Commit | Line | Data |
---|---|---|
e80b4c2d MW |
1 | ;;; Zone file for distorted.org.uk |
2 | ||
b4d4c18b | 3 | (load "hosts.lisp" :verbose nil) |
e80b4c2d | 4 | |
aef7892b MW |
5 | ;;;-------------------------------------------------------------------------- |
6 | ;;; Anycast services. | |
7 | ||
8 | (defvar *anycast-routable-families* (list :ipv6)) | |
9 | ||
10 | (defzoneparse :anycast (name data rec :prefix prefix :zname zname) | |
11 | (destructuring-bind (any-provider default-provider &rest other-providers) | |
12 | data | |
13 | ||
14 | ;; First, the default address. If the anycast network is preferred then | |
15 | ;; this is easy; otherwise we have something complicated to do because | |
16 | ;; IPv6 anycast addresses are globally routable, while IPv4 ones aren't. | |
17 | (if (zone-preferred-subnet-p (car any-provider)) | |
18 | (zone-set-address #'rec (cdr any-provider) :make-ptr-p t) | |
6baf2de2 | 19 | (do-host (addr (cdr any-provider)) |
aef7892b MW |
20 | (let ((family (ipaddr-family addr))) |
21 | (if (member family *anycast-routable-families*) | |
22 | (zone-set-address #'rec addr | |
23 | :family family :make-ptr-p t) | |
24 | (zone-set-address #'rec (cdr default-provider) | |
25 | :family family :make-ptr-p nil))))) | |
26 | ||
27 | ;; Now for all of the others. | |
28 | (dolist (provider (list* any-provider default-provider other-providers)) | |
29 | (zone-set-address #'rec (cdr provider) | |
30 | :make-ptr-p (eq provider any-provider) | |
c9f96590 MW |
31 | :name (domain-name-concat prefix |
32 | (zone-parse-host | |
33 | (car provider) | |
34 | zname)))))) | |
aef7892b | 35 | |
07fe1e43 MW |
36 | ;;;-------------------------------------------------------------------------- |
37 | ;;; Hostname abbreviations. | |
38 | ||
39 | (defvar *abbrev-subdomain* | |
40 | (make-domain-name :labels '("abbrev") :absolutep nil)) | |
41 | (defparameter *abbrev-used* (make-hash-table :test #'equal)) | |
42 | ||
43 | (defzoneparse :abbrev (name data rec :zname zname) | |
44 | (let* ((domain (zone-parse-host data | |
45 | (domain-name-concat *abbrev-subdomain* | |
46 | zname))) | |
47 | (key (princ-to-string domain)) | |
48 | (existing (gethash key *abbrev-used*))) | |
49 | (when existing | |
50 | (error "Abbrev collision for ~A between ~A and ~A." | |
51 | domain existing name)) | |
52 | (setf (gethash key *abbrev-used*) name) | |
53 | (rec :name domain | |
54 | :type :cname | |
55 | :data name))) | |
56 | ||
b1d5c6c2 MW |
57 | ;;;-------------------------------------------------------------------------- |
58 | ;;; Other definitions. | |
e80b4c2d MW |
59 | |
60 | (setf *default-zone-admin* "hostmaster@distorted.org.uk") | |
2bc217e8 | 61 | |
ff6c53ad | 62 | (setf *default-zone-source* 'radius.distorted.org.uk.) |
