~mdw
/
zones
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
distorted.lisp, escorted.lisp, odin.lisp: Take off the training wheels.
[zones]
/
odin.lisp
diff --git
a/odin.lisp
b/odin.lisp
index
3d481f7
..
9968dd2
100644
(file)
--- a/
odin.lisp
+++ b/
odin.lisp
@@
-11,11
+11,25
@@
;; Nameservers
:ns ((radius-ns :ip radius)
(precision-ns :ip precision)
;; Nameservers
:ns ((radius-ns :ip radius)
(precision-ns :ip precision)
- ns6.gandi.net.)
+ (telecaster-ns :ip telecaster)
+ (national-ns :ip national))
;; Web service.
;; Web service.
- ((@ www) :svc stratocaster)
+ ((@ www) :svc stratocaster
+ :tlsa (:https (:service-certificate-constraint
+ :public-key :sha-256 #p"https-stratocaster")))
+
+ ;; Certification.
+ :caa ((:issue "letsencrypt.org")
+ (:issue "distorted.org.uk"))
;; Mail servers
:mx ((mail :ip stratocaster))
;; Mail servers
:mx ((mail :ip stratocaster))
- :srv ((:smtp mail)))
+ :srv ((:smtp mail))
+ :spf ((:version "spf1")
+ (:pass :ip stratocaster.dmz)
+ (:soft :all))
+ (_dmarc :dmarc (:v "DMARC1"
+ :p "quarantine" :sp "quarantine"
+ :adkim "s" :aspf "s"))
+ (_domainkey :dname stratocaster.dkim.distorted.org.uk.))