diff --git a/hosts/lkk-nix-1/default.nix b/hosts/lkk-nix-1/default.nix
index a5cfdfa..c30f519 100644
--- a/hosts/lkk-nix-1/default.nix
+++ b/hosts/lkk-nix-1/default.nix
@@ -57,6 +57,10 @@
         file = ../../secrets/wg-easy-environmentFile.age;
         mode = "770";
       };
+      briefkasten-env = {
+        file = ../../secrets/briefkasten-env.age;
+        mode = "770";
+      };
     };
     identityPaths = [ "/home/m3tam3re/.ssh/lkk-nix-1" ];
   };
diff --git a/hosts/lkk-nix-1/services/containers/briefkasten.nix b/hosts/lkk-nix-1/services/containers/briefkasten.nix
new file mode 100644
index 0000000..28b8ce0
--- /dev/null
+++ b/hosts/lkk-nix-1/services/containers/briefkasten.nix
@@ -0,0 +1,8 @@
+{ config, outputs, ... }: {
+  virtualisation.oci-containers.containers."briefkasten" = {
+    image = "docker.io/ndom91/briefkasten";
+    environmentFiles = [ config.age.secrets.briefkasten-env.path ];    
+    ports = [ "3009:3000" ];
+    extraOptions = [ "--add-host=postgres:10.88.0.1" ];
+  };
+}
diff --git a/hosts/lkk-nix-1/services/containers/default.nix b/hosts/lkk-nix-1/services/containers/default.nix
index aade6c9..028b182 100644
--- a/hosts/lkk-nix-1/services/containers/default.nix
+++ b/hosts/lkk-nix-1/services/containers/default.nix
@@ -1,6 +1,7 @@
 {
   imports = [
     ./baserow.nix
+    ./briefkasten.nix
     ./matomo.nix
     ./nextcloud.nix
     ./wordpress.nix
diff --git a/hosts/lkk-nix-1/services/traefik.nix b/hosts/lkk-nix-1/services/traefik.nix
index 2fc815d..7a46b4e 100644
--- a/hosts/lkk-nix-1/services/traefik.nix
+++ b/hosts/lkk-nix-1/services/traefik.nix
@@ -44,13 +44,19 @@
           baserow.loadBalancer.servers = [{ url = "http://localhost:3001/"; }];
           gitea.loadBalancer.servers = [{ url = "http://localhost:3000/"; }];
           n8n.loadBalancer.servers = [{ url = "http://localhost:5678/"; }];
-          lanakk_blog.loadBalancer.servers = [{ url = "http://localhost:3002/"; }];
+          lanakk_blog.loadBalancer.servers =
+            [{ url = "http://localhost:3002/"; }];
           matomo.loadBalancer.servers = [{ url = "http://localhost:3003/"; }];
           searx.loadBalancer.servers = [{ url = "http://localhost:3004/"; }];
-          nextcloud.loadBalancer.servers = [{ url = "http://localhost:3005/"; }];
-          invidious.loadBalancer.servers = [{ url = "http://localhost:3006/"; }];
-          wireguard.loadBalancer.servers = [{ url = "http://localhost:3007/"; }];
+          nextcloud.loadBalancer.servers =
+            [{ url = "http://localhost:3005/"; }];
+          invidious.loadBalancer.servers =
+            [{ url = "http://localhost:3006/"; }];
+          wireguard.loadBalancer.servers =
+            [{ url = "http://localhost:3007/"; }];
           adguard.loadBalancer.servers = [{ url = "http://localhost:3008/"; }];
+          briefkasten.loadBalancer.servers =
+            [{ url = "http://localhost:3009/"; }];
         };
         routers = {
           api = {
@@ -150,6 +156,15 @@
             middlewares = "auth";
             entrypoints = "websecure";
           };
+          briefkasten = {
+            rule = "Host(`bm.lanakk.com`)";
+            tls = {
+              certResolver = "godaddy";
+              domains = "bm.lanakk.com";
+            };
+            service = "briefkasten";
+            entrypoints = "websecure";
+          };
         };
       };
     };
diff --git a/secrets.nix b/secrets.nix
index b06af93..3f2a359 100644
--- a/secrets.nix
+++ b/secrets.nix
@@ -12,4 +12,6 @@ in {
   "searx-environmentFile.age".publicKeys = [ root ];
 
   "wg-easy-environmentFile.age".publicKeys = [ root ];
+  
+  "briefkasten-env.age".publicKeys = [ root ];
 }
diff --git a/secrets/briefkasten-env.age b/secrets/briefkasten-env.age
new file mode 100644
index 0000000..d434672
Binary files /dev/null and b/secrets/briefkasten-env.age differ