~mdw / zones / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
distorted: Add service vox.
[zones] / distorted.lisp
1 ;;; Zone file for distorted.org.uk
2
3 (load "hosts" :verbose nil)
4
5 ;; Network allocations
6 ;; (RFC1918 addresses are allocated from Cambridge G-RIN.)
7 (defnet distorted.org.uk 172.29.198.0/23
8 (untrusted 256
9 (wireless 64))
10 (trusted 256
11 (fretwank 128
12 (unsafe 32)
13 (dhcp 32)
14 (safe 32))
15 (virtual 32)))
16
17 ;; Host allocations
18 (defhost guvnor.demon 80.177.3.76)
19
20 (defhost guvnor (unsafe 1))
21 (defhost metalzone (unsafe 2))
22 (defhost evolution (unsafe 3))
23 (defhost vampire (unsafe 4))
24
25 (defhost tubescreamer (safe 1))
26 (defhost obsidian (safe 2))
27
28 (defhost evolution.wireless (wireless 1))
29
30 (defhost fuzzface (virtual 1))
31 (defhost mz (virtual 2))
32
33 (setf *default-zone-admin* "hostmaster@distorted.org.uk")
34
35 (preferred-subnet-case
36 (fretwank
37 (setf *default-zone-source* 'metalzone.distorted.org.uk.)
38 (defhost www-frontend metalzone))
39 (t
40 (setf *default-zone-source* 'guvnor.distorted.org.uk.)
41 (defhost www-frontend guvnor.demon)))
42
43 (defzone distorted.org.uk
44 ;;
45 ;; Nameservers
46 :ns #+subnet/fretwank ((metalzone.ns :ip metalzone)
47 (vampire.ns :ip vampire))
48 #-subnet/fretwank ((boyle.ns :ip boyle.nsict.org)
49 (chiark.ns :ip chiark.greenend.org.uk)
50 (guvnor.ns :ip guvnor.demon))
51 ;;
52 ;; Mail servers
53 ((@ mail lists bugs cryptomail)
54 :mx mail
55 :srv ((:smtp mail)))
56 ;;
57 ;; Other services
58 :srv ((:http www)
59 (:ftp ftp))
60 ;;
61 ;; Colocated services
62 ;;((www ftp git) (inet :svc boyle.nsict.org) (fretwank :svc metalzone))
63 ;;
64 ;; Entry is via little port-forwarding box
65 (guvnor (inet :a guvnor.demon) (fretwank :a guvnor))
66 ;;
67 ;; Wireless gateway
68 (evolution (fretwank :a evolution) (wireless :a evolution.wireless))
69 ;;
70 ;; Local services
71 (@ :svc www-frontend)
72 ((www ftp wiki git bugs mail rawk)
73 (inet :svc guvnor.demon)
74 (fretwank :svc metalzone))
75 ((db)
76 (inet :svc guvnor.demon)
77 (fretwank :svc vampire))
78 (vox (inet :svc guvnor.demon) (fretwank :svc vampire))
79 ;;
80 ;; Internal services
81 ((news ntp) (fretwank :svc metalzone))
82 ((www-cache wpad ntp1) (fretwank :svc vampire))
83 ;;
84 ;; Wired ethernet
85 (metalzone (inet :a guvnor.demon) (fretwank :a metalzone))
86 (vampire (fretwank :a vampire))
87 (tubescreamer (fretwank :a tubescreamer))
88 (obsidian (fretwank :a obsidian))
89 (fuzzface (virtual :a fuzzface))
90 (mz (virtual :a mz))
91 ;;
92 ;; Delegations
93 #+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
94 ;;
95 ;; Networks
96 (fretwank :net fretwank)
97 (wireless :net wireless)
98 (virtual :net virtual))
99
100 (defrevzone trusted
101 :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
102 :reverse trusted
103 #+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
104 #+subnet/fretwank (@ :cidr-delegation
105 (dhcp
106 (dhcp 199.29.172.dhcp.199.29.172.in-addr.arpa))))
107
108 (defrevzone untrusted
109 :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
110 #+subnet/fretwank (wireless :ns (metalzone.ns vampire.ns))
111 #+subnet/fretwank (@ :cidr-delegation
112 (wireless
113 (wireless
114 198.29.172.wireless.198.29.172.in-addr.arpa))))
115
116 (defzone dhcp.distorted.org.uk
117 :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
118 :net dhcp)
119
120 (defzone dhcp.199.29.172.in-addr.arpa
121 :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire)))
122
123 (defzone wireless.198.29.172.in-addr.arpa
124 :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
125 :reverse ((wireless :bytes 4)))
Zone files for the DNS zones I administer