mdw@git.distorted.org.uk Git - zones/blob - distorted.lisp

   1 ;;; Zone file for distorted.org.uk
   2
   3 (load "hosts" :verbose nil)
   4
   5 ;;;--------------------------------------------------------------------------
   6 ;;; Network allocations
   7 ;;; (RFC1918 addresses are allocated from Cambridge G-RIN.)
   8
   9 (defnet distorted.org.uk 172.29.198.0/23
  10   (untrusted 256
  11     (wireless 128)
  12     (iodine 16))
  13   (trusted 256
  14     (fretwank 128
  15       (unsafe 32)
  16       (dhcp 32)
  17       (safe 32))
  18     (virtual 32)
  19     (its 4)))
  20
  21 ;;;--------------------------------------------------------------------------
  22 ;;; Host allocations
  23
  24 ;; External addresses.
  25 (defhost guvnor.demon 80.177.3.76)
  26
  27 ;; Unsafe network.
  28 (defhost guvnor (unsafe 1))
  29 (defhost metalzone (unsafe 2))
  30 ;;(defhost evolution.fretwank (unsafe 3))
  31 (defhost vampire (unsafe 4))
  32
  33 ;; Safe network.
  34 (defhost tubescreamer (safe 1))
  35 (defhost obsidian (safe 2))
  36
  37 ;; Wireless network.
  38 (defhost vampire.untrusted (untrusted 1))
  39 (defhost evolution (untrusted 2))
  40
  41 ;; Virtual private network.
  42 (defhost crybaby (virtual 1))
  43
  44 ;; Iodine network.
  45 (defhost vampire.iodine (iodine 1))
  46
  47 ;; Special network for ITS.
  48 ;; It doesn't understand point-to-point links, so we need a little net.
  49 (defhost gw (its 1))
  50 (defhost mz (its 2))
  51
  52 ;;;--------------------------------------------------------------------------
  53 ;;; Other definitions.
  54
  55 (setf *default-zone-admin* "hostmaster@distorted.org.uk")
  56
  57 (preferred-subnet-case
  58   (fretwank
  59    (setf *default-zone-source* 'vampire.distorted.org.uk.)
  60    (defhost www-frontend metalzone))
  61   (t
  62    (setf *default-zone-source* 'guvnor.distorted.org.uk.)
  63    (defhost www-frontend guvnor.demon)))
  64
  65 ;;;--------------------------------------------------------------------------
  66 ;;; Main zone definition.
  67
  68 (defzone distorted.org.uk
  69   ;;
  70   ;; Nameservers
  71   :ns #+subnet/fretwank ((metalzone.ns :ip metalzone)
  72                          (vampire.ns :ip vampire))
  73       #-subnet/fretwank ((boyle.ns :ip boyle.nsict.org)
  74                          (chiark.ns :ip chiark.greenend.org.uk)
  75                          (guvnor.ns :ip guvnor.demon))
  76   ;;
  77   ;; Mail servers
  78   ((@ mail lists bugs cryptomail)
  79    :mx mail
  80    :srv ((:smtp mail)))
  81   ;;
  82   ;; Other services
  83   :srv ((:http www)
  84         (:ftp ftp))
  85   ;;
  86   ;; Colocated services
  87   ;;((www ftp git) (inet :svc boyle.nsict.org) (fretwank :svc metalzone))
  88   ;;
  89   ;; Entry is via little port-forwarding box
  90   (guvnor (inet :a guvnor.demon) (fretwank :a guvnor))
  91   ;;
  92   ;; Wireless gateway
  93   (untrusted :net untrusted)
  94   (evolution (untrusted :a evolution))
  95   ;;
  96   ;; Local services
  97   (@ :svc www-frontend)
  98   ((www ftp wiki git bugs mail)
  99    (inet :svc guvnor.demon)
 100    (fretwank :svc metalzone))
 101   ((db tor rawk)
 102    (inet :svc guvnor.demon)
 103    (fretwank :svc vampire))
 104   (vox (inet :svc guvnor.demon) (fretwank :svc vampire))
 105   ;;
 106   ;; Internal services
 107   ((ntp1) (fretwank :svc metalzone))
 108   ((www-cache wpad ntp news) (fretwank :svc vampire))
 109   ;;
 110   ;; Wired ethernet
 111   (fretwank :net fretwank)
 112   (metalzone (inet :a guvnor.demon)
 113              (fretwank :a metalzone))
 114   (vampire (fretwank :a vampire)
 115            (untrusted :a vampire.untrusted)
 116            (iodine :a vampire.iodine))
 117   (obsidian (fretwank :a obsidian))
 118   ;;
 119   ;; Virtual network
 120   (virtual :net virtual)
 121   (crybaby (virtual :a crybaby))
 122   (iodine :net iodine)
 123   ;;
 124   ;; ITS
 125   (its :net its)
 126   (gw (its :a gw))
 127   (mz (its :a mz))
 128   ;;
 129   ;; Delegations
 130   #+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
 131   (io :ns #-subnet/fretwank (metalzone.ns.distorted.org.uk.)
 132           #+subnet/fretwank (metalzone.ns.distorted.org.uk.
 133                              vampire.ns.distorted.org.uk.)))
 134
 135 ;;;--------------------------------------------------------------------------
 136 ;;; Other subsidiary zones.
 137
 138 (defrevzone trusted
 139   :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
 140   :reverse trusted
 141   #+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
 142   #+subnet/fretwank (@ :cidr-delegation
 143                        (dhcp
 144                         (dhcp 199.29.172.dhcp.199.29.172.in-addr.arpa))))
 145
 146 (defrevzone untrusted
 147   :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
 148   :reverse untrusted)
 149
 150 (defzone dhcp.distorted.org.uk
 151   :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
 152   :net dhcp)
 153
 154 (defzone dhcp.199.29.172.in-addr.arpa
 155   :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire)))
 156
 157 ;;;----- That's all, folks --------------------------------------------------