nixnuc: plain postfix relay to hetznix01 via Tailscale

A minimal Postfix instance on nixnuc accepts local mail submissions from services and relays everything to hetznix01.atlas-snares.ts.net on port 25 via the Tailscale tunnel. Root and gene aliases forward to @technicalissues.us. The simple-nixos-mailserver module (postfix + dovecot stack) is removed since nixnuc does not receive external mail. The nginx server alias for mail.home.technicalissues.us is dropped. The private-flake input is pinned to the nixnuc-postfix-relay branch to pick up the matching relay trust change on hetznix01. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-30 23:35:22 -04:00 · 2026-05-27 21:43:17 -04:00 · 2026-05-27 21:43:17 -04:00 · 7ab7ddce83
commit 7ab7ddce83
parent 3f32f2585a
3 changed files with 3 additions and 24 deletions
--- a/modules/hosts/nixos/nixnuc/default.nix
+++ b/modules/hosts/nixos/nixnuc/default.nix
@ -68,25 +68,6 @@ in
    ];
  };

-  mailserver = {
-    enable = true;
-    enableImap = false;
-    enableImapSsl = false;
-    fqdn = "mail.${home_domain}";
-    domains = [
-      home_domain
-    ];
-    forwards = {
-      "${username}@localhost" = "${username}@technicalissues.us";
-      "root@localhost" = "root@technicalissues.us";
-      "root@${config.networking.hostName}" = "root@technicalissues.us";
-    };
-    stateVersion = 3;
-
-    # Use Let's Encrypt certificates from Nginx
-    certificateScheme = "acme";
-  };
-
  networking = {
    # Open ports in the firewall.
    firewall = {
@ -326,7 +307,6 @@ in
        "${home_domain}" = {
          default = true;
          serverAliases = [
-            "mail.${home_domain}"
            "nix-tester.${home_domain}"
          ];
          listen = [