summaryrefslogtreecommitdiffstats
path: root/lass/2configs/mail
diff options
context:
space:
mode:
authortv <tv@krebsco.de>2023-07-25 20:39:35 +0200
committertv <tv@krebsco.de>2023-07-25 20:39:35 +0200
commit5d1b0675cf179f863a5b34b67661a953197b6057 (patch)
treedd9c83dff894fd97cee61dd1b2df3eaeecbbd740 /lass/2configs/mail
parenta2c9ad05b2e8237b915a100e1e38ca0f3d18526c (diff)
parent8eab63eaa81717391269a61355cb7fb64341fd1a (diff)
Merge remote-tracking branch 'orange/master'
Diffstat (limited to 'lass/2configs/mail')
-rw-r--r--lass/2configs/mail/internet-gateway.nix48
1 files changed, 48 insertions, 0 deletions
diff --git a/lass/2configs/mail/internet-gateway.nix b/lass/2configs/mail/internet-gateway.nix
new file mode 100644
index 000000000..134e408a4
--- /dev/null
+++ b/lass/2configs/mail/internet-gateway.nix
@@ -0,0 +1,48 @@
+{ config, lib, pkgs, ... }:
+{
+ security.acme.certs."mail.lassul.us" = {
+ group = "lasscert";
+ webroot = "/var/lib/acme/acme-challenge";
+ };
+ users.groups.lasscert.members = [
+ "exim"
+ "nginx"
+ ];
+
+ krebs.exim-smarthost = {
+ enable = true;
+ primary_hostname = "lassul.us";
+ dkim = [
+ { domain = "lassul.us"; }
+ ];
+ ssl_cert = "/var/lib/acme/mail.lassul.us/fullchain.pem";
+ ssl_key = "/var/lib/acme/mail.lassul.us/key.pem";
+ local_domains = [
+ "localhost"
+ "lassul.us"
+ "ubikmedia.eu"
+ "ubikmedia.de"
+ "apanowicz.de"
+ "alewis.de"
+ "jarugadesign.de"
+ "beesmooth.ch"
+ "event-extra.de"
+ "jla-trading.com"
+ ];
+ extraRouters = ''
+ forward_lassul_us:
+ driver = manualroute
+ domains = lassul.us
+ transport = remote_smtp
+ route_list = * orange.r
+ no_more
+
+ forward_ubik:
+ driver = manualroute
+ domains = ubikmedia.eu:ubikmedia.de:apanowicz.de:alewis.de:jarugadesign.de:beesmooth.ch:event-extra.de:jla-trading.com
+ transport = remote_smtp
+ route_list = * ubik.r
+ no_more
+ '';
+ };
+}