile = "axigen_dh.pem" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } } ) maxErrors = 20 maxAuthErrors = 5 serviceAccessControl = { maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () } maxAuthCommands = 20 } rpop = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 maxConnThreads = 20 minConnThreads = 2 } ftpBackup = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 maxConnThreads = 20 minConnThreads = 2 listeners = ( { address = 127.0.0.1:21 enable = yes idleTimeout = 300 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 10 peerMaxIntervalConnections = 50 peerTimeInterval = 60 allowRules = ( { ipSet = 192.0.2.0-192.0.2.255 enable = no priority = 100 maxConnections = 2000 maxIntervalConnections = 10 timeInterval = 60 peerMaxConnections = 10 peerMaxIntervalConnections = 50 peerTimeInterval = 60 } ) denyRules = ( { ipSet = 192.0.2.1-192.0.2.127 enable = no priority = 100 } ) sslEnable = no sslControl = { allowedVersions = (ssl3 tls1 tls1_1 tls1_2) certFile = "axigen_cert.pem" caFile = "none" dhParamFile = "axigen_dh.pem" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } } { address = 192.168.99.252:21 enable = yes idleTimeout = 300 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () sslEnable = no sslControl = { allowedVersions = (tls1_1 tls1_2) certFile = "none" caFile = "none" dhParamFile = "none" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } } ) maxErrors = 20 maxAuthErrors = 5 serviceAccessControl = { maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = ( { ipSet = 0.0.0.0-254.255.255.255 enable = yes priority = 1000 maxConnections = 0 maxIntervalConnections = 0 timeInterval = 60 peerMaxConnections = 0 peerMaxIntervalConnections = 0 peerTimeInterval = 60 } ) denyRules = () } messagesTarEnabled = no } reporting = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 listeners = ( { address = 127.0.0.1:161 enable = no } ) SNMPEnable = no SNMPSentTrapsToAllManagers = yes SNMPCommunity = "public" SNMPTrapDestinations = () graphics = () DomainEnable = no DomainObjectEnable = no reportingInterval = 53 } pop3Proxy = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 maxConnThreads = 20 minConnThreads = 2 listeners = ( { address = 127.0.0.1:8110 enable = yes idleTimeout = 300 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 10 peerMaxIntervalConnections = 50 peerTimeInterval = 60 allowRules = ( { ipSet = 192.0.2.0-192.0.2.255 enable = no priority = 100 maxConnections = 2000 maxIntervalConnections = 10 timeInterval = 60 peerMaxConnections = 10 peerMaxIntervalConnections = 50 peerTimeInterval = 60 } ) denyRules = ( { ipSet = 192.0.2.1-192.0.2.127 enable = no priority = 100 } ) sslEnable = no sslControl = { allowedVersions = (ssl3 tls1 tls1_1 tls1_2) certFile = "axigen_cert.pem" caFile = "none" dhParamFile = "axigen_dh.pem" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } listenerDomain = "" } ) maxErrors = 20 maxAuthErrors = 5 mappingData = { userMap = "none" mappingHost = "127.0.0.1" mappingPort = 1200 } userdbConnectorType = local userdbConnectorName = "" serviceAccessControl = { maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () } connectionData = { rwTimeout = 200 maxConnections = 64 sslEnable = no localInterface = 0.0.0.0 } allowStartTLS = yes authenticateOnProxy = no greetingsText = "AXIGEN POP3 server on %D ready %U" } imapProxy = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 maxConnThreads = 20 minConnThreads = 2 listeners = ( { address = 127.0.0.1:8143 enable = yes idleTimeout = 1800 maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 10 peerMaxIntervalConnections = 