Dieser Commit ist enthalten in:
milkmaker 2021-12-30 14:24:31 +00:00
Ursprung 9289f6efcd
Commit 5924b312f3
4 geänderte Dateien mit 201 neuen und 201 gelöschten Zeilen

Datei anzeigen

@ -2403,47 +2403,47 @@ On many servers logrotate will reload the webserver daily anyway.</p>
</code></pre></div></p>
<p>Let's Encrypt will follow our rewrite, certificate requests in mailcow will work fine.</p>
<p><strong>Take care of highlighted lines.</strong></p>
<div class="highlight"><pre><span></span><code><span class="nt">&lt;VirtualHost</span> <span class="s">*:80</span><span class="nt">&gt;</span>
<span class="hll"> <span class="nb">ServerName</span> CHANGE_TO_MAILCOW_HOSTNAME
</span> <span class="nb">ServerAlias</span> autodiscover.*
<span class="nb">ServerAlias</span> autoconfig.*
<span class="nb">RewriteEngine</span> <span class="k">on</span>
<div class="highlight"><pre><span></span><code><span class="nt">&lt;VirtualHost</span><span class="w"> </span><span class="s">*:80</span><span class="nt">&gt;</span><span class="w"></span>
<span class="hll"><span class="w"> </span><span class="nb">ServerName</span><span class="w"> </span>CHANGE_TO_MAILCOW_HOSTNAME<span class="w"></span>
</span><span class="w"> </span><span class="nb">ServerAlias</span><span class="w"> </span>autodiscover.*<span class="w"></span>
<span class="w"> </span><span class="nb">ServerAlias</span><span class="w"> </span>autoconfig.*<span class="w"></span>
<span class="w"> </span><span class="nb">RewriteEngine</span><span class="w"> </span><span class="k">on</span><span class="w"></span>
<span class="nb">RewriteCond</span> %{HTTPS} <span class="k">off</span>
<span class="nb">RewriteRule</span> ^/?(.*) https://%{HTTP_HOST}/$1 [R=301,L]
<span class="w"> </span><span class="nb">RewriteCond</span><span class="w"> </span>%{HTTPS}<span class="w"> </span><span class="k">off</span><span class="w"></span>
<span class="w"> </span><span class="nb">RewriteRule</span><span class="w"> </span>^/?(.*)<span class="w"> </span>https://%{HTTP_HOST}/$1<span class="w"> </span>[R=301,L]<span class="w"></span>
<span class="hll"> <span class="nb">ProxyPass</span> / http://127.0.0.1:8080/
</span><span class="hll"> <span class="nb">ProxyPassReverse</span> / http://127.0.0.1:8080/
</span> <span class="nb">ProxyPreserveHost</span> <span class="k">On</span>
<span class="nb">ProxyAddHeaders</span> <span class="k">On</span>
<span class="nb">RequestHeader</span> set X-Forwarded-Proto <span class="s2">&quot;http&quot;</span>
<span class="nt">&lt;/VirtualHost&gt;</span>
<span class="nt">&lt;VirtualHost</span> <span class="s">*:443</span><span class="nt">&gt;</span>
<span class="hll"> <span class="nb">ServerName</span> CHANGE_TO_MAILCOW_HOSTNAME
</span> <span class="nb">ServerAlias</span> autodiscover.*
<span class="nb">ServerAlias</span> autoconfig.*
<span class="hll"><span class="w"> </span><span class="nb">ProxyPass</span><span class="w"> </span>/<span class="w"> </span>http://127.0.0.1:8080/<span class="w"></span>
</span><span class="hll"><span class="w"> </span><span class="nb">ProxyPassReverse</span><span class="w"> </span>/<span class="w"> </span>http://127.0.0.1:8080/<span class="w"></span>
</span><span class="w"> </span><span class="nb">ProxyPreserveHost</span><span class="w"> </span><span class="k">On</span><span class="w"></span>
<span class="w"> </span><span class="nb">ProxyAddHeaders</span><span class="w"> </span><span class="k">On</span><span class="w"></span>
<span class="w"> </span><span class="nb">RequestHeader</span><span class="w"> </span>set<span class="w"> </span>X-Forwarded-Proto<span class="w"> </span><span class="s2">&quot;http&quot;</span><span class="w"></span>
<span class="nt">&lt;/VirtualHost&gt;</span><span class="w"></span>
<span class="nt">&lt;VirtualHost</span><span class="w"> </span><span class="s">*:443</span><span class="nt">&gt;</span><span class="w"></span>
<span class="hll"><span class="w"> </span><span class="nb">ServerName</span><span class="w"> </span>CHANGE_TO_MAILCOW_HOSTNAME<span class="w"></span>
</span><span class="w"> </span><span class="nb">ServerAlias</span><span class="w"> </span>autodiscover.*<span class="w"></span>
<span class="w"> </span><span class="nb">ServerAlias</span><span class="w"> </span>autoconfig.*<span class="w"></span>
<span class="c"># You should proxy to a plain HTTP session to offload SSL processing</span>
<span class="hll"> <span class="nb">ProxyPass</span> <span class="sx">/Microsoft-Server-ActiveSync</span> http://127.0.0.1:8080/Microsoft-Server-ActiveSync connectiontimeout=4000
</span><span class="hll"> <span class="nb">ProxyPassReverse</span> <span class="sx">/Microsoft-Server-ActiveSync</span> http://127.0.0.1:8080/Microsoft-Server-ActiveSync
</span><span class="hll"> <span class="nb">ProxyPass</span> / http://127.0.0.1:8080/
</span><span class="hll"> <span class="nb">ProxyPassReverse</span> / http://127.0.0.1:8080/
</span> <span class="nb">ProxyPreserveHost</span> <span class="k">On</span>
<span class="nb">ProxyAddHeaders</span> <span class="k">On</span>
<span class="nb">RequestHeader</span> set X-Forwarded-Proto <span class="s2">&quot;https&quot;</span>
