Domain of the IPA server.

Domain to host Odoo with nginx

The name of your domain in Route53

The domain for which to enable srs

Proxy account domain/workgroup name.

The domain under which the api will be served.

Fully-qualified domain name (FQDN) for the Movim instance.

Domain to serve on.

When set, enables the feature of serving . on top of /nix/store/-

The domain under which searxng will be served

Set domain name (disables workgroup).

Skydns default domain if not specified by etcd config.

The system domain name

List of attribute sets containing configuration for each domain

HELO domain to use for outgoing mail.

Domain to fetch certificate for (defaults to the entry name).

Fake domain name to resolve to NixOps virtual machines

Domain name of the MUC

Domain to use

The domain keter will bind to

The domain under which zammad will be reachable.

Domain name of the docs instance.

Domain name of the meet instance.

The domain name under which to set up the virtual host.

Domain name for all advertisements.

Domain name of your server.

Domain or subdomain of which nameservers point to us

If non-null, enables an nginx reverse proxy virtual host at this FQDN, at the path configurated with services.slskd.web.url_base.

The domain name under which to set up the virtual host.

E-Mail-Domain for which mail client autoconfig/autoconfigure should be set up

Optional cookie domains to force cookies to (ie: .yourcompany.com)

Whether to announce the locally used domain name for browsing by other hosts.

Server name domain suffixes.

The domain under which the netbird server runs.

Domain under which paperless will be available.

The domain under which open-web-calendar is made available

Domain to use for nginx virtual host.

The domain under which the oauth2-proxy will be accesible and the path of cookies are set to

Domain name for a http_file_share service.

Domain name for the http-upload service

The domain that Kanidm manages

FQDN for the Kanboard instance.

FQDN for the Pixelfed instance.

The domain that Kanidm manages

Path to local domain socket which is used for communication with the daemon

Username, groupname, or wildcard this limit applies to

The domain name to collect stats for.

Domain to use for the virtual host

Domain to use for the virtual host

Subdomain which gets reverse proxied to Portunus webserver.

The domain name for the signal service.

The domain under which the coturn server runs.

Domain name under which the derper server is reachable.

Domain name

Domain to serve on.

Domain under which mediagoblin will be served.

The domain under which VaultWarden will be reachable.

Domain name to serve the requests off of.

Whether to enable the Firezone domain server.

The domain on which invidious-router should be served.

Domain to use for website

The FQDN Invidious is reachable on

The firezone-server-domain package to use.

The domain name under which to set up the virtual host.

The domain under which the dashboard runs.

HELO domain to use for outgoing mail.

If not null, this will add an entry to services.librespeed.servers and configure librespeed to use TLS.

Dedicated mail domain used for ephemeral SRS envelope addresses

Username, groupname, or wildcard this limit applies to

The public facing domain name used to access grafana from a browser

Domain part of the web interface URL (no web interface for this domain if null)

The domain under which the management API runs.

The domain to serve static pages on.

User name under which the domain exporter shall be run.

The domain under which the cast frontend will be served.

Group under which the domain exporter shall be run.

Domain under which ZeroTier records will be available.

Domain part of JID of the XMPP user, if it is different from hostName.

Whether to enable the prometheus domain exporter.

The domain serving your LibreTranslate instance

The domain(s) to update in DuckDNS (without the .duckdns.org suffix)

Extra commandline options to pass to the domain exporter.

The domain part of the JID for the recorder.

The domain the Bitwarden/Vaultwarden is accessible on.

A list of domains

The domain under which the api is served

The domain under which the photos frontend will be served.

The domain under which the albums frontend will be served.

Domain names for rewrite

Global domain name.

Domain name(s) to synchronize.

The 'domain' part for user IDs on this home server

The path to a file containing a newline-separated list of DuckDNS domain(s) to be updated (without the .duckdns.org suffix)

The domain part of the MUC to connect to for control.

E-mail addresses with these domains are disallowed from subscribing.

Configures the user domain, if enabled

Table of {hostname: server} pairs to use as authoritative servers for hosts (and subhosts)

Port to listen on.

The domain part of the JID for this Jibri instance.

Full URL to the homepage of this szurubooru site (with no trailing slash).

Posting domain.

Outgoing domain.

Posting domain.

Environment variables for this component of the Firezone server

The domain under which the accounts frontend will be served.

Address to listen on.

Open port in firewall for incoming connections.

Defines the base domain to create the hostnames for MagicDNS

Specify rules for nftables to add to the input chain when services.prometheus.exporters.domain.openFirewall is true.

The default XMPP server domain

Email domains handled by this instance

The fully qualified domain name (FQDN) of this host

List of domain names to update records for.

