pki example.com key "/etc/letsencrypt/live/example.com/privkey.pem"
pki example.com certificate "/etc/letsencrypt/live/example.com/fullchain.pem"
listen on lo mask-source
listen on 1.2.3.4 port 25 tls pki example.com auth-optional hostname example.com
listen on 1.2.3.4 port 465 smtps pki example.com auth hostname example.com mask-source
listen on 1.2.3.4 port 587 tls-require pki example.com auth hostname example.com mask-source
table aliases file:/etc/mail/aliases
table domains file:/etc/mail/domains
table virtuals file:/etc/mail/virtuals
table authinfo file:/etc/mail/authinfo
accept from any for domain <domains> virtual <virtuals> deliver to mda "/usr/bin/rspamc --mime --exec \"/usr/lib/dovecot/deliver -d %{dest:lowercase|strip} -f %{sender} -a %{rcpt}\""
accept from local for local alias <aliases> deliver to mda "/usr/bin/rspamc --mime --exec \"/usr/lib/dovecot/deliver -d %{dest:lowercase|strip} -f %{sender} -a %{rcpt}\""
accept from local for any relay via "tls+auth://sparkpost@smtp.sparkpostmail.com:587" auth <authinfo> verify