e80b4c2d | 63 | |
b1d5c6c2 MW |
64 | ;;;-------------------------------------------------------------------------- |
65 | ;;; Main zone definition. | |
66 | ||
e80b4c2d | 67 | (defzone distorted.org.uk |
ec4898f9 | 68 | |
6ef39f28 | 69 | ;; Nameservers. |
ff6c53ad | 70 | :ns #+view/inside ((radius.ns :ip radius) |
f0209b9c | 71 | (precision.ns :ip precision) |
1b9508ad | 72 | (telecaster.ns :ip telecaster) |
a45c78d7 | 73 | (vampire.ns :ip vampire)) |
ff6c53ad | 74 | #-view/inside ((radius.ns :ip radius) |
f0209b9c | 75 | (precision.ns :ip precision) |
1b9508ad | 76 | (telecaster.ns :ip telecaster) |
ff6c53ad | 77 | (mythic-beasts-1.ns :ip mythic-ns1) |
4a487d58 | 78 | (mythic-beasts-2.ns :ip mythic-ns2) |
ff6c53ad | 79 | (chiark.ns :ip chiark.greenend.org.uk)) |
ec4898f9 | 80 | |
6ef39f28 | 81 | ;; Mail servers. |
68db42b5 | 82 | ((@ mail blackhole) :mx mail :srv ((:smtp mail))) |
beb363e0 | 83 | ((bugs) :ttl 300 :mx lists :srv ((:smtp bugs))) |
68db42b5 | 84 | ((lists) :ttl 300 :mx lists :srv ((:smtp lists))) |
ec4898f9 | 85 | |
69bbb181 | 86 | (stratocaster.20140403._domainkey |
8d261a89 MW |
87 | :dkim ("stratocaster-20140403" |
88 | :v "DKIM1" :k "rsa" :h "sha256" :s "email")) | |
69bbb181 | 89 | |
06f1bb3f | 90 | ;; Anycast services. |
aef7892b MW |
91 | (dns0 :anycast ((any dns0.any) |
92 | (jump precision.jump) | |
93 | (colo precision.colo) | |
7c0d1761 | 94 | (aaisp radius.aaisp) |
aef7892b MW |
95 | (dmz radius.dmz) |
96 | (unsafe radius.unsafe))) | |
97 | (dns1 :anycast ((any dns1.any) | |
98 | (jump telecaster.jump) | |
7c0d1761 | 99 | (aaisp vampire.aaisp) |
aef7892b MW |
100 | (dmz vampire.dmz) |
101 | (unsafe vampire.unsafe) | |
102 | (colo telecaster.colo))) | |
cfecfa5c MW |
103 | (dns :cname dns0) |
104 | ||
aef7892b MW |
105 | (ntp0 :anycast ((any ntp0.any) |
106 | (jump fender.jump) | |
7c0d1761 | 107 | (aaisp ibanez.aaisp) |
aef7892b MW |
108 | (dmz ibanez.dmz) |
109 | (unsafe ibanez.unsafe) | |
110 | (colo fender.colo))) | |
111 | (ntp1 :anycast ((any ntp1.any) | |
7c0d1761 | 112 | (aaisp vampire.aaisp) |
aef7892b MW |
113 | (dmz vampire.dmz) |
114 | (unsafe vampire.unsafe))) | |
cfecfa5c MW |
115 | (ntp :cname ntp0) |
116 | ||
aef7892b | 117 | (www-cache :anycast ((any www-cache.any) |
6fcf076f | 118 | (jump telecaster.jump) |
7c0d1761 | 119 | (aaisp roadstar.aaisp) |
6fcf076f MW |
120 | (dmz roadstar.dmz) |
121 | (unsafe roadstar.unsafe) | |
122 | (colo telecaster.colo))) | |
345c0f69 MW |
123 | (wpad :cname www-cache) |
124 | ||
cfecfa5c | 125 | (_kerberos :txt "DISTORTED.ORG.UK") |
aef7892b MW |
126 | (krb0 :anycast ((any krb0.any) |
127 | (jump precision.jump) | |
7c0d1761 | 128 | (aaisp radius.aaisp) |
aef7892b MW |
129 | (dmz radius.dmz) |
