[zones] / distorted.lisp

;;; Zone file for distorted.org.uk

(load "hosts" :verbose nil)

;;;--------------------------------------------------------------------------
;;; Network allocations
;;; (RFC1918 addresses are allocated from Cambridge G-RIN.)

(defnet distorted.org.uk 172.29.198.0/23
  (untrusted 256
    (wireless 128)
    (iodine 16))
  (trusted 256
    (fretwank 128
      (unsafe 32)
      (dhcp 32)
      (safe 32))
    (virtual 32)
    (its 4)))

;;;--------------------------------------------------------------------------
;;; Host allocations

;; External addresses.
(defhost guvnor.demon 80.177.3.76)

;; Unsafe network.
(defhost guvnor (unsafe 1))
(defhost metalzone (unsafe 2))
;;(defhost evolution.fretwank (unsafe 3))
(defhost vampire (unsafe 4))

;; Safe network.
(defhost tubescreamer (safe 1))
(defhost obsidian (safe 2))

;; Wireless network.
(defhost vampire.untrusted (untrusted 1))
(defhost evolution (untrusted 2))

;; Virtual private network.
(defhost crybaby (virtual 1))

;; Iodine network.
(defhost vampire.iodine (iodine 1))

;; Special network for ITS.
;; It doesn't understand point-to-point links, so we need a little net.
(defhost gw (its 1))
(defhost mz (its 2))

;;;--------------------------------------------------------------------------
;;; Other definitions.

(setf *default-zone-admin* "hostmaster@distorted.org.uk")

(preferred-subnet-case
  (fretwank
   (setf *default-zone-source* 'vampire.distorted.org.uk.)
   (defhost www-frontend metalzone))
  (t
   (setf *default-zone-source* 'guvnor.distorted.org.uk.)
   (defhost www-frontend guvnor.demon)))

;;;--------------------------------------------------------------------------
;;; Main zone definition.

(defzone distorted.org.uk
  ;;
  ;; Nameservers
  :ns #+subnet/fretwank ((metalzone.ns :ip metalzone)
			 (vampire.ns :ip vampire))
      #-subnet/fretwank ((boyle.ns :ip boyle.nsict.org)
			 (chiark.ns :ip chiark.greenend.org.uk)
			 (guvnor.ns :ip guvnor.demon))
  ;;
  ;; Mail servers
  ((@ mail lists bugs cryptomail)
   :mx mail
   :srv ((:smtp mail)))
  ;;
  ;; Other services
  :srv ((:http www)
	(:ftp ftp))
  ;;
  ;; Colocated services
  ;;((www ftp git) (inet :svc boyle.nsict.org) (fretwank :svc metalzone))
  ;;
  ;; Entry is via little port-forwarding box
  (guvnor (inet :a guvnor.demon) (fretwank :a guvnor))
  ;;
  ;; Wireless gateway
  (untrusted :net untrusted)
  (evolution (untrusted :a evolution))
  ;;
  ;; Local services
  (@ :svc www-frontend)
  ((www ftp wiki git bugs mail)
   (inet :svc guvnor.demon)
   (fretwank :svc metalzone))
  ((db tor rawk)
   (inet :svc guvnor.demon)
   (fretwank :svc vampire))
  (vox (inet :svc guvnor.demon) (fretwank :svc vampire))
  ;;
  ;; Internal services
  ((ntp1) (fretwank :svc metalzone))
  ((www-cache wpad ntp news) (fretwank :svc vampire))
  ;;
  ;; Wired ethernet
  (fretwank :net fretwank)
  (metalzone (inet :a guvnor.demon)
	     (fretwank :a metalzone))
  (vampire (fretwank :a vampire)
	   (untrusted :a vampire.untrusted)
	   (iodine :a vampire.iodine))
  (obsidian (fretwank :a obsidian))
  ;;
  ;; Virtual network
  (virtual :net virtual)
  (crybaby (virtual :a crybaby))
  (iodine :net iodine)
  ;;
  ;; ITS
  (its :net its)
  (gw (its :a gw))
  (mz (its :a mz))
  ;;
  ;; Delegations
  #+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
  (io :ns #-subnet/fretwank (metalzone.ns.distorted.org.uk.)
	  #+subnet/fretwank (metalzone.ns.distorted.org.uk.
			     vampire.ns.distorted.org.uk.)))