<span class="w"> </span><span class="c"># You should proxy to a plain HTTP session to offload SSL processing</span><span class="w"></span>
<span class="hll"><span class="w"> </span><span class="nb">ProxyPass</span><span class="w"> </span><span class="sx">/Microsoft-Server-ActiveSync</span><span class="w"> </span>http://127.0.0.1:8080/Microsoft-Server-ActiveSync<span class="w"> </span>connectiontimeout=4000<span class="w"></span>
</span><span class="hll"><span class="w"> </span><span class="nb">ProxyPassReverse</span><span class="w"> </span><span class="sx">/Microsoft-Server-ActiveSync</span><span class="w"> </span>http://127.0.0.1:8080/Microsoft-Server-ActiveSync<span class="w"></span>
</span><span class="hll"><span class="w"> </span><span class="nb">ProxyPass</span><span class="w"> </span>/<span class="w"> </span>http://127.0.0.1:8080/<span class="w"></span>
</span><span class="hll"><span class="w"> </span><span class="nb">ProxyPassReverse</span><span class="w"> </span>/<span class="w"> </span>http://127.0.0.1:8080/<span class="w"></span>
</span><span class="w"> </span><span class="nb">ProxyPreserveHost</span><span class="w"> </span><span class="k">On</span><span class="w"></span>
<span class="w"> </span><span class="nb">ProxyAddHeaders</span><span class="w"> </span><span class="k">On</span><span class="w"></span>
<span class="w"> </span><span class="nb">RequestHeader</span><span class="w"> </span>set<span class="w"> </span>X-Forwarded-Proto<span class="w"> </span><span class="s2">&quot;https&quot;</span><span class="w"></span>
<span class="hll"> <span class="nb">SSLCertificateFile</span> MAILCOW_PATH/data/assets/ssl/cert.pem
</span><span class="hll"> <span class="nb">SSLCertificateKeyFile</span> MAILCOW_PATH/data/assets/ssl/key.pem
<span class="hll"><span class="w"> </span><span class="nb">SSLCertificateFile</span><span class="w"> </span>MAILCOW_PATH/data/assets/ssl/cert.pem<span class="w"></span>
</span><span class="hll"><span class="w"> </span><span class="nb">SSLCertificateKeyFile</span><span class="w"> </span>MAILCOW_PATH/data/assets/ssl/key.pem<span class="w"></span>
</span>
<span class="c"># If you plan to proxy to a HTTPS host:</span>
<span class="c">#SSLProxyEngine On</span>
<span class="w"> </span><span class="c"># If you plan to proxy to a HTTPS host:</span><span class="w"></span>
<span class="w"> </span><span class="c">#SSLProxyEngine On</span><span class="w"></span>
<span class="c"># If you plan to proxy to an untrusted HTTPS host:</span>
<span class="c">#SSLProxyVerify none</span>
<span class="c">#SSLProxyCheckPeerCN off</span>
<span class="c">#SSLProxyCheckPeerName off</span>
<span class="c">#SSLProxyCheckPeerExpire off</span>
<span class="nt">&lt;/VirtualHost&gt;</span>
<span class="w"> </span><span class="c"># If you plan to proxy to an untrusted HTTPS host:</span><span class="w"></span>
<span class="w"> </span><span class="c">#SSLProxyVerify none</span><span class="w"></span>
<span class="w"> </span><span class="c">#SSLProxyCheckPeerCN off</span><span class="w"></span>
<span class="w"> </span><span class="c">#SSLProxyCheckPeerName off</span><span class="w"></span>
<span class="w"> </span><span class="c">#SSLProxyCheckPeerExpire off</span><span class="w"></span>
<span class="nt">&lt;/VirtualHost&gt;</span><span class="w"></span>
</code></pre></div>
<h3 id="nginx">Nginx<a class="headerlink" href="#nginx" title="Permanent link">&para;</a></h3>
<p>Let's Encrypt will follow our rewrite, certificate requests will work fine.</p>
@ -2521,48 +2521,48 @@ backend mailcow
<p>So, first of all, we are going to disable the acme-mailcow container since we'll use the certs that traefik will provide us.
For this we'll have to set <code>SKIP_LETS_ENCRYPT=y</code> on our <code>mailcow.conf</code>, and run <code>docker-compose up -d</code> to apply the changes.</p>
<p>Then we'll create a <code>docker-compose.override.yml</code> file in order to override the main <code>docker-compose.yml</code> found in your mailcow root folder. </p>
<div class="highlight"><pre><span></span><code><span class="nt">version</span><span class="p">:</span> <span class="s">&#39;2.1&#39;</span>
<div class="highlight"><pre><span></span><code><span class="nt">version</span><span class="p">:</span><span class="w"> </span><span class="s">&#39;2.1&#39;</span><span class="w"></span>
<span class="nt">services</span><span class="p">:</span>
<span class="nt">nginx-mailcow</span><span class="p">:</span>
<span class="nt">networks</span><span class="p">:</span>
<span class="c1"># add Traefik&#39;s network</span>
<span class="nt">web</span><span class="p">:</span>
<span class="nt">labels</span><span class="p">:</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">traefik.enable=true</span>
<span class="c1"># Creates a router called &quot;moo&quot; for the container, and sets up a rule to link the container to certain rule,</span>
<span class="c1"># in this case, a Host rule with our MAILCOW_HOSTNAME var.</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">traefik.http.routers.moo.rule=Host(`${MAILCOW_HOSTNAME}`)</span>
