configure mail logging

files/rsyslog.d/mail-sasl.conf

@@ -0,0 +1,4 @@
+# Managed by Ansible
+# Write SASLS log to file
+
+:msg, contains, "SASL" /var/log/mail-sasl.log

files/rsyslog.d/mail.conf

@@ -0,0 +1,4 @@
+# Managed by Ansible
+
+module(load="mmanon")
+mail.*      action(type="mmanon")

tasks/fail2ban.yml

@@ -1,12 +1,12 @@
 ---
-- name: "Fail2ban | Copy jaiil file"
+- name: "Fail2ban | Copy jail file"
   ansible.builtin.copy:
     src: files/fail2ban/postfix-sasl.conf
     dest: "{{ fail2ban_jail_dir }}/postfix-sasl.conf"
     mode: "0644"
   notify: reload fail2ban
 
-- name: "fail2ban | Copy SASL filter"
+- name: "Fail2ban | Copy SASL filter"
   ansible.builtin.copy:
     src: files/fail2ban/postfix-sasl.local
     dest: "{{ fail2ban_filter_dir }}/postfix-sasl.local"
@@ -14,9 +14,10 @@
   notify: reload fail2ban
 
 - name: "Fail2ban | Setup SASL logging"
-  ansible.builtin.lineinfile:
+  ansible.builtin.copy:
-    dest: /etc/rsyslog.d/postfix.conf
+    src: rsyslog.d/mail-sasl.conf
-    line: ':msg, contains, \"SASL\" /var/log/{{ mail_sasl_log }}'
+    dest: /etc/rsyslog.d/mail-sasl.conf
+    mode: "0644"
   notify: restart rsyslog
 
 - name: "Fail2ban | Setup logrotate"

tasks/main.yml

@@ -49,3 +49,8 @@
 - name: Monitoring
   ansible.builtin.import_tasks: monitoring.yml
   tags: monitoring
+
+- name: Logging
+  ansible.builtin.import_tasks: rsyslog.yml
+  tags: logging
+  when: postfix_type == "internet"

tasks/rsyslog.yml

@@ -0,0 +1,14 @@
+---
+- name: "Rsyslog | Disable logging of IP addresses"
+  ansible.builtin.copy:
+    src: rsyslog.d/mail.conf
+    dest: /etc/rsyslog.d/mail.conf
+    mode: "0644"
+  notify: restart rsyslog
+
+- name: "Rsyslog | Disable mail logging to syslog"
+  ansible.builtin.replace:
+    path: /etc/rsyslog.conf
+    regexp: "^\\*\\.\\*(?!.*(mail\\.none).*$).*"
+    replace: "*.*;auth,authpriv.none,mail.none    -/var/log/syslog"
+  notify: restart rsyslog