diff --git a/dmz/searxng/templates/confligmap.yaml b/dmz/searxng/templates/confligmap.yaml
new file mode 100644
index 0000000..edc1ca6
--- /dev/null
+++ b/dmz/searxng/templates/confligmap.yaml
@@ -0,0 +1,11 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: searxng-config
+data:
+  settings.yml: |-
+    use_default_settings: true
+    search:
+      formats:
+        - html
+        - json
diff --git a/dmz/searxng/templates/deployment.yaml b/dmz/searxng/templates/deployment.yaml
index 3ab2d47..e1677ed 100644
--- a/dmz/searxng/templates/deployment.yaml
+++ b/dmz/searxng/templates/deployment.yaml
@@ -21,4 +21,20 @@ spec:
           imagePullPolicy: Always
           ports:
             - name: http
-              containerPort: 8080
\ No newline at end of file
+              containerPort: 8080
+          env:
+            - name: SEARXNG_BASE_URL
+              value: https://searxng.durp.info
+            - name: SEARXNG_SECRET
+              valueFrom:
+                secretKeyRef:
+                  name: searxng-secret
+                  key: SEARXNG_SECRET
+          volumeMounts:
+            - name: searxng-config-volume
+              mountPath: /etc/searxng/settings.yml
+              subPath: settings.yml
+      volumes:
+        - name: searxng-config-volume
+          configMap:
+            name: searxng-config
diff --git a/dmz/searxng/templates/secret.yaml b/dmz/searxng/templates/secret.yaml
new file mode 100644
index 0000000..6d4781b
--- /dev/null
+++ b/dmz/searxng/templates/secret.yaml
@@ -0,0 +1,23 @@
+apiVersion: external-secrets.io/v1
+kind: ExternalSecret
+metadata:
+  name: searxng-secret
+spec:
+  secretStoreRef:
+    name: vault
+    kind: ClusterSecretStore
+  target:
+    name: searxng-secret
+  data:
+    - secretKey: SEARXNG_SECRET
+      remoteRef:
+        key: kv/searxng
+        property: searxng-secret
+
+---
+
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: vault
+