nixos-servers/nix/modules/networking/dmz_services/zones/kun.is.nix

{ config, dns, ... }:
with dns.lib.combinators;
let
  cfg = config.lab.networking;
in
{
  CAA = letsEncrypt "caa@kun.is";

  SOA = {
    nameServer = "ns1";
    adminEmail = "webmaster@kun.is";
    serial = 2024021702;
  };

  NS = [
    "ns1.kun.is."
    "ns2.kun.is."
  ];

  MX = [
    (mx.mx 10 "mail.kun.is.")
  ];

  TXT = [
    (with spf; soft [ "include:spf.glasnet.nl" ])
  ];

  subdomains = rec {
    "*" = host cfg.public.ipv4.router cfg.dmz.ipv6.dockerSwarm;

    ns = host cfg.public.ipv4.router cfg.dmz.ipv6.services;
    ns1 = ns;
    ns2 = ns;

    # Override because we don't support IPv6 for Git SSH.
    git = {
      A = [ cfg.public.ipv4.router ];
      AAAA = [ ];
    };

    # Override because we don't support IPv6 for KMS.
    kms = {
      A = [ cfg.public.ipv4.router ];
      AAAA = [ ];
    };

    # Override because wg is on opnsense so ipv6 differs from "cfg.dmz.ipv6.services"
    wg = host cfg.public.ipv4.router cfg.dmz.ipv6.router;

    #for SMTP2GO to be able send emails from kun.is domain
    em670271 = {
      CNAME = [ "return.smtp2go.net." ];
    };

    "s670271._domainkey" = {
      CNAME = [ "dkim.smtp2go.net." ];
    };

    link = {
      CNAME = [ "track.smtp2go.net." ];
    };
  };
}
create global module for machine-independent custom configuration parameterize various IP addresses 2024-01-08 22:17:37 +00:00			`{ config, dns, ... }:`
use dns.nix voor zone file generation 2024-01-07 19:24:12 +00:00			`with dns.lib.combinators;`
create global module for machine-independent custom configuration parameterize various IP addresses 2024-01-08 22:17:37 +00:00			`let`
change networking config structuring 2024-01-31 20:58:23 +00:00			`cfg = config.lab.networking;`
create global module for machine-independent custom configuration parameterize various IP addresses 2024-01-08 22:17:37 +00:00			`in`
use dns.nix voor zone file generation 2024-01-07 19:24:12 +00:00			`{`
			`CAA = letsEncrypt "caa@kun.is";`

			`SOA = {`
			`nameServer = "ns1";`
			`adminEmail = "webmaster@kun.is";`
added cname records for smtp2go 2024-02-17 16:08:51 +00:00			`serial = 2024021702;`
use dns.nix voor zone file generation 2024-01-07 19:24:12 +00:00			`};`

			`NS = [`
			`"ns1.kun.is."`
			`"ns2.kun.is."`
			`];`

			`MX = [`
			`(mx.mx 10 "mail.kun.is.")`
			`];`

enable email alerting in gatus 2024-03-05 20:50:43 +00:00			`TXT = [`
			`(with spf; soft [ "include:spf.glasnet.nl" ])`
			`];`

expose cyberchef deployment on k3s publicly remove geokunis2.nl zone 2024-03-21 22:21:25 +00:00			`subdomains = rec {`
			`"*" = host cfg.public.ipv4.router cfg.dmz.ipv6.dockerSwarm;`
enable IPv6 support on DNS 2024-01-14 14:20:32 +00:00
expose cyberchef deployment on k3s publicly remove geokunis2.nl zone 2024-03-21 22:21:25 +00:00			`ns = host cfg.public.ipv4.router cfg.dmz.ipv6.services;`
			`ns1 = ns;`
			`ns2 = ns;`
don't use IPv6 for git ssh 2024-01-14 17:38:04 +00:00
			`# Override because we don't support IPv6 for Git SSH.`
			`git = {`
change networking config structuring 2024-01-31 20:58:23 +00:00			`A = [ cfg.public.ipv4.router ];`
don't use IPv6 for git ssh 2024-01-14 17:38:04 +00:00			`AAAA = [ ];`
fix ipv6 for wireguard 2024-01-17 22:04:27 +00:00			`};`

added kms.kun.is to dns config (without ipv6) 2024-01-17 18:13:46 +00:00			`# Override because we don't support IPv6 for KMS.`
			`kms = {`
change networking config structuring 2024-01-31 20:58:23 +00:00			`A = [ cfg.public.ipv4.router ];`
added kms.kun.is to dns config (without ipv6) 2024-01-17 18:13:46 +00:00			`AAAA = [ ];`
don't use IPv6 for git ssh 2024-01-14 17:38:04 +00:00			`};`
corrected ipv6 address for wg.kun.is 2024-01-20 18:01:46 +00:00
change networking config structuring 2024-01-31 20:58:23 +00:00			`# Override because wg is on opnsense so ipv6 differs from "cfg.dmz.ipv6.services"`
expose cyberchef deployment on k3s publicly remove geokunis2.nl zone 2024-03-21 22:21:25 +00:00			`wg = host cfg.public.ipv4.router cfg.dmz.ipv6.router;`
corrected ipv6 address for wg.kun.is 2024-01-20 18:01:46 +00:00
enable email alerting in gatus 2024-03-05 20:50:43 +00:00			`#for SMTP2GO to be able send emails from kun.is domain`
added cname records for smtp2go 2024-02-17 16:08:51 +00:00			`em670271 = {`
enable email alerting in gatus 2024-03-05 20:50:43 +00:00			`CNAME = [ "return.smtp2go.net." ];`
added cname records for smtp2go 2024-02-17 16:08:51 +00:00			`};`

			`"s670271._domainkey" = {`
enable email alerting in gatus 2024-03-05 20:50:43 +00:00			`CNAME = [ "dkim.smtp2go.net." ];`
added cname records for smtp2go 2024-02-17 16:08:51 +00:00			`};`

			`link = {`
enable email alerting in gatus 2024-03-05 20:50:43 +00:00			`CNAME = [ "track.smtp2go.net." ];`
added cname records for smtp2go 2024-02-17 16:08:51 +00:00			`};`
use dns.nix voor zone file generation 2024-01-07 19:24:12 +00:00			`};`
			`}`