130 | (unsafe radius.unsafe) | |
131 | (colo precision.colo))) | |
132 | (krb1 :anycast ((any krb1.any) | |
7c0d1761 | 133 | (aaisp vampire.aaisp) |
aef7892b MW |
134 | (dmz vampire.dmz) |
135 | (unsafe vampire.unsafe))) | |
cfecfa5c | 136 | (krb-master (unsafe :svc radius.unsafe) |
7c0d1761 | 137 | (aaisp :svc radius.aaisp) |
cfecfa5c MW |
138 | (dmz :svc radius.dmz)) |
139 | :srv (((:kerberos :protocol :udp) | |
140 | krb0 | |
141 | (krb1 :prio 100)) | |
142 | ((:kerberos-master :protocol :udp :port 88) krb-master) | |
143 | (:kerberos-adm krb-master) | |
144 | ((:kpasswd :protocol :udp) krb-master)) | |
145 | (krb :cname krb0) | |
146 | ||
6ef39f28 | 147 | ;; Other services. |
96c2a692 MW |
148 | :srv ((:http www) |
149 | (:ftp ftp)) | |
ec4898f9 | 150 | |
4c25329e | 151 | ;; Colocated services. |
15cca8c6 | 152 | ((irc vox keys wiki) (colo :svc jazz.colo :sshfp "jazz") |
270fa799 MW |
153 | (jump :svc jazz.jump :sshfp "jazz")) |
154 | ((irc vox keys wiki) :tlsa (:https (:service-certificate-constraint | |
15cca8c6 | 155 | :public-key :sha-256 #p"https-jazz"))) |
be02ca0e MW |
156 | ((bugs lists db ftp) (colo :svc telecaster.colo :sshfp "telecaster") |
157 | (jump :svc telecaster.jump :sshfp "telecaster")) | |
158 | ((bugs lists ftp) :tlsa (:https (:service-certificate-constraint | |
159 | :public-key :sha-256 | |
160 | #p"https-telecaster"))) | |
161 | (dyndns :svc telecaster.jump :sshfp "telecaster") | |
8d261a89 MW |
162 | ((git www mail) (colo :svc stratocaster.colo :sshfp "stratocaster") |
163 | (jump :svc stratocaster.jump :sshfp "stratocaster")) | |
5a8c792f MW |
164 | ((www git mail @) :tlsa (:https (:service-certificate-constraint |
165 | :public-key :sha-256 | |
166 | #p"https-stratocaster"))) | |
167 | (www-cache :tlsa (3127 #1=(:trust-anchor-assertion | |
168 | :certificate :sha-256 #p"distorted-ca"))) | |
fd848deb MW |
169 | ((bugs lists) :tlsa (:smtp #1#)) |
170 | (mail :tlsa ((:smtp :submission :imap :imaps) #1#)) | |
d13943aa MW |
171 | :svc #+view/inside stratocaster.colo |
172 | #-view/inside stratocaster.jump | |
8d261a89 | 173 | (cabal :svc stratocaster.colo :sshfp "stratocaster") |
4c25329e | 174 | |
6ef39f28 | 175 | ;; Local services. |
6c719992 | 176 | ((rawk pifi) (unsafe :svc artist.unsafe) |
7c0d1761 | 177 | (aaisp :svc artist.aaisp) |
6c719992 | 178 | (dmz :svc artist.dmz)) |
7c0d1761 MW |
179 | (mirror (aasip :svc roadstar.aaisp :sshfp "roadstar") |
180 | (dmz :svc roadstar.dmz :sshfp "roadstar") | |
8d261a89 | 181 | (unsafe :svc roadstar.unsafe :sshfp "roadstar")) |
ec4898f9 | 182 | |
6ef39f28 | 183 | ;; Internal services. |
8d261a89 | 184 | #+view/inside ((news lpr) :svc vampire.unsafe :sshfp "vampire") |
ec4898f9 | 185 | |
04db9729 | 186 | ;; Anonymity services. |