<span class="c1"># Enables tls over the router we created before.</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">traefik.http.routers.moo.tls=true</span>
<span class="c1"># Specifies which kind of cert resolver we&#39;ll use, in this case le (Lets Encrypt).</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">traefik.http.routers.moo.tls.certresolver=le</span>
<span class="c1"># Creates a service called &quot;moo&quot; for the container, and specifies which internal port of the container</span>
<span class="c1"># should traefik route the incoming data to.</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">traefik.http.services.moo.loadbalancer.server.port=${HTTP_PORT}</span>
<span class="c1"># Specifies which entrypoint (external port) should traefik listen to, for this container.</span>
<span class="c1"># websecure being port 443, check the traefik.toml file liked above.</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">traefik.http.routers.moo.entrypoints=websecure</span>
<span class="c1"># Make sure traefik uses the web network, not the mailcowdockerized_mailcow-network</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">traefik.docker.network=web</span>
<span class="nt">services</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="nt">nginx-mailcow</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="nt">networks</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="c1"># add Traefik&#39;s network</span><span class="w"></span>
<span class="w"> </span><span class="nt">web</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="nt">labels</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">traefik.enable=true</span><span class="w"></span>
<span class="w"> </span><span class="c1"># Creates a router called &quot;moo&quot; for the container, and sets up a rule to link the container to certain rule,</span><span class="w"></span>
<span class="w"> </span><span class="c1"># in this case, a Host rule with our MAILCOW_HOSTNAME var.</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">traefik.http.routers.moo.rule=Host(`${MAILCOW_HOSTNAME}`)</span><span class="w"></span>
<span class="w"> </span><span class="c1"># Enables tls over the router we created before.</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">traefik.http.routers.moo.tls=true</span><span class="w"></span>
<span class="w"> </span><span class="c1"># Specifies which kind of cert resolver we&#39;ll use, in this case le (Lets Encrypt).</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">traefik.http.routers.moo.tls.certresolver=le</span><span class="w"></span>
<span class="w"> </span><span class="c1"># Creates a service called &quot;moo&quot; for the container, and specifies which internal port of the container</span><span class="w"></span>
<span class="w"> </span><span class="c1"># should traefik route the incoming data to.</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">traefik.http.services.moo.loadbalancer.server.port=${HTTP_PORT}</span><span class="w"></span>
<span class="w"> </span><span class="c1"># Specifies which entrypoint (external port) should traefik listen to, for this container.</span><span class="w"></span>
<span class="w"> </span><span class="c1"># websecure being port 443, check the traefik.toml file liked above.</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">traefik.http.routers.moo.entrypoints=websecure</span><span class="w"></span>
<span class="w"> </span><span class="c1"># Make sure traefik uses the web network, not the mailcowdockerized_mailcow-network</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">traefik.docker.network=web</span><span class="w"></span>
<span class="nt">certdumper</span><span class="p">:</span>
<span class="nt">image</span><span class="p">:</span> <span class="l l-Scalar l-Scalar-Plain">humenius/traefik-certs-dumper</span>
<span class="nt">container_name</span><span class="p">:</span> <span class="l l-Scalar l-Scalar-Plain">traefik_certdumper</span>
<span class="nt">network_mode</span><span class="p">:</span> <span class="l l-Scalar l-Scalar-Plain">none</span>
<span class="nt">volumes</span><span class="p">:</span>
<span class="c1"># mount the folder which contains Traefik&#39;s `acme.json&#39; file</span>
<span class="c1"># in this case Traefik is started from its own docker-compose in ../traefik</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">../traefik/data:/traefik:ro</span>
<span class="c1"># mount mailcow&#39;s SSL folder</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">./data/assets/ssl/:/output:rw</span>
<span class="nt">environment</span><span class="p">:</span>
<span class="c1"># only change this, if you&#39;re using another domain for mailcow&#39;s web frontend compared to the standard config</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">DOMAIN=${MAILCOW_HOSTNAME}</span>
<span class="w"> </span><span class="nt">certdumper</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="nt">image</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">humenius/traefik-certs-dumper</span><span class="w"></span>
