nixos-config/hosts/falkenstein/modules/monitoring/dmarc.nix

{ config, ... }:
{
  age.secrets.dmarc = {
    file = ../../../../secrets/falkenstein/dmarc.age;
  };
  users.users.dmarc = {
    description = "DMARC Report recipient";
    isNormalUser = true;
  };
  networking.firewall.allowedTCPPorts = [ config.services.elasticsearch.tcp_port ];
  services.parsedmarc = {
    enable = true;
    provision = {
      grafana = {
        dashboard = false;
        datasource = false;
      };
      localMail.enable = false;
      elasticsearch = false;
      geoIp = false;
    };
    settings = {
      imap = {
        user = "dmarc@rfive.de";
        port = 993;
        host = "mail.rfive.de";
        password = {
          _secret = config.age.secrets.dmarc.path;
        };
      };
      opensearch.hosts = "localhost:9200";
    };
  };
  services.opensearch.enable = true;
}
parsedmarc: init 2024-05-31 23:01:59 +02:00			`{ config, ... }:`
falkenstein: remove postfix exporter 2024-05-31 22:33:39 +02:00			`{`
parsedmarc: init 2024-05-31 23:01:59 +02:00			`age.secrets.dmarc = {`
			`file = ../../../../secrets/falkenstein/dmarc.age;`
			`};`
falkenstein: remove postfix exporter 2024-05-31 22:33:39 +02:00			`users.users.dmarc = {`
			`description = "DMARC Report recipient";`
			`isNormalUser = true;`
			`};`
parsedmarc: init 2024-05-31 23:01:59 +02:00			`networking.firewall.allowedTCPPorts = [ config.services.elasticsearch.tcp_port ];`
			`services.parsedmarc = {`
			`enable = true;`
			`provision = {`
			`grafana = {`
			`dashboard = false;`
			`datasource = false;`
			`};`
			`localMail.enable = false;`
			`elasticsearch = false;`
			`geoIp = false;`
			`};`
			`settings = {`
			`imap = {`
			`user = "dmarc@rfive.de";`
			`port = 993;`
			`host = "mail.rfive.de";`
			`password = {`
			`_secret = config.age.secrets.dmarc.path;`
			`};`
			`};`
			`opensearch.hosts = "localhost:9200";`
			`};`
			`};`
			`services.opensearch.enable = true;`
falkenstein: remove postfix exporter 2024-05-31 22:33:39 +02:00			`}`