nixos-config/hosts/falkenstein/modules/monitoring/dmarc.nix

37 lines
826 B
Nix
Raw Normal View History

2024-09-10 13:12:09 +02:00
{ config, ... }:
2024-05-31 22:33:39 +02:00
{
2024-06-06 20:50:33 +02:00
# required for elasticsearch
nixpkgs.config.allowUnfree = true;
2024-05-31 23:01:59 +02:00
age.secrets.dmarc = {
file = ../../../../secrets/falkenstein/dmarc.age;
};
2024-05-31 22:33:39 +02:00
users.users.dmarc = {
description = "DMARC Report recipient";
isNormalUser = true;
};
2024-06-06 20:50:33 +02:00
networking.firewall.allowedTCPPorts = [ 9200 ];
services.elasticsearch.listenAddress = "0.0.0.0";
2024-05-31 23:01:59 +02:00
services.parsedmarc = {
enable = true;
provision = {
grafana = {
dashboard = false;
datasource = false;
};
localMail.enable = false;
2024-06-06 20:50:33 +02:00
elasticsearch = true;
2024-05-31 23:01:59 +02:00
geoIp = false;
};
settings = {
imap = {
user = "dmarc@rfive.de";
port = 993;
host = "mail.rfive.de";
password = {
_secret = config.age.secrets.dmarc.path;
};
};
};
};
2024-05-31 22:33:39 +02:00
}