Configuration

Hedwig supports TOML (default) and HUML configuration formats. The default configuration file is config.toml, but you can specify a different path using the -c flag:

hedwig -c /path/to/custom-config.toml

Log configuration (`[log]`)

[log]
level = "info"          # Log levels: trace, debug, info, warn, error
format = "fmt"          # Format: "fmt" for human-readable, "json" for JSON

Server configuration (`[server]`)

[server]
workers = 4                    # Number of worker threads (default: 1)
max_retries = 5               # Maximum retry attempts for failed emails (default: 5)
disable_outbound = false      # Disable outbound email delivery for testing
outbound_local = false        # Use local/insecure connections for outbound delivery
helo_hostname = "mail.example.com" # Public FQDN advertised in outbound HELO/EHLO

Set helo_hostname in production to the public hostname for the sending IP. Many receivers expect the outbound EHLO name to be a public FQDN with matching reverse DNS. If omitted, Hedwig keeps lettre’s default behavior, which uses the machine hostname.

Outbound SMTP pool (`[server.smtp]`)

[server.smtp]
cache_size = 100  # Number of destination SMTP transports to cache (default: 100)
min_idle = 2      # Minimum idle connections per destination SMTP pool (default: 2)
max_size = 10     # Maximum connections per destination SMTP pool (default: 10)

For new or low-volume senders, keep min_idle and max_size small so strict receivers do not see unnecessary parallel connections. The legacy server.pool_size setting is still accepted as a fallback for server.smtp.cache_size.

Listeners (`[[server.listeners]]`)

[[server.listeners]]
addr = "0.0.0.0:25"           # Bind address and port
# Optional TLS configuration
[server.listeners.tls]
cert_path = "/path/to/cert.pem"
key_path = "/path/to/key.pem"

[[server.listeners]]
addr = "127.0.0.1:2525"       # Second listener without TLS

Authentication (`[[server.auth]]`)

[[server.auth]]
username = "user1"
password = "password1"

[[server.auth]]
username = "user2"
password = "password2"

For advanced sections, see DKIM, MTA-STS, Rate limiting, Logging, Metrics, Health checks, Storage, and Domain filtering.

For a full HUML example, see HUML configuration example.

Configuration

Log configuration ([log])

Server configuration ([server])

Outbound SMTP pool ([server.smtp])

Listeners ([[server.listeners]])

Authentication ([[server.auth]])

Log configuration (`[log]`)

Server configuration (`[server]`)

Outbound SMTP pool (`[server.smtp]`)

Listeners (`[[server.listeners]]`)

Authentication (`[[server.auth]]`)