<span class="w"> </span><span class="nt">container_name</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">traefik_certdumper</span><span class="w"></span>
<span class="w"> </span><span class="nt">network_mode</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">none</span><span class="w"></span>
<span class="w"> </span><span class="nt">volumes</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="c1"># mount the folder which contains Traefik&#39;s `acme.json&#39; file</span><span class="w"></span>
<span class="w"> </span><span class="c1"># in this case Traefik is started from its own docker-compose in ../traefik</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">../traefik/data:/traefik:ro</span><span class="w"></span>
<span class="w"> </span><span class="c1"># mount mailcow&#39;s SSL folder</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">./data/assets/ssl/:/output:rw</span><span class="w"></span>
<span class="w"> </span><span class="nt">environment</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="c1"># only change this, if you&#39;re using another domain for mailcow&#39;s web frontend compared to the standard config</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">DOMAIN=${MAILCOW_HOSTNAME}</span><span class="w"></span>
<span class="nt">networks</span><span class="p">:</span>
<span class="nt">web</span><span class="p">:</span>
<span class="nt">external</span><span class="p">:</span> <span class="l l-Scalar l-Scalar-Plain">true</span>
<span class="nt">networks</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="nt">web</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="nt">external</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">true</span><span class="w"></span>
</code></pre></div>
<p>Start the new containers with <code>docker-compose up -d</code>.</p>
<p>Now, there's only one thing left to do, which is setup the certs so that the mail services can use them as well, since Traefik 2 uses an acme v2 format to save ALL the license from all the domains we have, we'll need to find a way to dump the certs, lucky we have <a href="https://hub.docker.com/r/humenius/traefik-certs-dumper">this tiny container</a> which grabs the <code>acme.json</code> file trough a volume, and a variable <code>DOMAIN=example.org</code>, and with these, the container will output the <code>cert.pem</code> and <code>key.pem</code> files, for this we'll simply run the <code>traefik-certs-dumper</code> container binding the <code>/traefik</code> volume to the folder where our <code>acme.json</code> is saved, bind the <code>/output</code> volume to our mailcow <code>data/assets/ssl/</code> folder, and set up the <code>DOMAIN=example.org</code> variable to the domain we want the certs dumped from. </p>

Datei anzeigen

@ -2,497 +2,497 @@
<urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9">
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/b_n_r-accidental_deletion/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/b_n_r-backup/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/b_n_r-coldstandby/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/b_n_r-restore/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/client/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/debug-admin_login_sogo/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/debug-asan_rspamd/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/debug-attach_service/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/debug-common_problems/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/debug-logs/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/debug-mysql_aria/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/debug-mysql_upgrade/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/debug-reset_pw/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/debug-reset_tls/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/debug-rm_volumes/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/debug/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/firststeps-disable_ipv6/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/firststeps-dmarc_reporting/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/firststeps-ip_bindings/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/firststeps-local_mta/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/firststeps-logging/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/firststeps-rp/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/firststeps-rspamd_ui/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/firststeps-snat/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/firststeps-ssl/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/firststeps-sync_jobs_migration/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/i_u_m_deinstall/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/i_u_m_install/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/i_u_m_migration/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/i_u_m_update/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/model-acl/