commit 7934aa5c32f67d785f4350294dfa0ba6798cd8fe
Author: Wolfgang Hottgenroth <wolfgang.hottgenroth@icloud.com>
Date:   Wed Oct 22 23:05:49 2025 +0200

    initial

diff --git a/snippets/certificate-test.yml b/snippets/certificate-test.yml
new file mode 100644
index 0000000..b8ff620
--- /dev/null
+++ b/snippets/certificate-test.yml
@@ -0,0 +1,25 @@
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: wiki-mainscnt-eu
+  namespace: homea
+spec:
+  secretName: wiki-mainscnt-eu-cert
+  duration: 2160h
+  renewBefore: 360h
+  subject:
+    organizations:
+      - hottis-de
+  isCA: false
+  privateKey:
+    algorithm: RSA
+    encoding: PKCS1
+    size: 2048
+  usages:
+    - server auth
+  dnsNames:
+    - wiki.mainscnt.eu
+  issuerRef:
+    name: letsencrypt-staging-http
+    kind: ClusterIssuer
+    group: cert-manager.io
diff --git a/snippets/exim4.conf b/snippets/exim4.conf
new file mode 100644
index 0000000..f9a89d3
--- /dev/null
+++ b/snippets/exim4.conf
@@ -0,0 +1,45 @@
+domainlist forward_domains = mainscnt.eu
+
+tls_advertise_hosts = *
+
+
+acl_smtp_rcpt = acl_rcpt
+acl_smtp_data = acl_data
+
+begin acl
+
+acl_rcpt:
+  require verify = recipient
+
+  accept condition = ${if match_domain{$domain}{+forward_domains}{yes}{no}}
+
+  deny  message = Access denied
+
+acl_data:
+  accept
+
+
+begin routers
+
+forward_aliases:
+  driver  = redirect
+  domains = +forward_domains
+  data    = ${lookup{$local_part@$domain}lsearch{/etc/exim4/forwarder}}
+  no_expn
+  allow_defer
+  allow_fail
+
+dnslookup_out:
+  driver    = dnslookup
+  domains   = ! +forward_domains
+  transport = remote_smtp
+  no_more
+
+
+begin transports
+
+remote_smtp:
+  driver = smtp
+  hosts_require_tls = *
+
+
diff --git a/snippets/forwarder b/snippets/forwarder
new file mode 100644
index 0000000..280710d
--- /dev/null
+++ b/snippets/forwarder
@@ -0,0 +1 @@
+wn@mainscnt.eu: wolfgang.hottgenroth@icloud.com