~mdw / zones / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
distorted.lisp: Merge together some of the role address definitions.
[zones] / distorted.lisp
CommitLineData
e80b4c2d
MW		 1;;; Zone file for distorted.org.uk
2
3(load "hosts" :verbose nil)
4
b1d5c6c2
MW		 5;;;--------------------------------------------------------------------------
6;;; Network allocations
7;;; (RFC1918 addresses are allocated from Cambridge G-RIN.)
8
e80b4c2d 9(defnet distorted.org.uk 172.29.198.0/23
fc0ce2ed
MW		 10 (untrusted 256
11 (wireless 128)
12 (iodine 16))
e80b4c2d
MW		 13 (trusted 256
14 (fretwank 128
15 (unsafe 32)
16 (dhcp 32)
17 (safe 32))
b1d5c6c2
MW		 18 (virtual 32)
19 (its 4)))
20
21;;;--------------------------------------------------------------------------
22;;; Host allocations
e80b4c2d 23
b1d5c6c2 24;; External addresses.
4acd4890 25(defhost guvnor.demon 80.177.3.76)
2bc217e8 26
b1d5c6c2 27;; Unsafe network.
2bc217e8
MW		 28(defhost guvnor (unsafe 1))
29(defhost metalzone (unsafe 2))
8ef3dea5 30;;(defhost evolution.fretwank (unsafe 3))
2bc217e8
MW		 31(defhost vampire (unsafe 4))
32
b1d5c6c2 33;; Safe network.
2bc217e8
MW		 34(defhost tubescreamer (safe 1))
35(defhost obsidian (safe 2))
36
b1d5c6c2 37;; Wireless network.
e07781f9
MW		 38(defhost vampire.untrusted (untrusted 1))
39(defhost evolution (untrusted 2))
2bc217e8 40
b1d5c6c2 41;; Virtual private network.
8ca446b5 42(defhost crybaby (virtual 1))
9afe85bf 43(defhost terror (virtual 2))
b1d5c6c2 44
fc0ce2ed
MW		 45;; Iodine network.
46(defhost vampire.iodine (iodine 1))
47
b1d5c6c2
MW		 48;; Special network for ITS.
49;; It doesn't understand point-to-point links, so we need a little net.
50(defhost gw (its 1))
51(defhost mz (its 2))
52
53;;;--------------------------------------------------------------------------
54;;; Other definitions.
e80b4c2d
MW		 55
56(setf *default-zone-admin* "hostmaster@distorted.org.uk")
2bc217e8
MW		 57
58(preferred-subnet-case
59 (fretwank
e07781f9 60 (setf *default-zone-source* 'vampire.distorted.org.uk.)
995d75b4
MW		 61 (defhost www-frontend metalzone)
62 (defhost dns-frontend vampire))
2bc217e8
MW		 63 (t
64 (setf *default-zone-source* 'guvnor.distorted.org.uk.)
995d75b4
MW		 65 (defhost www-frontend guvnor.demon)
66 (defhost dns-frontend guvnor.demon)))
e80b4c2d 67
b1d5c6c2
MW		 68;;;--------------------------------------------------------------------------
69;;; Main zone definition.
70
e80b4c2d
MW		 71(defzone distorted.org.uk
72 ;;
6ef39f28 73 ;; Nameservers.
cddf1fa1
MW		 74 :ns #+subnet/fretwank ((metalzone.ns :ip metalzone)
75 (vampire.ns :ip vampire))
76 #-subnet/fretwank ((boyle.ns :ip boyle.nsict.org)
77 (chiark.ns :ip chiark.greenend.org.uk)
78 (guvnor.ns :ip guvnor.demon))
e80b4c2d 79 ;;
6ef39f28 80 ;; Mail servers.
96c2a692
MW		 81 ((@ mail lists bugs cryptomail)
82 :mx mail
83 :srv ((:smtp mail)))
84 ;;
6ef39f28 85 ;; Other services.
96c2a692
MW		 86 :srv ((:http www)
87 (:ftp ftp))
e80b4c2d 88 ;;
6ef39f28 89 ;; Colocated services.
a060fed3 90 ;;((www ftp git) (inet :svc boyle.nsict.org) (fretwank :svc metalzone))
e80b4c2d 91 ;;
6ef39f28 92 ;; Entry is via little port-forwarding box.
a060fed3 93 (guvnor (inet :a guvnor.demon) (fretwank :a guvnor))
985aff77 94 ;;
6ef39f28 95 ;; Wireless gateway.
8ca446b5 96 (untrusted :net untrusted)
8ef3dea5 97 (evolution (untrusted :a evolution))
e80b4c2d 98 ;;
6ef39f28 99 ;; Local services.
a060fed3 100 (@ :svc www-frontend)
fc0ce2ed 101 ((www ftp wiki git bugs mail)
a060fed3
MW		 102 (inet :svc guvnor.demon)
103 (fretwank :svc metalzone))
49c5959a 104 ((db tor i2p rawk vox www-cache)
0ac996f4
MW		 105 (inet :svc guvnor.demon)
106 (fretwank :svc vampire))
a060fed3 107 ;;
6ef39f28 108 ;; Internal services.
ca779f0a 109 ((ntp1) (fretwank :svc metalzone))
49c5959a 110 ((wpad ntp news) (fretwank :svc vampire))
e80b4c2d 111 ;;
6ef39f28 112 ;; Wired ethernet.
b1d5c6c2 113 (fretwank :net fretwank)
fc0ce2ed
MW		 114 (metalzone (inet :a guvnor.demon)
115 (fretwank :a metalzone))
116 (vampire (fretwank :a vampire)
117 (untrusted :a vampire.untrusted)
118 (iodine :a vampire.iodine))
4acd4890 119 (obsidian (fretwank :a obsidian))
b1d5c6c2 120 ;;
6ef39f28 121 ;; Virtual network.
b1d5c6c2 122 (virtual :net virtual)
8ca446b5 123 (crybaby (virtual :a crybaby))
9afe85bf 124 (terror (virtual :a terror))
fc0ce2ed 125 (iodine :net iodine)
e80b4c2d 126 ;;
6ef39f28 127 ;; ITS.
b1d5c6c2
MW		 128 (its :net its)
129 (gw (its :a gw))
130 (mz (its :a mz))
b3f75214 131 ;;
6ef39f28 132 ;; Delegations.
fc0ce2ed 133 #+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
995d75b4 134 (io :ns ((ns.io :ip dns-frontend))))
b1d5c6c2
MW		 135
136;;;--------------------------------------------------------------------------
137;;; Other subsidiary zones.
e80b4c2d
MW		 138
139(defrevzone trusted
2bc217e8 140 :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
b3f75214
MW		 141 :reverse trusted
142 #+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
143 #+subnet/fretwank (@ :cidr-delegation
144 (dhcp
145 (dhcp 199.29.172.dhcp.199.29.172.in-addr.arpa))))
146
e80b4c2d 147(defrevzone untrusted
2bc217e8 148 :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
8ca446b5 149 :reverse untrusted)
b3f75214
MW		 150
151(defzone dhcp.distorted.org.uk
340f4f62 152 :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
b3f75214
MW		 153 :net dhcp)
154
995d75b4
MW		 155(defzone io.distorted.org.uk
156 :ns ((ns :ip dns-frontend))
157 (about :txt "Fake zone used for IP-over-DNS tunnelling."))
158
b3f75214 159(defzone dhcp.199.29.172.in-addr.arpa
340f4f62 160 :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire)))
5094e793 161
b1d5c6c2 162;;;----- That's all, folks --------------------------------------------------
Zone files for the DNS zones I administer