[zones] / distorted.lisp

;;; Zone file for distorted.org.uk

(load "hosts.lisp" :verbose nil)

;;;--------------------------------------------------------------------------
;;; Network allocations
;;; (RFC1918 addresses are allocated from Cambridge G-RIN.)

(defnet distorted.org.uk 172.29.198.0/23
  (untrusted 256
    (wireless 128)
    (iodine 16))
  (trusted 256
    (fretwank 128
      (unsafe 32)
      (dhcp 32)
      (safe 32))
    (virtual 32)
    (its 4)))

;;;--------------------------------------------------------------------------
;;; Host allocations

;; External addresses.
(defhost guvnor.demon 80.177.3.76)

;; Unsafe network.
(defhost guvnor (unsafe 1))
(defhost metalzone (unsafe 2))
(defhost radius (unsafe 3))
(defhost vampire (unsafe 4))
(defhost roadstar (unsafe 5))
(defhost jem (unsafe 6))
(defhost artist (unsafe 7))
(defhost ibanez (unsafe 14))

;; Safe network.
(defhost tubescreamer (safe 1))
(defhost obsidian (safe 2))

;; Wireless network.
(defhost vampire.untrusted (untrusted 1))
(defhost evolution (untrusted 2))
(defhost radius.untrusted (untrusted 3))

;; Virtual private network.
(defhost crybaby (virtual 1))
(defhost terror (virtual 2))

;; Iodine network.
(defhost vampire.iodine (iodine 1))

;; Special network for ITS.
;; It doesn't understand point-to-point links, so we need a little net.
(defhost gw (its 1))
(defhost mz (its 2))

;;;--------------------------------------------------------------------------
;;; Other definitions.

(setf *default-zone-admin* "hostmaster@distorted.org.uk")

(preferred-subnet-case
  (fretwank
   (setf *default-zone-source* 'vampire.distorted.org.uk.)
   (defhost www-frontend metalzone)
   (defhost dns-frontend vampire))
  (t
   (setf *default-zone-source* 'guvnor.distorted.org.uk.)
   (defhost www-frontend guvnor.demon)
   (defhost dns-frontend guvnor.demon)))

;;;--------------------------------------------------------------------------
;;; Main zone definition.

(defzone distorted.org.uk
  ;;
  ;; Nameservers.
  :ns #+subnet/fretwank ((metalzone.ns :ip metalzone)
			 (vampire.ns :ip vampire))
      #-subnet/fretwank ((boyle.ns :ip boyle.nsict.org)
			 (chiark.ns :ip chiark.greenend.org.uk)
			 (guvnor.ns :ip guvnor.demon))
  ;;
  ;; Mail servers.
  ((@ mail lists bugs cryptomail)
   :mx mail
   :srv ((:smtp mail)))
  ;;
  ;; Other services.
  :srv ((:http www)
	(:ftp ftp))
  ;;
  ;; Colocated services.
  ;;((www ftp git) (inet :svc boyle.nsict.org) (fretwank :svc metalzone))
  ;;
  ;; Entry is via little port-forwarding box.
  (guvnor (inet :a guvnor.demon) (fretwank :a guvnor))
  ;;
  ;; Wireless gateway.
  (untrusted :net untrusted)
  (evolution (untrusted :a evolution))
  ;;
  ;; Local services.
  (@ :svc www-frontend)
  ((www ftp wiki git bugs mail db tor i2p rawk vox www-cache)
   (inet :svc guvnor.demon)
   (fretwank :svc vampire))
  ;;
  ;; Internal services.
  ((ntp) (fretwank :svc ibanez))
  ((wpad ntp1 news) (fretwank :svc vampire))
  ;;
  ;; Wired ethernet.
  (fretwank :net fretwank)
  (metalzone (inet :a guvnor.demon)
	     (fretwank :a metalzone))
  (vampire (fretwank :a vampire)
	   (inet :a guvnor.demon)
	   (untrusted :a vampire.untrusted)
	   (iodine :a vampire.iodine))
  (obsidian (fretwank :a obsidian))
  (ibanez (fretwank :a ibanez))
  (radius (fretwank :a radius)
	  (untrusted :a radius.untrusted))
  (roadstar (fretwank :a roadstar))
  (jem (fretwank :a jem))
  (artist (fretwank :a artist))
  (gibson :cname gibson.dhcp)
  (lespaul :cname lespaul.dhcp)
  (firebird :cname firebird.dhcp)
  ;;
  ;; Virtual network.
  (virtual :net virtual)
  (crybaby (virtual :a crybaby))
  (terror (virtual :a terror))
  (iodine :net iodine)
  ;;
  ;; ITS.
  (its :net its)
  (gw (its :a gw))
  (mz (its :a mz))
  ;;
  ;; Delegations.
  #+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
  (io :ns ((ns.io :ip dns-frontend))))

;;;--------------------------------------------------------------------------
;;; Other subsidiary zones.