Specify a filter for iptables to use when services.prometheus.exporters.domain.openFirewall is true

List of domain names (FQDNs) to manage

Local domains set (see opendkim(8) for more information on datasets)

Authenticate emails with the specified domains

Redirect to correct domain if the host header does not match the domain

List of domains DKIMproxy can sign for.

URL path part of the web interface.

A list of domains to pass to the network config.

The return address that you want to appear on emails sent by the Nextcloud server, for example nc-admin@example.com, substituting your own domain, of course.

The robot.conf configuration file as key value set

Either the fully qualified domain name (FQDN), or just the host name if it does not exist

List of local domains, that do not require rewriting.

The address (including host and port) under which we can access the Ollama backend server. !Note that if the the UI service is running under a domain "https://ui.example.org", the Ollama backend service must allow "CORS" requests from this domain, e.g. by adding "services.ollama.environment

Whether to enable FreeIPA domain integration.

Amount of virtual CPU cores allocated to Domain 0 on boot

Change domain instead.

UNIX domain socket path to bind.

Database host address

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Amount of memory (in MiB) allocated to Domain 0 on boot

Whether to enable BIND domain name server.

Host which to proxy requests to if ACME challenge is not found

The hostname to use when configuring Postfix

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Bus ID of the Intel GPU

Allowed principal domains. if an authenticated user's domain is not in this list authentication request will be rejected.

Domain name for the website.

Bus ID of the NVIDIA GPU

Bus ID of the AMD APU

To avoid an additional DNS record and certificate, you may set this option to your primary domain (e.g. "example.com") or use a reverse proxy to handle the HTTP for that domain.

Deny (or allow) domain lists to use

The domain where the application will be hosted

Domain on which nginx will serve the bluemap webapp

domain/ip address to listen on

Set the mailing list domain

URL of the domain list

The selector to use for DKIM key identification

Domain names to watch

Domain names, IPv4 and/or IPv6 addresses to listen on for HKP requests.

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Access URL should be a external IP address or domain with DNS records pointing to Coder.

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Host which to proxy requests to if ACME challenge is not found

Domain part of the JID for XMPP user connection.

Domain part of the JID for XMPP user connection.

Main domain to be used in sympa.conf

Options defined here will override the defaults for xendomains

Whether to enable dnsdist domain name server.

Whether to enable Unbound domain name server.

Host which to proxy requests to if ACME challenge is not found

Whether to enable HTTPS for the domain.

Fully-qualified hostname used to identify this host in the IPA domain.

Whether to generate uuid from fqdn automatically

Whether to configure Privoxy to inspect HTTPS requests, meaning all encrypted traffic will be filtered as well

Host which to proxy requests to if ACME challenge is not found

Domain name of the XMMP server to which to connect as a component

With this option, you can customize an H2O virtual host which already has sensible defaults for Movim

Whether relay specified is just domain whose MX must be used.

Domain used for proxying ports.

Domain name of the XMMP server to which to connect as a component

Whether to enable the nixops-dns resolution of NixOps virtual machines via dnsmasq and fake domain name.

Whether the domain part of the email address should be removed when generating namespaces.

List of domains delivered via the relay transport.

https://www.postfix.org/postconf.5.html#relay_domains

The list of domain search paths that are considered for resolving hostnames with fewer dots than configured in the ndots option, which defaults to 1 if unset.

Host of the database

Primary MX domain to use

Whether to enable PowerDNS domain name server.

The domain name serving your Weblate instance.

Proxy account name, without the possibility to include domain name ('at' sign is interpreted literally).

Host which to proxy requests to if ACME challenge is not found

Domain of the host to serve davis under

With this option, you can customize an Nginx virtual host which already has sensible defaults for Movim

Domains the certificate represents

The domain serving your Dawarich instance.

The domain serving your CastoPod instance.

The domain serving your Mastodon instance.

Your base fully qualified domain name (without any subdomains).

The domain serving your PeerTube instance.

Whether to whitelist the FreeIPA domain in Chromium.

Host which to proxy requests to if ACME challenge is not found

Configure the domain name of this Warpgate instance

Root paths or URLs that public-inbox will be served on

The content of this attribute is appended to any host name that does not contain a period (except localhost), including defaulthost and idhost

Search domains to inject to Tailscale clients.

Whether to enable knot-resolver (version 5) domain name server

Whether to enable the mDNS NSS (Name Service Switch) plug-in for IPv4

Domain name of this Gemini server, enables checking hostname and port in requests. (multiple occurrences means basic vhosts)

A list of extra domain names, which are included in the one certificate to be issued.

At most one of domain_id and domain_name must be provided if using username with Identity V3

With this option, you can customize an H2O virtual host which already has sensible defaults for Dolibarr

The fully qualified domain name of this server, which is also used as the common name in the certificates.

