From e5257122b1678444bf0fa638d4e9b3ad5ac084c7 Mon Sep 17 00:00:00 2001 From: Sebastien Bourdeauducq Date: Tue, 5 Sep 2023 22:04:27 +0800 Subject: [PATCH] nixbld: host 193thz.com --- nixbld-etc-nixos/configuration.nix | 29 ++++++++++++++++++++++++++++- nixbld-etc-nixos/named/193thz.com | 26 ++++++++++++++++++++++++++ 2 files changed, 54 insertions(+), 1 deletion(-) create mode 100644 nixbld-etc-nixos/named/193thz.com diff --git a/nixbld-etc-nixos/configuration.nix b/nixbld-etc-nixos/configuration.nix index 3a981f15..5ec63745 100644 --- a/nixbld-etc-nixos/configuration.nix +++ b/nixbld-etc-nixos/configuration.nix @@ -298,6 +298,23 @@ in "216.218.133.2" "2001:470:600::2" # slave.dns.he.net ]; }; + "193thz.com" = { + name = "193thz.com"; + master = true; + file = "/etc/nixos/named/193thz.com"; + extraConfig = + '' + dnssec-policy "default"; + inline-signing yes; + notify explicit; + also-notify { + 216.218.130.2; # ns1.he.net + }; + ''; + slaves = [ + "216.218.133.2" "2001:470:600::2" # slave.dns.he.net + ]; + }; "200-29.98.206.103.in-addr.arpa" = { name = "200-29.98.206.103.in-addr.arpa"; master = true; @@ -975,6 +992,16 @@ in locations."/socket.io/".proxyPass = "http://localhost:9825"; locations."/socket.io/".proxyWebsockets = true; }; + "193thz.com" = { + addSSL = true; + enableACME = true; + root = "/var/www/perso/sb"; + }; + "www.193thz.com" = { + addSSL = true; + enableACME = true; + root = "/var/www/perso/sb"; + }; "nmigen.net" = { addSSL = true; enableACME = true; @@ -1047,7 +1074,7 @@ in enable = true; localDnsResolver = false; # conflicts with dnsmasq fqdn = "mail.m-labs.hk"; - domains = [ "m-labs.hk" "m-labs.ph" ]; + domains = [ "m-labs.hk" "m-labs.ph" "193thz.com" ]; enablePop3 = true; enablePop3Ssl = true; certificateScheme = "acme-nginx"; diff --git a/nixbld-etc-nixos/named/193thz.com b/nixbld-etc-nixos/named/193thz.com new file mode 100644 index 00000000..16d970f8 --- /dev/null +++ b/nixbld-etc-nixos/named/193thz.com @@ -0,0 +1,26 @@ +$TTL 7200 + +@ SOA ns1.193thz.com. sb.m-labs.hk. ( + 2023090504 + 7200 + 3600 + 86400 + 600) + + + NS ns.193thz.com. + NS ns1.he.net. + + A 94.190.212.123 + AAAA 2001:470:18:390::2 + MX 10 mail.m-labs.hk. + TXT "v=spf1 mx a:router.alt.m-labs.hk -all" + TXT "google-site-verification=5eIjLyhM_siRg5Fc2Z3AMSbheH0JFOn5iR3TCEXakqU" + + +ns A 94.190.212.123 + +mail._domainkey TXT "v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC9T0cONxGXeyETE0bJ6NJVGT58fVFrfb+WxQhMskCN/mJhODyDTkRCjzE8ZnKhZGjkFZNG+PoSZlW+kpSS1LvMwzQpMRaH4zAzIexffR0l7rJR1MuQiVMsfGWpO2SLEuN74L2qH8SUBHZjrRpeSaFxwQm+prIOzZe5wTZStt/6qQIDAQAB" +_dmarc TXT "v=DMARC1; p=none" + +www CNAME @