Skynet/nixos
7
1
Fork 0
Code Issues 43 Pull requests 1 Projects Releases Packages Wiki Activity Actions

feat: setup the mail filter
All checks were successful
Build_Deploy / linter (push) Successful in 36s
Details
Build_Deploy / build (push) Successful in 1m1s
Details
Build_Deploy / deploy_dns (push) Successful in 1m32s
Details
Build_Deploy / deploy_active (active-core) (push) Successful in 2m59s
Details
Build_Deploy / deploy_active (active) (push) Successful in 3m28s
Details
Build_Deploy / deploy_active (active-ext) (push) Successful in 32s
Details

Browse source
This commit is contained in:
silver 2025-03-21 16:54:25 +00:00
parent bf10347dca
commit 70263f4b1f
Signed by: silver
GPG key ID: 36F93D61BAD3FD7D
4 changed files with 19 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
ITD/Firewall_Rules.csv
View file

@ -45,3 +45,4 @@ SKYNET_FIREWALL_00033,Add,i24-06-04_017,Complete,All,-,193.1.99.91,SKYNET00017,8
,Add,i24-07-15_112,Denied,193.1.99.75,-,-,-,22,-,Response from ITD - 'Our IT Security team have advised that port 22 and port 2222 are only to be allowed through the VPN and will not be opened to allow inbound ssh connections directly from the internet'
SKYNET_FIREWALL_00034,Add,i25-01-26_075,Complete,All,-,193.1.99.91,SKYNET00017,-,23318-23325,Ports for Minecraft Bedrock on the main games server.
SKYNET_FIREWALL_00035,Add,i25-02-14_114,Complete,193.1.99.75,SKYNET00008,193.1.96.165,SKYNET00012,22,-,Allow our forgejo runner to access and deploy to teh external server
SKYNET_FIREWALL_00036,Add,i25-03-11_125,Complete,All,-,193.1.99.86,SKYNET00027,25,-,Email Filter
1 Rule Action Ticket Status Source_IP Source_Server Destination_IP Destination_Server Port_TCP Port_UDP Notes
45
46
47
48

3
ITD/Server_Inventory.csv
View file

@ -24,4 +24,5 @@ SKYNET00022,ultron,Active,193.1.99.084,Proxmox,VM Host
SKYNET00023,optimus-test,Retired,193.1.99.085,Nixos,Testing flake for Pelecian
SKYNET00024,optimus,Active,193.1.99.090,Nixos,Games server manager (replaced SKYNET00016)
SKYNET00025,bumblebee,Active,193.1.99.091,Nixos,Game server - Minecraft (replaced SKYNET00017)
SKYNET00027,vision,Active,193.1.99.085,Raspbian,Proxmox Qurom server
SKYNET00026,vision,Active,193.1.99.085,Raspbian,Proxmox Qurom server
SKYNET00027,mimi,Active,193.1.99.086,Proxmox-Mail-Gateway,Proxmox Mail Gateway
1 Index Name Status IP_Address OS Description
24 SKYNET00023 optimus-test Retired 193.1.99.085 Nixos Testing flake for Pelecian
25 SKYNET00024 optimus Active 193.1.99.090 Nixos Games server manager (replaced SKYNET00016)
26 SKYNET00025 bumblebee Active 193.1.99.091 Nixos Game server - Minecraft (replaced SKYNET00017)
27 SKYNET00027 SKYNET00026 vision Active 193.1.99.085 Raspbian Proxmox Qurom server
28 SKYNET00027 mimi Active 193.1.99.086 Proxmox-Mail-Gateway Proxmox Mail Gateway

10
applications/email.nix
View file

@ -288,8 +288,16 @@ in {
# set up dns record for it
services.skynet.dns.records =
[
# core record
{
# This is the mail gateway, try to send all mail to it first
# Lower number = higher priority
record = "@";
r_type = "MX";
# the number is the priority in teh case of multiple mailservers
value = "5 mimi.${cfg.domain}.";
}
{
# this is the main email server
record = "@";
r_type = "MX";
# the number is the priority in teh case of multiple mailservers

6
config/dns.nix
View file

@ -32,6 +32,12 @@
value = "193.1.99.114";
server = true;
}
{
record = "mimi";
r_type = "A";
value = "193.1.99.86";
server = true;
}
]
# non skynet domains
++ [