The domain name of your instance

Host which to proxy requests to if ACME challenge is not found

If the conflict.rateLimitIsAggregate option is true, then after each tick one point of conflict-credit is given to just one domain: the one at the front of the queue

Public domain of the API address of the reverse proxy/tls terminator.

Trusted domains, from which the nextcloud installation will be accessible

The domain name of your instance (eg 'hatsu.local').

Instance hostname (base domain name)

The fully qualified domain name to bind to

With this option, you can customize an nginx virtual host which already has sensible defaults for Pixelfed

With this option, you can customize an NGINX virtual host which already has sensible defaults for Kanboard

Cryptpad configuration settings

The domain name of your instance (eg 'lemmy.ml').

Whether to enable knot-resolver (version 6) domain name server

Domain name of your server.

The domain serving your FileSender instance.

Define resource limits that should apply to users or groups

DNS full-qualified domain name of a database server

DNS full-qualified domain name of a database server

The domain name under which the server is reachable.

Backend server location specified as either a host:port pair or a unix domain docket.

Whether to add an entry to /etc/hosts for the configured nextcloud domain to point to localhost and add localhost to nextcloud's trusted_proxies config option

With this option, you can customize an nginx virtual host which already has sensible defaults for Dolibarr

Response status text for greylisted messages; use %%s for seconds left until greylisting is over and %%r for mail domain of recipient

Path to UNIX domain socket to listen on

Skydns list of nameservers to forward DNS requests to when not authoritative for a domain.

DNS full-qualified domain name of a database server

DNS full-qualified domain name of a database server

The domain name on which canaille will be served.

Domain name of your server.

Multi-domain protection currently requires multiple instances of Authelia

At most one of domain_id and domain_name must be provided if using username with Identity V3

Instance hostname (base domain name)

Whether PostgreSQL should listen on all network interfaces

Whether to enable Unix Domain Socket at /run/memcached/memcached.sock instead of listening on an IP address and port

The hostname served by the XMPP gateway

Whether to enable the mDNS NSS (Name Service Switch) plug-in for IPv6

Port to listen on

A list of valid fully-qualified domain names (FQDNs) and/or IP addresses that can be used to reach the NetBox service.

Whether to enable Xen debug tracing and logging for Domain 0.

Whether to configure nginx as a reverse proxy for Invidious

Frontend server interface binding specification as either a host:port pair or a unix domain docket

Whether to enable Include subdomains.

Whether to enable Xen debug features for Domain 0

Whether the managed DNS records should be proxied through Cloudflare ('orange cloud')

DNS full-qualified domain name of a database server

Whether to enable provisioning of the Firezone domain server.

Dns cluster domain

Domain used for peer resolution.

Use alternative domain.

Unix domain socket where to bind the PostgREST web server.

Use https:// for all links

The domain of the TURN server to use.

Domain for publicly shared links, including http(s)://.

DNS full-qualified domain name of a database server

A list of valid fully-qualified domain names (FQDNs) and/or IP addresses that can be used to reach the Froide-Govplan service.

Xen Command Line parameters passed to Domain 0 at boot time

The base XMPP domain.

File permissions on the UNIX domain socket.

Multiaddr or array of multiaddrs describing the address to serve the local HTTP API on

Domain name of the instance.

If you want to prevent node sharing from allowing users to access services across tailnets, declare your expected tailnets domain here.

Path to the UNIX domain-socket to communicate with postgres.

Partition the cache according to origin server or domain

Consult the upstream documentation for more details.

Environment file as defined in systemd.exec(5)

A list of valid fully-qualified domain names (FQDNs) and/or IP addresses that can be used to reach the peering manager service.

Xen Command Line parameters passed to Domain 0 at boot time.

If given an IP address, it can be a host name ("localhost"), an IPv4 dotted-quad ("127.0.0.1") or an IPv6 address enclosed in square brackets ("[::1]").

(VCL4.1 and higher) If given an absolute Path ("/path/to/listen.sock") or "@" followed by the name of an abstract socket ("@myvarnishd") accept connections on a Unix domain socket

The reverse proxy target that Anubis is protecting

Whether to enable TLS on the listener socket.

The domain serving your SimpleSAMLphp instance

Whether the HTTP server should listen on a UNIX domain socket ("unix") or on a TCP socket ("tcp").

Whether to enable the Xen Project Hypervisor, a virtualisation technology defined as a type-1 hypervisor, which allows multiple virtual machines, known as domains, to run concurrently on the physical machine

Network listen address

List of email domains to allow access to this vhost, or null to allow all.

Network listen address

Network listen address

The base URL of the API server

Unix domain socket that the mail notification daemon listens on.

The prefix to strip from the room's JID domain to derive the call URL.