0865ffd5 | 187 | (anon (colo :svc jazz.colo) |
f99b371f | 188 | (unsafe :svc vampire.unsafe) |
c3997955 | 189 | (jump :addr anon.jump) |
7c0d1761 | 190 | (aaisp :addr anon.aaisp) |
c3997955 | 191 | (dmz :addr anon.dmz)) |
04db9729 | 192 | |
85a3496c | 193 | ;; Fancy connectivity. |
d267cd94 | 194 | (iodine (jump :svc jazz.jump)) |
85a3496c | 195 | |
38c2de7c MW |
196 | ;; Colocated hosts. |
197 | (colo :net colo) | |
198 | (jump :net jump) | |
9b7e4069 | 199 | (gate (jump :addr gate.jump :sshfp "precision")) |
07fe1e43 | 200 | (fender :abbrev f (colo :abbrev fc) (jump :abbrev fj)) |
c3997955 MW |
201 | (fender (colo :addr fender.colo :sshfp "fender") |
202 | (jump :addr fender.jump :sshfp "fender")) | |
aa779726 | 203 | (precision :abbrev p (colo :abbrev pc) (jump :abbrev pj) (vpn :abbrev pv)) |
c3997955 | 204 | (precision (colo :addr precision.colo :sshfp "precision") |
aa779726 MW |
205 | (jump :addr precision.jump :sshfp "precision") |
206 | (vpn :addr precision.vpn :sshfp "precision")) | |
07fe1e43 MW |
207 | (telecaster :alias tele :abbrev t |
208 | (colo :alias tele.colo :abbrev tc) | |
209 | (jump :alias tele.jump :abbrev tj)) | |
c3997955 MW |
210 | (telecaster (colo :addr telecaster.colo :sshfp "telecaster") |
211 | (jump :addr telecaster.jump :sshfp "telecaster")) | |
07fe1e43 MW |
212 | (stratocaster :alias strat :abbrev s |
213 | (colo :alias strat.colo :abbrev sc) | |
214 | (jump :alias strat.jump :abbrev sj)) | |
c3997955 MW |
215 | (stratocaster (colo :addr stratocaster.colo :sshfp "stratocaster") |
216 | (jump :addr stratocaster.jump :sshfp "stratocaster")) | |
aa779726 | 217 | (jazz :abbrev z (colo :abbrev zc) (jump :abbrev zj) (vpn :abbrev :zv)) |
c3997955 MW |
218 | (jazz (colo :addr jazz.colo :sshfp "jazz") |
219 | (jump :addr jazz.jump :sshfp "jazz") | |
aa779726 | 220 | (vpn :addr jazz.vpn :sshfp "jazz") |
c3997955 | 221 | (iodine :addr jazz.iodine :sshfp "jazz")) |
38c2de7c | 222 | |
b577b999 MW |
223 | ;; Virtual hosts. |
224 | (national :abbrev n (linode :abbrev nl) (upn :abbrev ny)) | |
225 | (national (linode :addr national.linode) | |
226 | (upn :addr national.upn)) | |
227 | ||
4a372d1b | 228 | ;; Media server (on loan to Good Technology HSTG). |
07fe1e43 | 229 | (jaguar :abbrev jag) |
376a10ac | 230 | (jaguar (jump :addr jaguar.jump :sshfp "jaguar")) |
4a372d1b | 231 | |
a20ec58c | 232 | ;; Nicko's server. |
c1f47051 | 233 | (richmond (jump :svc richmond.jump)) |
a20ec58c | 234 | |
76e1e45a | 235 | ;; Entry is via little router box. |
7c0d1761 | 236 | (aaisp :net aaisp) |
76e1e45a | 237 | (dmz :net dmz) |
7c0d1761 MW |
238 | (guvnor (dmz :addr guvnor.dmz) |
239 | (aaisp :addr guvnor.aaisp)) | |
240 | (nat (dmz :addr nat.dmz) | |
241 | (aaisp :addr nat.aaisp)) | |