(defrevzone trusted
  :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
  :reverse trusted
  #+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
  #+subnet/fretwank (@ :cidr-delegation
		       (dhcp
			(dhcp 199.29.172.dhcp.199.29.172.in-addr.arpa))))

(defrevzone untrusted
  :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
  :reverse untrusted)

(defzone dhcp.distorted.org.uk
  :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
  :net dhcp)

(defzone io.distorted.org.uk
  :ns ((ns :ip dns-frontend))
  (about :txt "Fake zone used for IP-over-DNS tunnelling."))

(defzone dhcp.199.29.172.in-addr.arpa
  :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire)))

;;;----- That's all, folks --------------------------------------------------
Commit	Line	Data
e80b4c2d MW	1	;;; Zone file for distorted.org.uk
e80b4c2d MW	2
b4d4c18b	3	(load "hosts.lisp" :verbose nil)
e80b4c2d	4
b1d5c6c2 MW	5	;;;--------------------------------------------------------------------------
	6	;;; Network allocations
	7	;;; (RFC1918 addresses are allocated from Cambridge G-RIN.)
	8
e80b4c2d	9	(defnet distorted.org.uk 172.29.198.0/23
fc0ce2ed MW	10	(untrusted 256
	11	(wireless 128)
	12	(iodine 16))
e80b4c2d MW	13	(trusted 256
	14	(fretwank 128
	15	(unsafe 32)
	16	(dhcp 32)
	17	(safe 32))
b1d5c6c2 MW	18	(virtual 32)
	19	(its 4)))
	20
	21	;;;--------------------------------------------------------------------------
	22	;;; Host allocations
e80b4c2d	23
b1d5c6c2	24	;; External addresses.
4acd4890	25	(defhost guvnor.demon 80.177.3.76)
2bc217e8	26
b1d5c6c2	27	;; Unsafe network.
2bc217e8 MW	28	(defhost guvnor (unsafe 1))
2bc217e8 MW	29	(defhost metalzone (unsafe 2))
4b5e05ad	30	(defhost radius (unsafe 3))
2bc217e8	31	(defhost vampire (unsafe 4))
4b5e05ad MW	32	(defhost roadstar (unsafe 5))
	33	(defhost jem (unsafe 6))
	34	(defhost artist (unsafe 7))
2667dd1c	35	(defhost ibanez (unsafe 14))
2bc217e8	36
b1d5c6c2	37	;; Safe network.
2bc217e8 MW	38	(defhost tubescreamer (safe 1))
	39	(defhost obsidian (safe 2))
	40
b1d5c6c2	41	;; Wireless network.
e07781f9 MW	42	(defhost vampire.untrusted (untrusted 1))
e07781f9 MW	43	(defhost evolution (untrusted 2))
938f6c79	44	(defhost radius.untrusted (untrusted 3))
2bc217e8	45
b1d5c6c2	46	;; Virtual private network.
8ca446b5	47	(defhost crybaby (virtual 1))
9afe85bf	48	(defhost terror (virtual 2))
b1d5c6c2	49
fc0ce2ed MW	50	;; Iodine network.
	51	(defhost vampire.iodine (iodine 1))
	52
b1d5c6c2 MW	53	;; Special network for ITS.
	54	;; It doesn't understand point-to-point links, so we need a little net.
	55	(defhost gw (its 1))
	56	(defhost mz (its 2))
	57
	58	;;;--------------------------------------------------------------------------
	59	;;; Other definitions.
e80b4c2d MW	60
e80b4c2d MW	61	(setf default-zone-admin "hostmaster@distorted.org.uk")
2bc217e8 MW	62
	63	(preferred-subnet-case
	64	(fretwank
e07781f9	65	(setf default-zone-source 'vampire.distorted.org.uk.)
995d75b4 MW	66	(defhost www-frontend metalzone)
995d75b4 MW	67	(defhost dns-frontend vampire))
2bc217e8 MW	68	(t
2bc217e8 MW	69	(setf default-zone-source 'guvnor.distorted.org.uk.)
995d75b4 MW	70	(defhost www-frontend guvnor.demon)
995d75b4 MW	71	(defhost dns-frontend guvnor.demon)))
e80b4c2d	72
b1d5c6c2 MW	73	;;;--------------------------------------------------------------------------
	74	;;; Main zone definition.
	75
e80b4c2d MW	76	(defzone distorted.org.uk
e80b4c2d MW	77	;;
6ef39f28	78	;; Nameservers.
cddf1fa1 MW	79	:ns #+subnet/fretwank ((metalzone.ns :ip metalzone)
	80	(vampire.ns :ip vampire))
