};
};
mailSend = {
- # DKIM
+ # DKIM 2048b
+ subdomains._domainkey.subdomains.eldiron2.TXT = [
+ (toKV config.myEnv.mail.dkim.eldiron2.public)
+ ];
+ # DKIM 1024b
subdomains._domainkey.subdomains.eldiron.TXT = [
(toKV config.myEnv.mail.dkim.eldiron.public)
];
# DMARC
# p needs to be the first tag
_dmarc.TXT = [ (toKV { _00__v = "DMARC1"; _01__p = if quarantine then "quarantine" else "none"; adkim = "s"; aspf = "s"; fo = "1"; rua = "mailto:postmaster+rua@immae.eu"; ruf = "mailto:postmaster+ruf@immae.eu"; }) ];
+
+ # Autoconfiguration for Outlook
+ autodiscover = ips servers.eldiron.ips.main;
+ # Autoconfiguration for Mozilla
+ autoconfig = ips servers.eldiron.ips.main;
};
# SPF
install -dm755 -o named /var/lib/named/dnssec_keys
'');
myServices.monitoring.fromMasterActivatedPlugins = [ "dns" ];
+ myServices.monitoring.fromMasterObjects.contactgroup.dns-raito = {
+ alias = "Secondary DNS Raito";
+ members = "immae";
+ };
myServices.monitoring.fromMasterObjects.service = lib.mkMerge (lib.mapAttrsToList (name: z:
lib.optional (builtins.elem "immae" z.ns) {
service_description = "eldiron dns is active and authoritative for ${name}";
host_name = config.hostEnv.fqdn;
use = "dns-service";
check_command = ["check_external_dns" "kurisu.dual.lahfa.xyz" name "-A"];
+ contact_groups = "dns-raito";
servicegroups = "webstatus-dns";
_webstatus_name = "${name} (Secondary DNS Raito)";
host_name = config.hostEnv.fqdn;
use = "dns-service";
check_command = ["check_dns_soa" "kurisu.dual.lahfa.xyz" name config.hostEnv.fqdn];
+ contact_groups = "dns-raito";
servicegroups = "webstatus-dns";
_webstatus_name = "${name} (Secondary DNS Raito up to date)";