nixos-servers/nix/modules/networking/dmz_services/zones/kun.is.nix

78 lines
1.4 KiB
Nix
Raw Normal View History

{ config, dns, ... }:
2024-01-07 19:24:12 +00:00
with dns.lib.combinators;
let
2024-01-31 20:58:23 +00:00
cfg = config.lab.networking;
in
2024-01-07 19:24:12 +00:00
{
CAA = letsEncrypt "caa@kun.is";
SOA = {
nameServer = "ns1";
adminEmail = "webmaster@kun.is";
2024-02-17 16:08:51 +00:00
serial = 2024021702;
2024-01-07 19:24:12 +00:00
};
NS = [
"ns1.kun.is."
"ns2.kun.is."
];
MX = [
(mx.mx 10 "mail.kun.is.")
];
subdomains = {
2024-01-14 16:59:32 +00:00
"*" = {
2024-01-31 20:58:23 +00:00
A = [ cfg.public.ipv4.router ];
AAAA = [ cfg.dmz.ipv6.dockerSwarm ];
2024-01-14 16:59:32 +00:00
};
2024-01-14 14:20:32 +00:00
ns = {
2024-01-31 20:58:23 +00:00
A = [ cfg.public.ipv4.router ];
AAAA = [ cfg.dmz.ipv6.services ];
2024-01-14 14:20:32 +00:00
};
ns1 = {
2024-01-31 20:58:23 +00:00
A = [ cfg.public.ipv4.router ];
AAAA = [ cfg.dmz.ipv6.services ];
2024-01-14 14:20:32 +00:00
};
ns2 = {
2024-01-31 20:58:23 +00:00
A = [ cfg.public.ipv4.router ];
AAAA = [ cfg.dmz.ipv6.services ];
2024-01-14 14:20:32 +00:00
};
2024-01-14 17:38:04 +00:00
# Override because we don't support IPv6 for Git SSH.
git = {
2024-01-31 20:58:23 +00:00
A = [ cfg.public.ipv4.router ];
2024-01-14 17:38:04 +00:00
AAAA = [ ];
2024-01-17 22:04:27 +00:00
};
# Override because we don't support IPv6 for KMS.
kms = {
2024-01-31 20:58:23 +00:00
A = [ cfg.public.ipv4.router ];
AAAA = [ ];
2024-01-14 17:38:04 +00:00
};
2024-01-20 18:01:46 +00:00
2024-01-31 20:58:23 +00:00
# Override because wg is on opnsense so ipv6 differs from "cfg.dmz.ipv6.services"
2024-01-20 18:01:46 +00:00
wg = {
2024-01-31 20:58:23 +00:00
A = [ cfg.public.ipv4.router ];
AAAA = [ cfg.dmz.ipv6.router ];
2024-01-20 18:01:46 +00:00
};
2024-02-17 16:08:51 +00:00
#for SMTP2GO to be able send emails from kun.is domain
em670271 = {
CNAME = ["return.smtp2go.net."];
};
"s670271._domainkey" = {
CNAME = ["dkim.smtp2go.net."];
};
link = {
CNAME = ["track.smtp2go.net."];
};
2024-01-07 19:24:12 +00:00
};
}