Base path which uploads will be stored at

Unix domain socket path to bind this listener to.

List of ports that Synapse should listen on, their purpose and their configuration

The host/domain names that this site can serve.

The name of the machine

The address that Anubis listens to

Network listen address

Whether to use ACME certificates corresponding to the given domain for the server.

Whether to create database and user on the local machine if they do not exist

Path to the unbound control socket

Whether to apply bandwidth limits to devices in the same broadcast domain as the local device.

The domain name of the server, with optional explicit port

The domain name of the server, with optional explicit port

Whether to set up and configure an nginx virtual host according to upstream's recommendations

Whether to install the register_new_matrix_user script, that allows account creation on the terminal.

Maximum amount of memory (in MiB) that Domain 0 can dynamically allocate to itself

Base path for the media proxy

Country code (ISO/IEC 3166-1)

Enables single account mode

List of domain names intended for local delivery using /etc/passwd and /etc/aliases.

https://www.postfix.org/postconf.5.html#mydestination

The from: email address used when sending all essential system emails

Limits applied to domains whose writes cause other domains' transaction commits to fail

The address Anubis' metrics server listens to

Host/domain name or IP address of the IBM TSM server.

The address of this resource

Maximum outstanding requests, i.e. in-flight requests / domain.

File permissions on the UNIX domain socket.

Limits applied to domains whose writes cause other domains' transaction commits to fail

Whether to enable TLS on the listener socket.

Unix domain socket path to bind this listener to.

Set to true to enable HSTS includeSubDomains option

Domain name to request a TLS certificate for.

username is required if using Identity V2 API

username is required if using Identity V2 API

Specify a list of domains NOT to bypass

Specify a list of domains to bypass

List of servers that should be probed.

Note: if your mailserver has rspamd(8) configured, it can happen that emails from this exporter are marked as spam

Explicit list of domains to manage only for IPv4

Explicit list of domains to manage only for IPv6

A list of domains where the proxy is skipped.

Whether to enable realmd service for managing system enrollment in Active Directory domains.

Whether domains on this list should be explicitly allowed, or blocked

Define list of allowed domains.

Whether to enable ncdns, a Go daemon to bridge Namecoin to DNS

Attribute set of domains to collect stats for.

List of non-local DNS domains to be browsed.

Domains where PdfDing is allowed to run

List of domains we agree to relay to

Mail transfer agent (MTA) integration

If you are providing TLS certificates directly to the Coder server, you must use a single certificate for the root and wildcard domains.

Whether to directly resolve the RFC1918 reverse-mapping domains: 10.in-addr.arpa, 168.192.in-addr.arpa, 16-31.172.in-addr.arpa This saves load on the AS112 servers.

Even if you leave s2s_secure_auth disabled, you can still require valid certificates for some domains by specifying a list here.

A list of domains for which the proxy must not be used

Resolves domains of uwsgi targets at runtime and not only at start, you have to set services.nginx.resolver, too.

List of domains to whitelist.

Full (!) list of domains we deliver locally

Resolve .bit top-level domains using ncdns and namecoin.

Split DNS configuration (map of domains and which DNS server to use for each)

Resolves domains of proxyPass targets at runtime and not only at startup

Deny accepting URLs from these domains in the downloadFrom API field

Additional domains to serve invidious-router on.

Some servers have invalid or self-signed certificates

Tinyproxy supports filtering of web sites based on URLs or domains

List of search domains used to complete unqualified name lookups.

Domains to exclude from blocking.

Hooks that will be placed under /var/lib/libvirt/hooks/lxc.d/ and called for lxc domains begin/end events

Hooks that will be placed under /var/lib/libvirt/hooks/qemu.d/ and called for qemu domains begin/end/migrate events

Hooks that will be placed under /var/lib/libvirt/hooks/libxl.d/ and called for libxl-handled xen domains begin/end events

The SpamAssassin local.cf config

If you are using this configuration:

add_header all Status _YESNO_, score=_SCORE_ required=_REQD_ tests=_TESTS_ autolearn=_AUTOLEARN_ version=_VERSION_

Then you can Use this sieve filter:

require ["fileinto", "reject", "envelope"];

if header :contains "X-Spam-Flag" "YES" {
  fileinto "spam";
}

Or this procmail filter:

:0:
* ^X-Spam-Flag: YES
/var/vpopmail/domains/lastlog.de/js/.maildir/.spam/new

To filter your messages based on the additional mail headers added by spamassassin.

Certificates for additional domains.

Define a whitelist of allowed IP addresses or domains, with ports, to be used in data source URLs with the Grafana data source proxy

Lists of domains that the server will trust as identity servers to verify third party identifiers such as phone numbers and email addresses