76e1e45a MW |
242 | |
243 | ;; Wireless gateway. | |
244 | (wireless :net wireless) | |
245 | (evolution (safe :addr evolution.safe)) | |
246 | (evolution :alias evo) | |
247 | ||
f8f3b283 | 248 | ;; Switches. |
c32d96fa MW |
249 | (grigsby :alias tp0) |
250 | (grigsby (safe :addr grigsby.safe)) | |
251 | (carling :alias tp1) | |
252 | (carling (safe :addr carling.safe)) | |
253 | (tritan :alias tp2) | |
254 | (tritan (safe :addr tritan.safe)) | |
f8f3b283 | 255 | |
6ef39f28 | 256 | ;; Wired ethernet. |
04d65182 MW |
257 | (unsafe :net unsafe) |
258 | (safe :net safe) | |
259 | (untrusted :net untrusted) | |
07fe1e43 | 260 | (vampire :abbrev v |
7c0d1761 MW |
261 | (unsafe :abbrev vu) (aaisp :abbrev va) (dmz :abbrev vd) |
262 | (vpn :abbrev vv) (safe :abbrev vs) (untrusted :abbrev vx)) | |
c3997955 | 263 | (vampire (unsafe :addr vampire.unsafe :sshfp "vampire") |
7c0d1761 | 264 | (aaisp :addr vampire.aaisp :sshfp "vampire") |
c3997955 | 265 | (dmz :addr vampire.dmz :sshfp "vampire") |
aa779726 | 266 | (vpn :addr vampire.vpn :sshfp "vampire") |
c3997955 MW |
267 | (safe :addr vampire.safe :sshfp "vampire") |
268 | (untrusted :addr vampire.untrusted :sshfp "vampire")) | |
7c0d1761 | 269 | (ibanez :abbrev i (unsafe :abbrev iu) (aaisp :abbrev ia) (dmz :abbrev id)) |
c3997955 | 270 | (ibanez (unsafe :addr ibanez.unsafe :sshfp "ibanez") |
7c0d1761 | 271 | (aaisp :addr ibanez.aaisp :sshfp "ibanez") |
c3997955 | 272 | (dmz :addr ibanez.dmz :sshfp "ibanez")) |
07fe1e43 | 273 | (radius :abbrev r |
7c0d1761 MW |
274 | (unsafe :abbrev ru) (aaisp :abbrev ra) (dmz :abbrev rd) |
275 | (vpn :abbrev rv) (safe :abbrev rs) (untrusted :abbrev rx)) | |
c3997955 | 276 | (radius (unsafe :addr radius.unsafe :sshfp "radius") |
7c0d1761 | 277 | (aaisp :addr radius.aaisp :sshfp "radius") |
c3997955 | 278 | (dmz :addr radius.dmz :sshfp "radius") |
aa779726 | 279 | (vpn :addr radius.vpn :sshfp "radius") |
c3997955 MW |
280 | (safe :addr radius.safe :sshfp "radius") |
281 | (untrusted :addr radius.untrusted :sshfp "radius")) | |
7c0d1761 MW |
282 | (roadstar :abbrev rg (unsafe :abbrev rgu) |
283 | (aaisp :abbrev rga) (dmz :abbrev rgd)) | |
c3997955 | 284 | (roadstar (unsafe :addr roadstar.unsafe :sshfp "roadstar") |
7c0d1761 | 285 | (aaisp :addr roadstar.aaisp :sshfp "roadstar") |
c3997955 | 286 | (dmz :addr roadstar.dmz :sshfp "roadstar")) |
7c0d1761 | 287 | (jem :abbrev j (unsafe :abbrev ju) (aaisp :abbrev ja) (dmz :abbrev jd)) |
c3997955 | 288 | (jem (unsafe :addr jem.unsafe :sshfp "jem") |
7c0d1761 | 289 | (aaisp :addr jem.aaisp :sshfp "jem") |
c3997955 | 290 | (dmz :addr jem.dmz :sshfp "jem")) |
7c0d1761 | 291 | (universe :abbrev u (unsafe :abbrev uu) (aaisp :abbrev ua) (dmz :abbrev ud)) |