;;;--------------------------------------------------------------------------
;;; Other subsidiary zones.

(defrevzone trusted
  :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
  :reverse trusted
  #+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
  #+subnet/fretwank (@ :cidr-delegation
		       (dhcp
			(dhcp 199.29.172.dhcp.199.29.172.in-addr.arpa))))

(defrevzone untrusted
  :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
  :reverse untrusted)

(defzone dhcp.distorted.org.uk
  :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
  :net dhcp)

(defzone dhcp.199.29.172.in-addr.arpa
  :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire)))

;;;----- That's all, folks --------------------------------------------------
Commit	Line	Data
e80b4c2d MW	1	;;; Zone file for distorted.org.uk
	2
	3	(load "hosts" :verbose nil)
	4
b1d5c6c2 MW	5	;;;--------------------------------------------------------------------------
	6	;;; Network allocations
	7	;;; (RFC1918 addresses are allocated from Cambridge G-RIN.)
	8
e80b4c2d	9	(defnet distorted.org.uk 172.29.198.0/23
fc0ce2ed MW	10	(untrusted 256
	11	(wireless 128)
	12	(iodine 16))
e80b4c2d MW	13	(trusted 256
	14	(fretwank 128
	15	(unsafe 32)
	16	(dhcp 32)
	17	(safe 32))
b1d5c6c2 MW	18	(virtual 32)
	19	(its 4)))
	20
	21	;;;--------------------------------------------------------------------------
	22	;;; Host allocations
e80b4c2d	23
b1d5c6c2	24	;; External addresses.
4acd4890	25	(defhost guvnor.demon 80.177.3.76)
2bc217e8	26
b1d5c6c2	27	;; Unsafe network.
2bc217e8 MW	28	(defhost guvnor (unsafe 1))
2bc217e8 MW	29	(defhost metalzone (unsafe 2))
8ef3dea5	30	;;(defhost evolution.fretwank (unsafe 3))
2bc217e8 MW	31	(defhost vampire (unsafe 4))
2bc217e8 MW	32
b1d5c6c2	33	;; Safe network.
2bc217e8 MW	34	(defhost tubescreamer (safe 1))
	35	(defhost obsidian (safe 2))
	36
b1d5c6c2	37	;; Wireless network.
e07781f9 MW	38	(defhost vampire.untrusted (untrusted 1))
e07781f9 MW	39	(defhost evolution (untrusted 2))
2bc217e8	40
b1d5c6c2	41	;; Virtual private network.
8ca446b5	42	(defhost crybaby (virtual 1))
b1d5c6c2	43
fc0ce2ed MW	44	;; Iodine network.
	45	(defhost vampire.iodine (iodine 1))
	46
b1d5c6c2 MW	47	;; Special network for ITS.
	48	;; It doesn't understand point-to-point links, so we need a little net.
	49	(defhost gw (its 1))
	50	(defhost mz (its 2))
	51
	52	;;;--------------------------------------------------------------------------
	53	;;; Other definitions.
e80b4c2d MW	54
e80b4c2d MW	55	(setf default-zone-admin "hostmaster@distorted.org.uk")
2bc217e8 MW	56
	57	(preferred-subnet-case
	58	(fretwank
e07781f9	59	(setf default-zone-source 'vampire.distorted.org.uk.)
2bc217e8 MW	60	(defhost www-frontend metalzone))
	61	(t
	62	(setf default-zone-source 'guvnor.distorted.org.uk.)
	63	(defhost www-frontend guvnor.demon)))
e80b4c2d	64
b1d5c6c2 MW	65	;;;--------------------------------------------------------------------------
	66	;;; Main zone definition.
	67
e80b4c2d MW	68	(defzone distorted.org.uk
	69	;;
	70	;; Nameservers
cddf1fa1 MW	71	:ns #+subnet/fretwank ((metalzone.ns :ip metalzone)
	72	(vampire.ns :ip vampire))
