B4L/cnx-network-clan
5
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
106 Commits 1 Branch 0 Tags
1dd3aadb97a9191ad7e7ab91785ecc572d0c8e66
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Berwn 1dd3aadb97 Add mail.cnx.email client alias as a cert SAN 
A mail.cnx.email CNAME (-> mx1.cnx.email) lets clients (Thunderbird etc.)
use a friendly hostname for submission/IMAP. To avoid a TLS name
mismatch the cert now carries mail.cnx.email as a SAN, so the acme_mx1
key is authorized to write _acme-challenge.mail too. The MX still points
at mx1.cnx.email and --reuse-key keeps the DANE TLSA digest valid across
the re-issue.
2026-06-18 15:01:03 +07:00
docs
Format drifted files to satisfy the treefmt flake-check gate
2026-06-18 14:49:48 +07:00
machines
Add mail.cnx.email client alias as a cert SAN
2026-06-18 15:01:03 +07:00
modules
Add mail.cnx.email client alias as a cert SAN
2026-06-18 15:01:03 +07:00
sops
Add machine mx1 to secrets
2026-06-18 11:33:03 +07:00
vars
Add ns1 to secret vars/shared/dns-acme-mx1-secret/secret
2026-06-18 14:11:40 +07:00
.envrc
Initial commit
2026-06-14 12:11:16 +07:00
.gitignore
Initial commit
2026-06-14 12:11:16 +07:00
clan.nix
Onboard mx1 mail host and factor out per-host public IPs
2026-06-18 11:53:14 +07:00
flake.lock
Add declarative SNM mail stack on mx1 with DNS-01, DANE, MTA-STS
2026-06-18 14:47:20 +07:00
flake.nix
Add declarative SNM mail stack on mx1 with DNS-01, DANE, MTA-STS
2026-06-18 14:47:20 +07:00
fmt.nix
Add declarative SNM mail stack on mx1 with DNS-01, DANE, MTA-STS
2026-06-18 14:47:20 +07:00
inventory.json
update(inventory.json): Installed mx1
2026-06-18 11:35:22 +07:00
TODO.md
Add VictoriaLogs for centralized journald across all hosts
2026-06-17 16:53:52 +07:00
S
Description
No description provided
550 KiB
Languages
Nix 100%