genebean/dots
1
0
Fork 0
mirror of https://github.com/genebean/dots.git synced 2026-05-31 07:45:20 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

Compare commits

base: genebean:3f32f2585a5791cdc29e1a07a01e1e3323acd57b
Branches Tags
genebean:main
genebean:cups-update
genebean:genebean-module
genebean:hm-puppet
genebean:remote_builds
genebean:fix-htts-redirects
genebean:commit-signing
genebean:create-host-smarthome
genebean:owntracks
..
compare: genebean:f317a10095265cd9365697d3759f7208d9a03ff0
Branches Tags
genebean:cups-update
genebean:main
genebean:genebean-module
genebean:hm-puppet
genebean:remote_builds
genebean:fix-htts-redirects
genebean:commit-signing
genebean:create-host-smarthome
genebean:owntracks

2 commits
3f32f2585a ... f317a10095

Author SHA1 Message Date
Gene Liverman
f317a10095
Merge pull request #650 from genebean/nixnuc-postfix-relay 2026-05-27 22:24:20 -04:00
Gene Liverman
7ab7ddce83
nixnuc: plain postfix relay to hetznix01 via Tailscale 
A minimal Postfix instance on nixnuc accepts local mail submissions from
services and relays everything to hetznix01.atlas-snares.ts.net on port 25
via the Tailscale tunnel. Root and gene aliases forward to @technicalissues.us.
The simple-nixos-mailserver module (postfix + dovecot stack) is removed since
nixnuc does not receive external mail. The nginx server alias for
mail.home.technicalissues.us is dropped. The private-flake input is pinned to
the nixnuc-postfix-relay branch to pick up the matching relay trust change on
hetznix01.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-05-27 22:18:27 -04:00
3 changed files with 3 additions and 24 deletions
Download patch file Download diff file Expand all files Collapse all files

6
flake.lock generated
View file

@ -740,11 +740,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1777743346, "lastModified": 1779934676,
"narHash": "sha256-gJ0aOSvmr1g06oSKGNDlIvfex7BVVxyP3txQ9gg2fdQ=", "narHash": "sha256-wp/K//HuAPN0TureyV342zjoee+vSq64+guX35X7DMU=",
"owner": "genebean", "owner": "genebean",
"repo": "private-flake", "repo": "private-flake",
"rev": "8a0c1d3cf8a4eee614ac8c665dce70794de5f973", "rev": "7ad20ffceb1b6e48af13b2207241441a2cafa97e",
"type": "github" "type": "github"
}, },
"original": { "original": {

1
flake.nix
View file

@ -180,7 +180,6 @@
additionalModules = [ additionalModules = [
inputs.cup-collector.nixosModules.default inputs.cup-collector.nixosModules.default
inputs.private-flake.nixosModules.private.nixnuc inputs.private-flake.nixosModules.private.nixnuc
inputs.simple-nixos-mailserver.nixosModule
]; ];
}; };
# This machines is currently running Ubuntu and # This machines is currently running Ubuntu and

20
modules/hosts/nixos/nixnuc/default.nix
View file

@ -68,25 +68,6 @@ in
]; ];
}; };
mailserver = {
enable = true;
enableImap = false;
enableImapSsl = false;
fqdn = "mail.${home_domain}";
domains = [
home_domain
];
forwards = {
"${username}@localhost" = "${username}@technicalissues.us";
"root@localhost" = "root@technicalissues.us";
"root@${config.networking.hostName}" = "root@technicalissues.us";
};
stateVersion = 3;
# Use Let's Encrypt certificates from Nginx
certificateScheme = "acme";
};
networking = { networking = {
# Open ports in the firewall. # Open ports in the firewall.
firewall = { firewall = {
@ -326,7 +307,6 @@ in
"${home_domain}" = { "${home_domain}" = {
default = true; default = true;
serverAliases = [ serverAliases = [
"mail.${home_domain}"
"nix-tester.${home_domain}" "nix-tester.${home_domain}"
]; ];
listen = [ listen = [