	73	#-subnet/fretwank ((boyle.ns :ip boyle.nsict.org)
	74	(chiark.ns :ip chiark.greenend.org.uk)
	75	(guvnor.ns :ip guvnor.demon))
e80b4c2d MW	76	;;
e80b4c2d MW	77	;; Mail servers
96c2a692 MW	78	((@ mail lists bugs cryptomail)
	79	:mx mail
	80	:srv ((:smtp mail)))
	81	;;
	82	;; Other services
	83	:srv ((:http www)
	84	(:ftp ftp))
e80b4c2d MW	85	;;
e80b4c2d MW	86	;; Colocated services
a060fed3	87	;;((www ftp git) (inet :svc boyle.nsict.org) (fretwank :svc metalzone))
e80b4c2d MW	88	;;
e80b4c2d MW	89	;; Entry is via little port-forwarding box
a060fed3	90	(guvnor (inet :a guvnor.demon) (fretwank :a guvnor))
985aff77 MW	91	;;
985aff77 MW	92	;; Wireless gateway
8ca446b5	93	(untrusted :net untrusted)
8ef3dea5	94	(evolution (untrusted :a evolution))
e80b4c2d MW	95	;;
e80b4c2d MW	96	;; Local services
a060fed3	97	(@ :svc www-frontend)
fc0ce2ed	98	((www ftp wiki git bugs mail)
a060fed3 MW	99	(inet :svc guvnor.demon)
a060fed3 MW	100	(fretwank :svc metalzone))
fc0ce2ed	101	((db tor rawk)
0ac996f4 MW	102	(inet :svc guvnor.demon)
0ac996f4 MW	103	(fretwank :svc vampire))
8722942b	104	(vox (inet :svc guvnor.demon) (fretwank :svc vampire))
a060fed3 MW	105	;;
a060fed3 MW	106	;; Internal services
ca779f0a MW	107	((ntp1) (fretwank :svc metalzone))
ca779f0a MW	108	((www-cache wpad ntp news) (fretwank :svc vampire))
e80b4c2d MW	109	;;
e80b4c2d MW	110	;; Wired ethernet
b1d5c6c2	111	(fretwank :net fretwank)
fc0ce2ed MW	112	(metalzone (inet :a guvnor.demon)
	113	(fretwank :a metalzone))
	114	(vampire (fretwank :a vampire)
	115	(untrusted :a vampire.untrusted)
	116	(iodine :a vampire.iodine))
4acd4890	117	(obsidian (fretwank :a obsidian))
b1d5c6c2 MW	118	;;
	119	;; Virtual network
	120	(virtual :net virtual)
8ca446b5	121	(crybaby (virtual :a crybaby))
fc0ce2ed	122	(iodine :net iodine)
e80b4c2d	123	;;
b1d5c6c2 MW	124	;; ITS
	125	(its :net its)
	126	(gw (its :a gw))
	127	(mz (its :a mz))
b3f75214	128	;;
b1d5c6c2	129	;; Delegations
fc0ce2ed MW	130	#+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
	131	(io :ns #-subnet/fretwank (metalzone.ns.distorted.org.uk.)
	132	#+subnet/fretwank (metalzone.ns.distorted.org.uk.
	133	vampire.ns.distorted.org.uk.)))
b1d5c6c2 MW	134
	135	;;;--------------------------------------------------------------------------
	136	;;; Other subsidiary zones.
e80b4c2d MW	137
e80b4c2d MW	138	(defrevzone trusted
2bc217e8	139	:ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
b3f75214 MW	140	:reverse trusted
	141	#+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
	142	#+subnet/fretwank (@ :cidr-delegation
	143	(dhcp
	144	(dhcp 199.29.172.dhcp.199.29.172.in-addr.arpa))))
	145
e80b4c2d	146	(defrevzone untrusted
2bc217e8	147	:ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
8ca446b5	148	:reverse untrusted)
b3f75214 MW	149
b3f75214 MW	150	(defzone dhcp.distorted.org.uk
340f4f62	151	:ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
b3f75214 MW	152	:net dhcp)
	153
	154	(defzone dhcp.199.29.172.in-addr.arpa
340f4f62	155	:ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire)))
5094e793	156
b1d5c6c2	157	;;;----- That's all, folks --------------------------------------------------