public
/
mail-server
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Port-forward imap, smtp, submission

This commit is contained in:
niten 2023-09-26 23:11:04 -07:00
parent 6328946703
commit d8976486dc
1 changed files with 46 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

43
mail-server.nix
View File

@ -176,7 +176,8 @@ in {
};
config = mkIf cfg.enable {
services.nginx = {
services = {
nginx = {
virtualHosts = {
"${cfg.smtp.hostname}".locations."/metrics" = {
proxyPass = "http://localhost:${toString metricsPort}/metrics";
@ -187,6 +188,42 @@ in {
};
};
xinetd = {
enable = true;
services = let
genService = { name, port, protocols ? [ "tcp" ] }:
map (protocol: {
inherit name;
service = "/usr/bin/env";
extraConfig = "redirect = 127.0.0.1 ${toString port}";
}) protocols;
in concatMap genService [
{
name = "imap";
port = 9143;
}
{
name = "imaps";
port = 9993;
}
{
name = "smtp";
port = 9025;
protocols = [ "tcp" "udp" ];
}
{
name = "submission";
port = 9587;
protocols = [ "tcp" "udp" ];
}
{
name = "submissions";
port = 9465;
}
];
};
};
fudo.secrets.host-secrets."${hostname}" = {
mailLdapProxyEnv = {
source-file = pkgs.writeText "ldap-proxy.env" ''
@ -246,7 +283,7 @@ in {
"${hostSecrets.dovecotLdapConfig.target-file}:/run/dovecot2/conf.d/ldap.conf:ro"
"${cfg.smtp.ssl-directory}:/run/certs/smtp"
];
ports = [ "25:25" "587:587" "465:465" "2525:2525" ];
ports = [ "9025:25" "9587:587" "9465:465" ];
depends_on = [ "imap" "ldap-proxy" ];
};
nixos = {
@ -301,7 +338,7 @@ in {
imap = {
service = {
networks = [ "internal_network" ];
ports = [ "143:143" "993:993" ];
ports = [ "9143:143" "9993:993" ];
volumes = [
"${cfg.state-directory}/dovecot:/state"
"${hostSecrets.dovecotLdapConfig.target-file}:/run/dovecot2/conf.d/ldap.conf:ro"