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/model-passwd/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/model-sender_rcv/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/prerequisite-dns/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/prerequisite-system/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/restrictions_ip_accss/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/third_party-borgmatic/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/third_party-exchange_onprem/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/third_party-gitea/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/third_party-gogs/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/third_party-mailman3/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/third_party-mailpiler_integration/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/third_party-nextcloud/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/third_party-portainer/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/third_party-roundcube/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-80_to_443/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-autodiscover_config/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-backup_restore-maildir/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-backup_restore-mysql/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-docker-cust_dockerfiles/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-docker-dc_bash_compl/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-dovecot-any_acl/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-dovecot-catchall_vacation/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-dovecot-expunge/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-dovecot-extra_conf/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-dovecot-fts/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-dovecot-idle_interval/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-dovecot-mail-crypt/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-dovecot-more/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-dovecot-public_folder/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-dovecot-static_master/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-dovecot-vmail-volume/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-fido2/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-mailcow_ui-bl_wl/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-mailcow_ui-config/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-mailcow_ui-css/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-mailcow_ui-pushover/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-mailcow_ui-spamalias/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-mailcow_ui-spamfilter/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-mailcow_ui-tagging/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-mailcow_ui-tfa/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-nginx/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-postfix-attachment_size/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-postfix-custom_transport/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-postfix-disable_sender_verification/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-postfix-extra_cf/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-postfix-pflogsumm/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-postfix-postscreen_whitelist/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-postfix-relayhost/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-postfix-trust_networks/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-redis/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-reeanble-weak-protocols/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-rspamd/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-sogo/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-unbound-fwd/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-update-hooks/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-watchdog-thresholds/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-webmail-site/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/u_e-why_unbound/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/client/client-android/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/client/client-apple/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/client/client-emclient/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/client/client-kontact/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/client/client-manual/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/client/client-outlook/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/client/client-thunderbird/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/client/client-windows/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
<url>
<loc>https://mailcow.github.io/mailcow-dockerized-docs/client/client-windowsphone/</loc>
<lastmod>2021-12-22</lastmod>
<lastmod>2021-12-30</lastmod>
<changefreq>daily</changefreq>
</url>
</urlset>

Binäre Datei nicht angezeigt.

