[zones] / distorted.lisp

;;; Zone file for distorted.org.uk

(load "hosts" :verbose nil)

;;;--------------------------------------------------------------------------
;;; Network allocations
;;; (RFC1918 addresses are allocated from Cambridge G-RIN.)

(defnet distorted.org.uk 172.29.198.0/23
  (untrusted 256
    (wireless 64))
  (trusted 256
    (fretwank 128
      (unsafe 32)
      (dhcp 32)
      (safe 32))
    (virtual 32)
    (its 4)))

;;;--------------------------------------------------------------------------
;;; Host allocations

;; External addresses.
(defhost guvnor.demon 80.177.3.76)

;; Unsafe network.
(defhost guvnor (unsafe 1))
(defhost metalzone (unsafe 2))
(defhost evolution (unsafe 3))
(defhost vampire (unsafe 4))

;; Safe network.
(defhost tubescreamer (safe 1))
(defhost obsidian (safe 2))

;; Wireless network.
(defhost evolution.wireless (wireless 1))

;; Virtual private network.
(defhost fuzzface (virtual 1))

;; Special network for ITS.
;; It doesn't understand point-to-point links, so we need a little net.
(defhost gw (its 1))
(defhost mz (its 2))

;;;--------------------------------------------------------------------------
;;; Other definitions.

(setf *default-zone-admin* "hostmaster@distorted.org.uk")

(preferred-subnet-case
  (fretwank
   (setf *default-zone-source* 'metalzone.distorted.org.uk.)
   (defhost www-frontend metalzone))
  (t
   (setf *default-zone-source* 'guvnor.distorted.org.uk.)
   (defhost www-frontend guvnor.demon)))

;;;--------------------------------------------------------------------------
;;; Main zone definition.

(defzone distorted.org.uk
  ;;
  ;; Nameservers
  :ns #+subnet/fretwank ((metalzone.ns :ip metalzone)
			 (vampire.ns :ip vampire))
      #-subnet/fretwank ((boyle.ns :ip boyle.nsict.org)
			 (chiark.ns :ip chiark.greenend.org.uk)
			 (guvnor.ns :ip guvnor.demon))
  ;;
  ;; Mail servers
  ((@ mail lists bugs cryptomail)
   :mx mail
   :srv ((:smtp mail)))
  ;;
  ;; Other services
  :srv ((:http www)
	(:ftp ftp))
  ;;
  ;; Colocated services
  ;;((www ftp git) (inet :svc boyle.nsict.org) (fretwank :svc metalzone))
  ;;
  ;; Entry is via little port-forwarding box
  (guvnor (inet :a guvnor.demon) (fretwank :a guvnor))
  ;;
  ;; Wireless gateway
  (wireless :net wireless)
  (evolution (fretwank :a evolution) (wireless :a evolution.wireless))
  ;;
  ;; Local services
  (@ :svc www-frontend)
  ((www ftp wiki git bugs mail rawk)
   (inet :svc guvnor.demon)
   (fretwank :svc metalzone))
  ((db)
   (inet :svc guvnor.demon)
   (fretwank :svc vampire))
  (vox (inet :svc guvnor.demon) (fretwank :svc vampire))
  ;;
  ;; Internal services
  ((news ntp) (fretwank :svc metalzone))
  ((www-cache wpad ntp1) (fretwank :svc vampire))
  ;;
  ;; Wired ethernet
  (fretwank :net fretwank)
  (metalzone (inet :a guvnor.demon) (fretwank :a metalzone))
  (vampire (fretwank :a vampire))
  (tubescreamer (fretwank :a tubescreamer))
  (obsidian (fretwank :a obsidian))
  ;;
  ;; Virtual network
  (virtual :net virtual)
  (fuzzface (virtual :a fuzzface))
  ;;
  ;; ITS
  (its :net its)
  (gw (its :a gw))
  (mz (its :a mz))
  ;;
  ;; Delegations
  #+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns)))

;;;--------------------------------------------------------------------------
;;; Other subsidiary zones.

