c3d2/dns
c3d2/dns
22
0
Fork 0
Code Issues 1 Pull Requests Releases Activity

Copy from https://gitea.c3d2.de/c3d2-admins/c3d2-dns

Browse Source
This commit is contained in:
Sandro - 2024-05-05 15:36:18 +02:00
commit f71ec8cc6f
Signed by: sandro
GPG Key ID: 3AF5A43A3EECC2E5
22 changed files with 766 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

27
.drone.yml Normal file
View File

@ -0,0 +1,27 @@
---
# don't forget to sign with:
# drone sign c3d2-admins/c3d2-dns --save
kind: pipeline
type: ssh
name: deploy dns
server:
host: knot.serv.zentralwerk.org
user: knot
ssh_key:
from_secret: ssh_key
clone:
depth: 25
steps:
- name: deploy DNS
commands:
- nix build .#packages.x86_64-linux.all
- rsync --delete --exclude=.drone.yaml --exclude=/.git --exclude=/.ssh -r *.zone result/*.zone /var/lib/knot/zones/
- if systemctl is-active -q knot; then /run/wrappers/bin/sudo reload-knot; fi
---
kind: signature
hmac: 190a6c8f10422ca7a00c69a5578e8a71be66b3a1e4a7e12a0dc619ca71c6b8b4
...

17
2001-67c-1400-2240.ip6.arpa.zone Normal file
View File

@ -0,0 +1,17 @@
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
$TTL 600
@ IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns1.supersandro.de.
2.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 IN PTR mail.c3d2.de.
a.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 IN PTR ns.c3d2.de.

24
2a0f-5382-acab-1400.ip6.arpa.zone Normal file
View File

@ -0,0 +1,24 @@
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
@ IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns1.supersandro.de.
$ORIGIN 0.0.0.0.0.0.0.0.0.0.0.0.0.0.4.1.b.a.c.a.2.8.3.5.f.0.a.2.ip6.arpa.
2.2.0.0 IN PTR sshlog.flpk.zentralwerk.org.
4.a.0.0 IN PTR caveman.flpk.zentralwerk.org.
5.a.0.0 IN PTR ctf.flpk.zentralwerk.org.
6.a.0.0 IN PTR mastodon.flpk.zentralwerk.org.
7.a.0.0 IN PTR c3d2-web.flpk.zentralwerk.org.
8.a.0.0 IN PTR mail.flpk.zentralwerk.org.
9.a.0.0 IN PTR dresden-zone-dns.flpk.zentralwerk.org.
a.a.0.0 IN PTR server7.flpk.zentralwerk.org.
b.a.0.0 IN PTR rtrlab.flpk.zentralwerk.org.
2.d.3.c IN PTR flpk-gw.flpk.zentralwerk.org.

20
40.158.45.in-addr.arpa.zone Normal file
View File

@ -0,0 +1,20 @@
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
@ IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns1.supersandro.de.
160 IN PTR flpk-gw.flpk.zentralwerk.org.
163 IN PTR sshlog.flpk.zentralwerk.org.
164 IN PTR caveman.flpk.zentralwerk.org.
166 IN PTR mastodon.flpk.zentralwerk.org.
167 IN PTR c3d2-web.flpk.zentralwerk.org.
168 IN PTR mail.flpk.zentralwerk.org.
253 IN PTR dn42.hq.c3d2.de.

27
99.22.172.in-addr.arpa.zone Normal file
View File

@ -0,0 +1,27 @@
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
@ IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns1.supersandro.de.
40 IN PTR xeri.hq.c3d2.de.
41 IN PTR roxi.hq.c3d2.de.
203 IN PTR dacbert.hq.c3d2.de.
204 IN PTR schalter.hq.c3d2.de.
205 IN PTR glotzbert.hq.c3d2.de.
206 IN PTR ledbeere.hq.c3d2.de.
207 IN PTR ledball1.hq.c3d2.de.
208 IN PTR pulsebert.hq.c3d2.de.
210 IN PTR ruststripe1.hq.c3d2.de.
253 IN PTR dn42.hq.c3d2.de.
250 IN PTR bgp.c3d2.zentralwerk.dn42.
1 IN PTR c3d2-anon.c3d2.zentralwerk.dn42.
4 IN PTR c3d2-gw.c3d2.zentralwerk.dn42.