664e6cf9 | 292 | (universe (unsafe :addr universe.unsafe :sshfp "universe") |
7c0d1761 | 293 | (aaisp :addr universe.aaisp :sshfp "universe") |
664e6cf9 | 294 | (dmz :addr universe.dmz :sshfp "universe")) |
07fe1e43 | 295 | (artist :abbrev a |
7c0d1761 MW |
296 | (unsafe :abbrev au) (aaisp :abbrev aa) (dmz :abbrev ad) |
297 | (untrusted :abbrev ax)) | |
c3997955 | 298 | (artist (unsafe :addr artist.unsafe :sshfp "artist") |
7c0d1761 | 299 | (aaisp :addr artist.aaisp :sshfp "artist") |
c3997955 MW |
300 | (dmz :addr artist.dmz :sshfp "artist") |
301 | (untrusted :addr artist.untrusted :sshfp "artist")) | |
f409e9c5 MW |
302 | (groove :abbrev gr) |
303 | (groove (unsafe :addr groove.unsafe :sshfp "groove")) | |
ec4898f9 | 304 | |
ff6c53ad | 305 | ;; DHCP hosts. |
07fe1e43 | 306 | (gibson :cname gibson.dhcp :abbrev g) |
4b5e05ad MW |
307 | (lespaul :cname lespaul.dhcp) |
308 | (firebird :cname firebird.dhcp) | |
aa4d55b1 MW |
309 | (marauder :cname marauder.dhcp) |
310 | (invader :cname invader.dhcp) | |
098020ad | 311 | (gretsch :cname gretsch.dhcp) |
ec4898f9 | 312 | |
6ef39f28 | 313 | ;; Virtual network. |
374be896 | 314 | (vpn :net vpn) |
07fe1e43 | 315 | (crybaby :abbrev cb) |
c3997955 MW |
316 | (crybaby (vpn :addr crybaby.vpn :sshfp "crybaby")) |
317 | (terror (vpn :addr terror.vpn :sshfp "terror")) | |
07fe1e43 | 318 | (orange :abbrev o) |
c3997955 | 319 | (orange (vpn :addr orange.vpn :sshfp "orange")) |
07fe1e43 | 320 | (haze :abbrev h) |
76bca42f | 321 | (haze (vpn :addr haze.vpn :sshfp "haze")) |
fc0ce2ed | 322 | (iodine :net iodine) |
ec4898f9 | 323 | |
6ef39f28 | 324 | ;; ITS. |
b1d5c6c2 | 325 | (its :net its) |
c3997955 MW |
326 | (gw (its :addr gw.its)) |
327 | (mz (its :addr mz.its)) | |
ec4898f9 | 328 | |
c2118713 | 329 | ;; Strange things. |
c3997955 | 330 | (blackhole (jump :addr blackhole.jump)) |
c2118713 | 331 | |
6ef39f28 | 332 | ;; Delegations. |
f0209b9c MW |
333 | (dhcp :ns ((radius.ns.dhcp :ip radius) |
334 | (precision.ns.dhcp :ip precision) | |
1b9508ad | 335 | (telecaster.ns.dhcp :ip telecaster) |
a45c78d7 | 336 | (vampire.ns.dhcp :ip vampire)) |
3f954bac MW |
337 | :ds ((55966 :rsasha256 :sha1 |
338 | "95b05c1f4e84f950f29630004bac447f8a87ca33") | |
339 | (55966 :rsasha256 :sha256 | |
340 | #.(concatenate 'string "31696bf54b577362b2eb75793adeb9ec" | |
341 | "2e8440ec671371b35d8d978cd9ca3007")))) | |
49c5f8ff MW |
342 | (dyn :ns ((radius.ns.dyn :ip radius) |
343 | (precision.ns.dyn :ip precision) | |
1b9508ad | 344 | (telecaster.ns.dyn :ip telecaster) |
a45c78d7 | 345 | (vampire.ns.dyn :ip vampire)) |
3f954bac MW |
346 | :ds ((11335 :rsasha256 :sha1 |
347 | "7ed2b843b0bfb38ceca68617dfacbeafab1d1ea9") | |
348 | (11335 :rsasha256 :sha256 | |
349 | #.(concatenate 'string "6eb15eb587c48f5b84ca128a656a4cce" | |