(defrevzone trusted
  :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
  :reverse trusted
  #+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
  #+subnet/fretwank (@ :cidr-delegation
		       (dhcp
			(dhcp 199.29.172.dhcp.199.29.172.in-addr.arpa))))

(defrevzone untrusted
  :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
  #+subnet/fretwank (wireless :ns (metalzone.ns vampire.ns))
  #+subnet/fretwank (@ :cidr-delegation
		       (wireless
			(wireless
			 198.29.172.wireless.198.29.172.in-addr.arpa))))

(defzone dhcp.distorted.org.uk
  :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
  :net dhcp)

(defzone dhcp.199.29.172.in-addr.arpa
  :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire)))

(defzone wireless.198.29.172.in-addr.arpa
  :ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
  :reverse ((wireless :bytes 4)))

;;;----- That's all, folks --------------------------------------------------
Commit	Line	Data
e80b4c2d MW	1	;;; Zone file for distorted.org.uk
	2
	3	(load "hosts" :verbose nil)
	4
b1d5c6c2 MW	5	;;;--------------------------------------------------------------------------
	6	;;; Network allocations
	7	;;; (RFC1918 addresses are allocated from Cambridge G-RIN.)
	8
e80b4c2d MW	9	(defnet distorted.org.uk 172.29.198.0/23
	10	(untrusted 256
	11	(wireless 64))
	12	(trusted 256
	13	(fretwank 128
	14	(unsafe 32)
	15	(dhcp 32)
	16	(safe 32))
b1d5c6c2 MW	17	(virtual 32)
	18	(its 4)))
	19
	20	;;;--------------------------------------------------------------------------
	21	;;; Host allocations
e80b4c2d	22
b1d5c6c2	23	;; External addresses.
4acd4890	24	(defhost guvnor.demon 80.177.3.76)
2bc217e8	25
b1d5c6c2	26	;; Unsafe network.
2bc217e8 MW	27	(defhost guvnor (unsafe 1))
	28	(defhost metalzone (unsafe 2))
	29	(defhost evolution (unsafe 3))
	30	(defhost vampire (unsafe 4))
	31
b1d5c6c2	32	;; Safe network.
2bc217e8 MW	33	(defhost tubescreamer (safe 1))
	34	(defhost obsidian (safe 2))
	35
b1d5c6c2	36	;; Wireless network.
2bc217e8 MW	37	(defhost evolution.wireless (wireless 1))
2bc217e8 MW	38
b1d5c6c2	39	;; Virtual private network.
2bc217e8	40	(defhost fuzzface (virtual 1))
b1d5c6c2 MW	41
	42	;; Special network for ITS.
	43	;; It doesn't understand point-to-point links, so we need a little net.
	44	(defhost gw (its 1))
	45	(defhost mz (its 2))
	46
	47	;;;--------------------------------------------------------------------------
	48	;;; Other definitions.
e80b4c2d MW	49
e80b4c2d MW	50	(setf default-zone-admin "hostmaster@distorted.org.uk")
2bc217e8 MW	51
	52	(preferred-subnet-case
	53	(fretwank
	54	(setf default-zone-source 'metalzone.distorted.org.uk.)
	55	(defhost www-frontend metalzone))
	56	(t
	57	(setf default-zone-source 'guvnor.distorted.org.uk.)
	58	(defhost www-frontend guvnor.demon)))
e80b4c2d	59
b1d5c6c2 MW	60	;;;--------------------------------------------------------------------------
	61	;;; Main zone definition.
	62
e80b4c2d MW	63	(defzone distorted.org.uk
	64	;;
	65	;; Nameservers
cddf1fa1 MW	66	:ns #+subnet/fretwank ((metalzone.ns :ip metalzone)
	67	(vampire.ns :ip vampire))
	68	#-subnet/fretwank ((boyle.ns :ip boyle.nsict.org)
	69	(chiark.ns :ip chiark.greenend.org.uk)
