~mdw
/
zones
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
hosts.lisp, distorted.lisp: Separate address for anonymity services.
[zones]
/
distorted.lisp
diff --git
a/distorted.lisp
b/distorted.lisp
index
369e606
..
8325a92
100644
(file)
--- a/
distorted.lisp
+++ b/
distorted.lisp
@@
-28,6
+28,13
@@
:mx mail
:srv ((:smtp mail)))
:mx mail
:srv ((:smtp mail)))
+ ;; Kerberos.
+ (_kerberos :txt "DISTORTED.ORG.UK")
+ :srv (((:kerberos :protocol :udp) krb)
+ ((:kerberos-master :protocol :udp :port 88) krb)
+ (:kerberos-adm krb)
+ ((:kpasswd :protocol :udp) krb))
+
;; Other services.
:srv ((:http www)
(:ftp ftp))
;; Other services.
:srv ((:http www)
(:ftp ftp))
@@
-35,6
+42,7
@@
;; Entry is via little router box.
(dmz :net dmz)
(guvnor (inside :svc gate.dmz) (dmz :a guvnor.dmz))
;; Entry is via little router box.
(dmz :net dmz)
(guvnor (inside :svc gate.dmz) (dmz :a guvnor.dmz))
+ (anon (dmz :a anon.dmz))
(gate (dmz :a gate.dmz))
(nat (dmz :a nat.dmz))
(gate (dmz :a gate.dmz))
(nat (dmz :a nat.dmz))
@@
-44,13
+52,17
@@
;; Local services.
:svc vampire
;; Local services.
:svc vampire
- ((www
ftp rsync wiki git bugs mail db tor
i2p rawk vox www-cache)
+ ((www
krb ftp rsync wiki git bugs mail db
i2p rawk vox www-cache)
:svc vampire)
;; Internal services.
#+view/inside ((ntp) :svc ibanez.unsafe)
#+view/inside ((wpad ntp1 news) :svc vampire.unsafe)
:svc vampire)
;; Internal services.
#+view/inside ((ntp) :svc ibanez.unsafe)
#+view/inside ((wpad ntp1 news) :svc vampire.unsafe)
+ ;; Anonymity services.
+ (tor :svc #+view/inside vampire.unsafe
+ #-view/inside anon.dmz)
+
;; Wired ethernet.
(wired :net wired)
(vampire (unsafe :a vampire.unsafe)
;; Wired ethernet.
(wired :net wired)
(vampire (unsafe :a vampire.unsafe)