350 | "0a41cf040d3d0f15a44dffd6476b2b55")))) | |
0262908f | 351 | (dnserr :ns ((radius.ns.dnserr :ip radius.dmz) |
f0209b9c | 352 | (precision.ns.dnserr :ip precision.jump) |
1b9508ad | 353 | (telecaster.ns.dnserr :ip telecaster) |
a45c78d7 | 354 | (vampire.ns.dnserr :ip vampire.dmz)) |
3f954bac MW |
355 | :ds ((40945 :rsasha256 :sha1 |
356 | "f35b5d0b877b940e63ad1b3afc21d6ba83cd1b3b") | |
357 | (40945 :rsasha256 :sha256 | |
358 | #.(concatenate 'string "fb171d206d4d64c5a7a6c290ce6e20df" | |
359 | "44f1db7f41e2260f1fe8d7c55d524c11")))) | |
17c95de9 | 360 | (io :ns ((ns.io :ip jazz.jump)))) |
b1d5c6c2 MW |
361 | |
362 | ;;;-------------------------------------------------------------------------- | |
363 | ;;; Other subsidiary zones. | |
e80b4c2d | 364 | |
55f161b6 | 365 | (defzone dhcp.distorted.org.uk |
a1ab9d7e MW |
366 | :ns ((radius.ns :ip radius.dmz) |
367 | (precision.ns :ip precision.jump) | |
368 | (telecaster.ns :ip telecaster.jump) | |
a45c78d7 | 369 | (vampire.ns :ip vampire.dmz)) |
55f161b6 | 370 | (gibson :addr gibson.unsafe) |
812706bd | 371 | (crybaby :addr crybaby.unsafe) |
2d7b9fe6 | 372 | (lespaul :addr lespaul.unsafe) |
3e38779f MW |
373 | (gretsch :addr gretsch.unsafe) |
374 | (haze :addr haze.unsafe) | |
55f161b6 | 375 | (invader :addr invader.safe) |
3e38779f | 376 | (marauder :addr marauder.safe)) |
55f161b6 | 377 | |
c1f47051 MW |
378 | (defzone nicko.org |
379 | (richmond :addr richmond.jump)) | |
380 | ||
e80b4c2d | 381 | (defrevzone trusted |
8aa87005 MW |
382 | :ns (radius.distorted.org.uk. |
383 | precision.distorted.org.uk. | |
1b9508ad | 384 | telecaster.distorted.org.uk. |
a45c78d7 | 385 | vampire.distorted.org.uk.) |
b59ce50d MW |
386 | :reverse unsafe |
387 | :reverse vpn | |
388 | :reverse colo | |
389 | :reverse its | |
345c0f69 | 390 | :reverse any |
8aa87005 MW |
391 | (dhcp :ns (radius.distorted.org.uk. |
392 | precision.distorted.org.uk. | |
1b9508ad | 393 | telecaster.distorted.org.uk. |
a45c78d7 | 394 | vampire.distorted.org.uk.)) |
3503589d | 395 | :multi (((dhcp safe) :family :ipv4 :suffix "199.29.172.dhcp") :cname *)) |
b3f75214 | 396 | |
b29264c5 | 397 | (defrevzone (dmz :family :ipv6) |
8aa87005 MW |
398 | :ns (radius.distorted.org.uk. |
399 | precision.distorted.org.uk. | |
1b9508ad | 400 | telecaster.distorted.org.uk. |
a45c78d7 | 401 | vampire.distorted.org.uk.) |
ff6c53ad | 402 | :reverse dmz) |
92e99247 | 403 | |
b29264c5 MW |
404 | (defrevzone (dmz :family :ipv4) |
405 | (144-159 :ns (radius.distorted.org.uk. | |
406 | precision.distorted.org.uk. | |
407 | telecaster.distorted.org.uk. | |
a45c78d7 | 408 | vampire.distorted.org.uk.)) |
b29264c5 MW |
409 | :multi ((dmz :suffix "144-159") :cname *)) |
410 | ||