Datei anzeigen

@ -2586,36 +2586,36 @@ This guide only covers the basics.</p>
<h3 id="create-or-amend-docker-composeoverrideyml">Create or amend <code>docker-compose.override.yml</code><a class="headerlink" href="#create-or-amend-docker-composeoverrideyml" title="Permanent link">&para;</a></h3>
<p>In the mailcow-dockerized root folder create or edit <code>docker-compose.override.yml</code> and insert the following
configuration:</p>
<div class="highlight"><pre><span></span><code><span class="nt">version</span><span class="p">:</span> <span class="s">&#39;2.1&#39;</span>
<div class="highlight"><pre><span></span><code><span class="nt">version</span><span class="p">:</span><span class="w"> </span><span class="s">&#39;2.1&#39;</span><span class="w"></span>
<span class="nt">services</span><span class="p">:</span>
<span class="nt">borgmatic-mailcow</span><span class="p">:</span>
<span class="nt">image</span><span class="p">:</span> <span class="l l-Scalar l-Scalar-Plain">b3vis/borgmatic</span>
<span class="nt">hostname</span><span class="p">:</span> <span class="l l-Scalar l-Scalar-Plain">mailcow</span>
<span class="nt">restart</span><span class="p">:</span> <span class="l l-Scalar l-Scalar-Plain">always</span>
<span class="nt">dns</span><span class="p">:</span> <span class="l l-Scalar l-Scalar-Plain">${IPV4_NETWORK:-172.22.1}.254</span>
<span class="nt">volumes</span><span class="p">:</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">vmail-vol-1:/mnt/source/vmail:ro</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">crypt-vol-1:/mnt/source/crypt:ro</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">redis-vol-1:/mnt/source/redis:ro,z</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">rspamd-vol-1:/mnt/source/rspamd:ro,z</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">postfix-vol-1:/mnt/source/postfix:ro,z</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">mysql-socket-vol-1:/var/run/mysqld/:z</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">borg-config-vol-1:/root/.config/borg:Z</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">borg-cache-vol-1:/root/.cache/borg:Z</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">./data/conf/borgmatic/etc:/etc/borgmatic.d:Z</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">./data/conf/borgmatic/ssh:/root/.ssh:Z</span>
<span class="nt">environment</span><span class="p">:</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">TZ=${TZ}</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">BORG_PASSPHRASE=YouBetterPutSomethingRealGoodHere</span>
<span class="nt">networks</span><span class="p">:</span>
<span class="nt">mailcow-network</span><span class="p">:</span>
<span class="nt">aliases</span><span class="p">:</span>
<span class="p p-Indicator">-</span> <span class="l l-Scalar l-Scalar-Plain">borgmatic</span>
<span class="nt">services</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="nt">borgmatic-mailcow</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="nt">image</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">b3vis/borgmatic</span><span class="w"></span>
<span class="w"> </span><span class="nt">hostname</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">mailcow</span><span class="w"></span>
<span class="w"> </span><span class="nt">restart</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">always</span><span class="w"></span>
<span class="w"> </span><span class="nt">dns</span><span class="p">:</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">${IPV4_NETWORK:-172.22.1}.254</span><span class="w"></span>
<span class="w"> </span><span class="nt">volumes</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">vmail-vol-1:/mnt/source/vmail:ro</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">crypt-vol-1:/mnt/source/crypt:ro</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">redis-vol-1:/mnt/source/redis:ro,z</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">rspamd-vol-1:/mnt/source/rspamd:ro,z</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">postfix-vol-1:/mnt/source/postfix:ro,z</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">mysql-socket-vol-1:/var/run/mysqld/:z</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">borg-config-vol-1:/root/.config/borg:Z</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">borg-cache-vol-1:/root/.cache/borg:Z</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">./data/conf/borgmatic/etc:/etc/borgmatic.d:Z</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">./data/conf/borgmatic/ssh:/root/.ssh:Z</span><span class="w"></span>
<span class="w"> </span><span class="nt">environment</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">TZ=${TZ}</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">BORG_PASSPHRASE=YouBetterPutSomethingRealGoodHere</span><span class="w"></span>
<span class="w"> </span><span class="nt">networks</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="nt">mailcow-network</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="nt">aliases</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="p p-Indicator">-</span><span class="w"> </span><span class="l l-Scalar l-Scalar-Plain">borgmatic</span><span class="w"></span>
<span class="nt">volumes</span><span class="p">:</span>
<span class="nt">borg-cache-vol-1</span><span class="p">:</span>
<span class="nt">borg-config-vol-1</span><span class="p">:</span>
<span class="nt">volumes</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="nt">borg-cache-vol-1</span><span class="p">:</span><span class="w"></span>
<span class="w"> </span><span class="nt">borg-config-vol-1</span><span class="p">:</span><span class="w"></span>
</code></pre></div>
<p>Ensure that you change the <code>BORG_PASSPHRASE</code> to a secure passphrase of your choosing.</p>
<p>For security reasons we mount the maildir as read-only. If you later want to restore data you will need to remove