	81	#-subnet/fretwank ((boyle.ns :ip boyle.nsict.org)
	82	(chiark.ns :ip chiark.greenend.org.uk)
	83	(guvnor.ns :ip guvnor.demon))
e80b4c2d	84	;;
6ef39f28	85	;; Mail servers.
96c2a692 MW	86	((@ mail lists bugs cryptomail)
	87	:mx mail
	88	:srv ((:smtp mail)))
	89	;;
6ef39f28	90	;; Other services.
96c2a692 MW	91	:srv ((:http www)
96c2a692 MW	92	(:ftp ftp))
e80b4c2d	93	;;
6ef39f28	94	;; Colocated services.
a060fed3	95	;;((www ftp git) (inet :svc boyle.nsict.org) (fretwank :svc metalzone))
e80b4c2d	96	;;
6ef39f28	97	;; Entry is via little port-forwarding box.
a060fed3	98	(guvnor (inet :a guvnor.demon) (fretwank :a guvnor))
985aff77	99	;;
6ef39f28	100	;; Wireless gateway.
8ca446b5	101	(untrusted :net untrusted)
8ef3dea5	102	(evolution (untrusted :a evolution))
e80b4c2d	103	;;
6ef39f28	104	;; Local services.
a060fed3	105	(@ :svc www-frontend)
95eac836	106	((www ftp wiki git bugs mail db tor i2p rawk vox www-cache)
0ac996f4 MW	107	(inet :svc guvnor.demon)
0ac996f4 MW	108	(fretwank :svc vampire))
a060fed3	109	;;
6ef39f28	110	;; Internal services.
95eac836 MW	111	((ntp) (fretwank :svc ibanez))
95eac836 MW	112	((wpad ntp1 news) (fretwank :svc vampire))
e80b4c2d	113	;;
6ef39f28	114	;; Wired ethernet.
b1d5c6c2	115	(fretwank :net fretwank)
fc0ce2ed MW	116	(metalzone (inet :a guvnor.demon)
	117	(fretwank :a metalzone))
	118	(vampire (fretwank :a vampire)
7e0deea4	119	(inet :a guvnor.demon)
fc0ce2ed MW	120	(untrusted :a vampire.untrusted)
fc0ce2ed MW	121	(iodine :a vampire.iodine))
4acd4890	122	(obsidian (fretwank :a obsidian))
4b5e05ad	123	(ibanez (fretwank :a ibanez))
938f6c79 MW	124	(radius (fretwank :a radius)
938f6c79 MW	125	(untrusted :a radius.untrusted))
4b5e05ad MW	126	(roadstar (fretwank :a roadstar))
	127	(jem (fretwank :a jem))
	128	(artist (fretwank :a artist))
	129	(gibson :cname gibson.dhcp)
	130	(lespaul :cname lespaul.dhcp)
	131	(firebird :cname firebird.dhcp)
b1d5c6c2	132	;;
6ef39f28	133	;; Virtual network.
b1d5c6c2	134	(virtual :net virtual)
8ca446b5	135	(crybaby (virtual :a crybaby))
9afe85bf	136	(terror (virtual :a terror))
fc0ce2ed	137	(iodine :net iodine)
e80b4c2d	138	;;
6ef39f28	139	;; ITS.
b1d5c6c2 MW	140	(its :net its)
	141	(gw (its :a gw))
	142	(mz (its :a mz))
b3f75214	143	;;
6ef39f28	144	;; Delegations.
fc0ce2ed	145	#+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
995d75b4	146	(io :ns ((ns.io :ip dns-frontend))))
b1d5c6c2 MW	147
	148	;;;--------------------------------------------------------------------------
	149	;;; Other subsidiary zones.
e80b4c2d MW	150
e80b4c2d MW	151	(defrevzone trusted
2bc217e8	152	:ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
b3f75214 MW	153	:reverse trusted
	154	#+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
	155	#+subnet/fretwank (@ :cidr-delegation
	156	(dhcp
	157	(dhcp 199.29.172.dhcp.199.29.172.in-addr.arpa))))
	158
e80b4c2d	159	(defrevzone untrusted
2bc217e8	160	:ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
8ca446b5	161	:reverse untrusted)
b3f75214 MW	162
b3f75214 MW	163	(defzone dhcp.distorted.org.uk
340f4f62	164	:ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
b3f75214 MW	165	:net dhcp)
b3f75214 MW	166
995d75b4 MW	167	(defzone io.distorted.org.uk
	168	:ns ((ns :ip dns-frontend))
	169	(about :txt "Fake zone used for IP-over-DNS tunnelling."))
	170
b3f75214	171	(defzone dhcp.199.29.172.in-addr.arpa
340f4f62	172	:ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire)))
5094e793	173
b1d5c6c2	174	;;;----- That's all, folks --------------------------------------------------