411 | (defzone 144-159.204.49.62.in-addr.arpa | |
412 | :ns (radius.distorted.org.uk. | |
413 | precision.distorted.org.uk. | |
414 | telecaster.distorted.org.uk. | |
a45c78d7 | 415 | vampire.distorted.org.uk.) |
b29264c5 MW |
416 | :reverse ((((:ipv4 dmz))))) |
417 | ||
7c0d1761 MW |
418 | (defzone 128-143.238.187.81.in-addr.arpa |
419 | :ns (radius.distorted.org.uk. | |
420 | precision.distorted.org.uk. | |
421 | telecaster.distorted.org.uk. | |
422 | vampire.distorted.org.uk.) | |
423 | :reverse ((((:ipv4 aaisp))))) | |
424 | ||
425 | (defzone 195.113.2.81.in-addr.arpa | |
426 | :ns (radius.distorted.org.uk. | |
427 | precision.distorted.org.uk. | |
428 | telecaster.distorted.org.uk. | |
429 | vampire.distorted.org.uk.) | |
430 | :reverse ((((:ipv4 aaisp-gw))))) | |
431 | ||
b29264c5 | 432 | (defrevzone (jump :family :ipv6) |
8aa87005 MW |
433 | :ns (radius.distorted.org.uk. |
434 | precision.distorted.org.uk. | |
1b9508ad | 435 | telecaster.distorted.org.uk. |
a45c78d7 | 436 | vampire.distorted.org.uk.) |
38c2de7c MW |
437 | :reverse jump) |
438 | ||
b29264c5 MW |
439 | (defrevzone (jump :family :ipv4) |
440 | (64-79 :ns (radius.distorted.org.uk. | |
441 | precision.distorted.org.uk. | |
442 | telecaster.distorted.org.uk. | |
a45c78d7 | 443 | vampire.distorted.org.uk.)) |
b29264c5 MW |
444 | :multi ((jump :suffix "64-79") :cname *)) |
445 | ||
446 | (defzone 64-79.198.13.212.in-addr.arpa | |
447 | :ns (radius.distorted.org.uk. | |
448 | precision.distorted.org.uk. | |
449 | telecaster.distorted.org.uk. | |
a45c78d7 | 450 | vampire.distorted.org.uk.) |
b29264c5 MW |
451 | :reverse ((((:ipv4 jump))))) |
452 | ||
652c34be MW |
453 | (defrevzone distorted.org.uk-he |
454 | :ns (radius.distorted.org.uk. | |
455 | precision.distorted.org.uk. | |
1b9508ad | 456 | telecaster.distorted.org.uk. |
a45c78d7 | 457 | vampire.distorted.org.uk.) |
652c34be MW |
458 | :reverse distorted.org.uk-he) |
459 | ||
7c0d1761 MW |
460 | (defrevzone (aaisp :family :ipv6) |
461 | :ns (radius.distorted.org.uk. | |
462 | precision.distorted.org.uk. | |
463 | telecaster.distorted.org.uk. | |
464 | vampire.distorted.org.uk.) | |
465 | :reverse ((((:ipv6 aaisp))))) | |
466 | ||
652c34be MW |
467 | (defrevzone distorted.org.uk-jump |
468 | :ns (radius.distorted.org.uk. | |
469 | precision.distorted.org.uk. | |
1b9508ad | 470 | telecaster.distorted.org.uk. |
a45c78d7 | 471 | vampire.distorted.org.uk.) |
652c34be MW |
472 | :reverse distorted.org.uk-jump) |
473 | ||
995d75b4 | 474 | (defzone io.distorted.org.uk |
17c95de9 | 475 | :ns ((ns :ip jazz.jump)) |
995d75b4 MW |
476 | (about :txt "Fake zone used for IP-over-DNS tunnelling.")) |
477 | ||
b1d5c6c2 | 478 | ;;;----- That's all, folks -------------------------------------------------- |