From: Mark Wooding Date: Thu, 18 Feb 2010 09:35:50 +0000 (+0000) Subject: distorted.lisp: Carve an iodine subnet out of `untrusted'. X-Git-Url: https://git.distorted.org.uk/~mdw/zones/commitdiff_plain/fc0ce2ed768862b1ce9feb9933c7ea557c0ae90e distorted.lisp: Carve an iodine subnet out of `untrusted'. --- diff --git a/Makefile.m4 b/Makefile.m4 index f221ac5..75c33a5 100644 --- a/Makefile.m4 +++ b/Makefile.m4 @@ -36,7 +36,7 @@ m4_divert(-1) ### Domains. DOMAIN([distorted], [inet, fretwank], - [distorted.org.uk, dhcp.distorted.org.uk, + [distorted.org.uk, io.distorted.org.uk, dhcp.distorted.org.uk, 198.29.172.in-addr.arpa, 199.29.172.in-addr.arpa, dhcp.199.29.172.in-addr.arpa]) DOMAIN([harlequin], [inet, fretwank], [harlequin.org.uk]) diff --git a/distorted.lisp b/distorted.lisp index 64ec842..2dab68a 100644 --- a/distorted.lisp +++ b/distorted.lisp @@ -7,7 +7,9 @@ ;;; (RFC1918 addresses are allocated from Cambridge G-RIN.) (defnet distorted.org.uk 172.29.198.0/23 - (untrusted 256) + (untrusted 256 + (wireless 128) + (iodine 16)) (trusted 256 (fretwank 128 (unsafe 32) @@ -39,6 +41,9 @@ ;; Virtual private network. (defhost crybaby (virtual 1)) +;; Iodine network. +(defhost vampire.iodine (iodine 1)) + ;; Special network for ITS. ;; It doesn't understand point-to-point links, so we need a little net. (defhost gw (its 1)) @@ -90,10 +95,10 @@ ;; ;; Local services (@ :svc www-frontend) - ((www ftp wiki git bugs mail rawk) + ((www ftp wiki git bugs mail) (inet :svc guvnor.demon) (fretwank :svc metalzone)) - ((db tor) + ((db tor rawk) (inet :svc guvnor.demon) (fretwank :svc vampire)) (vox (inet :svc guvnor.demon) (fretwank :svc vampire)) @@ -104,13 +109,17 @@ ;; ;; Wired ethernet (fretwank :net fretwank) - (metalzone (inet :a guvnor.demon) (fretwank :a metalzone)) - (vampire (fretwank :a vampire) (untrusted :a vampire.untrusted)) + (metalzone (inet :a guvnor.demon) + (fretwank :a metalzone)) + (vampire (fretwank :a vampire) + (untrusted :a vampire.untrusted) + (iodine :a vampire.iodine)) (obsidian (fretwank :a obsidian)) ;; ;; Virtual network (virtual :net virtual) (crybaby (virtual :a crybaby)) + (iodine :net iodine) ;; ;; ITS (its :net its) @@ -118,7 +127,10 @@ (mz (its :a mz)) ;; ;; Delegations - #+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))) + #+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns)) + (io :ns #-subnet/fretwank (metalzone.ns.distorted.org.uk.) + #+subnet/fretwank (metalzone.ns.distorted.org.uk. + vampire.ns.distorted.org.uk.))) ;;;-------------------------------------------------------------------------- ;;; Other subsidiary zones.