Merge pull request #28 from eqyiel/open-imaps-port

mail-server/networking.nix: open port 993
This commit is contained in:
Robin Raymond 2017-11-13 10:57:10 +01:00 committed by GitHub
commit 97b524cab9
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 24 additions and 7 deletions

View file

@ -184,7 +184,7 @@ in
default = true; default = true;
description = '' description = ''
Whether to enable imap / pop3. Both variants are only supported in the Whether to enable imap / pop3. Both variants are only supported in the
(sane) startTLS configuration. (TODO: Allow SSL ports). The ports are (sane) startTLS configuration. The ports are
110 - Pop3 110 - Pop3
143 - IMAP 143 - IMAP
@ -192,12 +192,21 @@ in
''; '';
}; };
enableImapSsl = mkOption {
type = types.bool;
default = false;
description = ''
Whether to enable IMAPS, setting this option to true will open port 993
in the firewall.
'';
};
enablePop3 = mkOption { enablePop3 = mkOption {
type = types.bool; type = types.bool;
default = false; default = false;
description = '' description = ''
Whether to enable POP3. Both variants are only supported in the Whether to enable POP3. Both variants are only supported in the (sane)
(sane) startTLS configuration. (TODO: Allow SSL ports). The ports are startTLS configuration. The ports are
110 - Pop3 110 - Pop3
143 - IMAP 143 - IMAP
@ -205,8 +214,14 @@ in
''; '';
}; };
# imapSsl = mkOption {} #< TODO enablePop3Ssl = mkOption {
# pop3Ssl = mkOption {} #< TODO type = types.bool;
default = false;
description = ''
Whether to enable POP3S, setting this option to true will open port 995
in the firewall.
'';
};
virusScanning = mkOption { virusScanning = mkOption {
type = types.bool; type = types.bool;

View file

@ -24,8 +24,10 @@ in
networking.firewall = { networking.firewall = {
allowedTCPPorts = [ 25 587 ] allowedTCPPorts = [ 25 587 ]
++ (if enableImap then [ 143 ] else []) ++ lib.optional enableImap 143
++ (if enablePop3 then [ 110 ] else []); ++ lib.optional enableImapSsl 993
++ lib.optional enablePop3 110
++ lib.optional enablePop3Ssl 995;
}; };
}; };
} }