50 peerTimeInterval = 60 allowRules = ( { ipSet = 192.0.2.128-192.0.2.255 enable = no priority = 200 maxConnections = 2000 maxIntervalConnections = 10 timeInterval = 60 peerMaxConnections = 10 peerMaxIntervalConnections = 50 peerTimeInterval = 60 } ) denyRules = ( { ipSet = 192.0.2.1-192.0.2.127 enable = no priority = 100 } ) sslEnable = no sslControl = { allowedVersions = (ssl3 tls1 tls1_1 tls1_2) certFile = "axigen_cert.pem" caFile = "none" dhParamFile = "axigen_dh.pem" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } listenerDomain = "" } ) maxErrors = 20 maxAuthErrors = 5 mappingData = { userMap = "none" mappingHost = "127.0.0.1" mappingPort = 1200 } userdbConnectorType = local userdbConnectorName = "" serviceAccessControl = { maxConnections = 200 maxIntervalConnections = 600 timeInterval = 60 peerMaxConnections = 20 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () } connectionData = { rwTimeout = 200 maxConnections = 64 sslEnable = no localInterface = 0.0.0.0 } allowStartTLS = yes authenticateOnProxy = no greetingsText = "AXIGEN IMAP4rev1 service is ready" } userDb = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 maxThreads = 5 ldapConnectors = () } webmailProxy = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 maxConnThreads = 20 minConnThreads = 1 listeners = ( { address = 127.0.0.1:8800 enable = yes idleTimeout = 300 maxConnections = 1000 maxIntervalConnections = 1200 timeInterval = 60 peerMaxConnections = 100 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = () denyRules = () sslEnable = no sslControl = { allowedVersions = (ssl3 tls1 tls1_1 tls1_2) certFile = "axigen_cert.pem" caFile = "none" dhParamFile = "axigen_dh.pem" maxChainDepth = 4 cipherSuite = "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!3DES:!MD5:!PSK" preferServerCipherSuiteOrder = yes useEphemeralKey = yes requestClientAuth = no } listenerDomain = "" } ) maxErrors = 20 maxAuthErrors = 5 mappingData = { userMap = "none" mappingHost = "127.0.0.1" mappingPort = 1200 } userdbConnectorType = local userdbConnectorName = "" serviceAccessControl = { maxConnections = 1000 maxIntervalConnections = 1200 timeInterval = 60 peerMaxConnections = 100 peerMaxIntervalConnections = 600 peerTimeInterval = 60 allowRules = ( { ipSet = 0.0.0.0-254.255.255.255 enable = yes priority = 1000 maxConnections = 0 maxIntervalConnections = 0 timeInterval = 60 peerMaxConnections = 0 peerMaxIntervalConnections = 0 peerTimeInterval = 60 } ) denyRules = () } connectionData = { rwTimeout = 400 maxConnections = 64 sslEnable = no localInterface = 0.0.0.0 } path = "webmail" allowKeepAlive = yes httpHeadersMaxSize = 64 httpBodyMaxSize = 64 uploadMaxSize = 16384 urlRedirects = () authenticateOnProxy = no requestsQueueMaxSize = 64 allowLargeIncomingData = no enableMobileWebmail = no hostNameResolver = () userInterfaceType = ajaxDefault httpBindBackend = "" enablePasswordRecovery = no enableUsernameRecovery = no allowSPNEGOAuth = yes } filters = { logType = internal logLevel = 15 logHost = 127.0.0.1:2000 integratedFilters = () } sendStatisticsEmail = yes postmasterStatisticsEmailAddress = "martin@staffenski.de" clusterSettings = { runMode = standAlone clusterKey = "" backendAddresses = () frontendAddresses = () } enableStorageStatistics = yes sslHandshakeTimeout = 10 autodiscoveryParams = { enableIMAPAutodiscovery = yes enablePOP3Autodiscovery = no enableSMTPAutodiscovery = yes enableWebDavAutodiscovery = yes autodiscoveryDefaultUrls = { httpAutodiscoveryUrl = "" imapAutodiscoveryUrl = "" pop3AutodiscoveryUrl = "" smtpAutodiscoveryUrl = "" webDavAutodiscoveryUrl = "" } } }