	70	(guvnor.ns :ip guvnor.demon))
e80b4c2d MW	71	;;
e80b4c2d MW	72	;; Mail servers
96c2a692 MW	73	((@ mail lists bugs cryptomail)
	74	:mx mail
	75	:srv ((:smtp mail)))
	76	;;
	77	;; Other services
	78	:srv ((:http www)
	79	(:ftp ftp))
e80b4c2d MW	80	;;
e80b4c2d MW	81	;; Colocated services
a060fed3	82	;;((www ftp git) (inet :svc boyle.nsict.org) (fretwank :svc metalzone))
e80b4c2d MW	83	;;
e80b4c2d MW	84	;; Entry is via little port-forwarding box
a060fed3	85	(guvnor (inet :a guvnor.demon) (fretwank :a guvnor))
985aff77 MW	86	;;
985aff77 MW	87	;; Wireless gateway
b1d5c6c2	88	(wireless :net wireless)
a060fed3	89	(evolution (fretwank :a evolution) (wireless :a evolution.wireless))
e80b4c2d MW	90	;;
e80b4c2d MW	91	;; Local services
a060fed3	92	(@ :svc www-frontend)
0ac996f4	93	((www ftp wiki git bugs mail rawk)
a060fed3 MW	94	(inet :svc guvnor.demon)
a060fed3 MW	95	(fretwank :svc metalzone))
0ac996f4 MW	96	((db)
	97	(inet :svc guvnor.demon)
	98	(fretwank :svc vampire))
8722942b	99	(vox (inet :svc guvnor.demon) (fretwank :svc vampire))
a060fed3 MW	100	;;
a060fed3 MW	101	;; Internal services
0ac996f4 MW	102	((news ntp) (fretwank :svc metalzone))
0ac996f4 MW	103	((www-cache wpad ntp1) (fretwank :svc vampire))
e80b4c2d MW	104	;;
e80b4c2d MW	105	;; Wired ethernet
b1d5c6c2	106	(fretwank :net fretwank)
a060fed3	107	(metalzone (inet :a guvnor.demon) (fretwank :a metalzone))
2bc217e8	108	(vampire (fretwank :a vampire))
985aff77	109	(tubescreamer (fretwank :a tubescreamer))
4acd4890	110	(obsidian (fretwank :a obsidian))
b1d5c6c2 MW	111	;;
	112	;; Virtual network
	113	(virtual :net virtual)
985aff77	114	(fuzzface (virtual :a fuzzface))
e80b4c2d	115	;;
b1d5c6c2 MW	116	;; ITS
	117	(its :net its)
	118	(gw (its :a gw))
	119	(mz (its :a mz))
b3f75214	120	;;
b1d5c6c2 MW	121	;; Delegations
	122	#+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns)))
	123
	124	;;;--------------------------------------------------------------------------
	125	;;; Other subsidiary zones.
e80b4c2d MW	126
e80b4c2d MW	127	(defrevzone trusted
2bc217e8	128	:ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
b3f75214 MW	129	:reverse trusted
	130	#+subnet/fretwank (dhcp :ns (metalzone.ns vampire.ns))
	131	#+subnet/fretwank (@ :cidr-delegation
	132	(dhcp
	133	(dhcp 199.29.172.dhcp.199.29.172.in-addr.arpa))))
	134
e80b4c2d	135	(defrevzone untrusted
2bc217e8	136	:ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
5094e793 MW	137	#+subnet/fretwank (wireless :ns (metalzone.ns vampire.ns))
	138	#+subnet/fretwank (@ :cidr-delegation
	139	(wireless
	140	(wireless
	141	198.29.172.wireless.198.29.172.in-addr.arpa))))
b3f75214 MW	142
b3f75214 MW	143	(defzone dhcp.distorted.org.uk
340f4f62	144	:ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
b3f75214 MW	145	:net dhcp)
	146
	147	(defzone dhcp.199.29.172.in-addr.arpa
340f4f62	148	:ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire)))
5094e793 MW	149
	150	(defzone wireless.198.29.172.in-addr.arpa
	151	:ns ((metalzone.ns :ip metalzone) (vampire.ns :ip vampire))
	152	:reverse ((wireless :bytes 4)))
b1d5c6c2 MW	153
b1d5c6c2 MW	154	;;;----- That's all, folks --------------------------------------------------