150
c3d2.de.zone Normal file
View File

@ -0,0 +1,150 @@
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns1.supersandro.de.
IN CAA 128 iodef "mailto:mail@c3d2.de"
IN CAA 0 issue "letsencrypt.org"
IN CAA 0 issuewild "letsencrypt.org"
IN CAA 0 issuewild "letsencrypt.org"
IN MX 10 mail.c3d2.de.
; mail.c3d2.de dsi inbert
IN TXT "v=spf1 ip4:217.197.84.50 ip6:2001:67c:1400:2240::2 ip4:81.201.149.152 ip6:2a00:8180:2c00:282::/64 ip4:85.190.176.26 ip6:2001:67c:1400:2240::/56 mx -all"
IN TXT "v=DMARC1; p=none"
IN A 45.158.40.167
IN AAAA 2a0f:5382:acab:1400::a7
;;; Mail
mail IN A 217.197.84.50
IN AAAA 2001:67c:1400:2240::2
_submission._tcp IN SRV 10 0 587 mail.c3d2.de.
_submission._tcp.mail IN SRV 10 0 587 mail.c3d2.de.
_imap._tcp IN SRV 0 0 0 .
_imap._tcp.mail IN SRV 0 0 0 .
_imaps._tcp IN SRV 5 0 143 mail.c3d2.de.
_imaps._tcp.mail IN SRV 5 0 143 mail.c3d2.de.
_imaps._tcp IN SRV 10 0 993 mail.c3d2.de.
_imaps._tcp.mail IN SRV 10 0 993 mail.c3d2.de.
_pop3._tcp IN SRV 0 0 0 .
_pop3._tcp.mail IN SRV 0 0 0 .
_pop3s._tcp IN SRV 20 0 995 mail.c3d2.de.
_pop3s._tcp.mail IN SRV 20 0 995 mail.c3d2.de.
_autodiscover._tcp IN SRV 5 0 80 c3d2.de.
_autodiscover._tcp.mail IN SRV 5 0 80 c3d2.de.
ns IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:cd7:56ff:fe69:6366
dyn IN NS ns.c3d2.de.
hq IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns1.supersandro.de.
inbert IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns1.supersandro.de.
lists IN A 217.197.84.50
IN AAAA 2001:67c:1400:2240::2
lists IN MX 50 mail.c3d2.de.
;;; Web
www IN A 45.158.40.167
IN AAAA 2a0f:5382:acab:1400::a7
IN MX 50 mail.c3d2.de.
oldwww IN A 217.197.84.51
IN AAAA 2001:67c:1400:2240::3
datenspuren IN CNAME www
ds IN CNAME www
pentapad IN CNAME oldwww
media IN CNAME oldwww
status IN CNAME neon.s6o.de.
;;; can't use CNAME because public-access-proxy (haproxy) can't proxy that properly
auth IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
autotopia IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
blogs IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
codimd IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
drone IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
element IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
ftp IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282::47
gemini IN AAAA 2a00:8180:2c00:223:58f4:2eff:fe48:5216
gitea IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:702a:daff:fe35:83be
hackmd IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
hedgedoc IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
mate IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
matemat IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
matrix IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
mobilizon IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
openpgpkey IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
owncast IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282::32
pretalx IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
stream IN A 176.9.171.29
IN AAAA 2a01:4f8:151:7202:f01a:ffff:fe17:ff83
ticker IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
wiki IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
vaultwarden IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
;;; jabber
jabber IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:b869:ccff:fe46:902a
*.jabber IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:b869:ccff:fe46:902a
_jabber._tcp.jabber IN SRV 1 1 5269 jabber.c3d2.de.
_xmpp-client._tcp.jabber IN SRV 1 1 5222 jabber.c3d2.de.
_xmpps-client._tcp.jabber IN SRV 1 1 5223 jabber.c3d2.de.
_xmpp-server._tcp.jabber IN SRV 1 1 5269 jabber.c3d2.de.
_xmpps-server._tcp.jabber IN SRV 1 1 5270 jabber.c3d2.de.
_jabber._tcp.chat IN SRV 1 1 5269 jabber.c3d2.de.
_xmpp-client._tcp.chat IN SRV 1 1 5222 jabber.c3d2.de.
_xmpp-server._tcp.chat IN SRV 1 1 5269 jabber.c3d2.de.
_jabber._tcp.upload.jabber IN SRV 1 1 5269 jabber.c3d2.de.
_xmpp-client._tcp.upload.jabber IN SRV 1 1 5222 jabber.c3d2.de.
_xmpp-server._tcp.upload.jabber IN SRV 1 1 5269 jabber.c3d2.de.
turn.jabber IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:b869:ccff:fe46:902a
jabber IN MX 50 mail.c3d2.de.
chat IN MX 50 mail.c3d2.de.
dn42 IN A 217.197.84.54
IN AAAA 2001:67c:1400:2240::d
;;; must match c3d2.social
social IN A 45.158.40.166
IN AAAA 2a0f:5382:acab:1400::a6

13
c3d2.ffdd.zone Normal file
View File

@ -0,0 +1,13 @@
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
IN NS ns.c3d2.de.
IN A 10.200.200.74
* IN A 10.200.200.74

35
c3d2.social.zone Normal file
View File

@ -0,0 +1,35 @@
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
IN NS ns.c3d2.de.
; TODO IN NS ns.spaceboyz.net.
IN NS ns1.supersandro.de.
IN CAA 128 iodef "mailto:mail@c3d2.de"
IN CAA 0 issue "letsencrypt.org"
IN CAA 0 issuewild "letsencrypt.org"
IN CAA 0 issuewild "letsencrypt.org"
IN MX 10 mail.flpk.zentralwerk.org.
_imap._tcp IN SRV 5 0 143 mail.flpk.zentralwerk.org.
_imaps._tcp IN SRV 5 0 993 mail.flpk.zentralwerk.org.
_pop3._tcp IN SRV 5 0 110 mail.flpk.zentralwerk.org.
_pop3s._tcp IN SRV 5 0 995 mail.flpk.zentralwerk.org.
_submission._tcp IN SRV 5 0 587 mail.flpk.zentralwerk.org.
_submissions._tcp IN SRV 5 0 465 mail.flpk.zentralwerk.org.
; mx resolves to the same IPs
IN TXT "v=spf1 ip4:45.158.40.168 ip6:2a0f:5382:acab:1400::a8 mx -all"
_dmarc IN TXT "v=DMARC1; p=none"
default._domainkey IN TXT "v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1Gj20I965rhuHQxV2+6SW9c8Iln005Y3lHfGbYF6duYgUAucj5v7M7h2vbSrAmEzx4L+xPrA5/FQTIfrX9SoH6EeFgixRqCPESuPBQt+PcjJCHGQF1Co/stEWFurXi1knzEDqcwP7fPdID0tm8iQzExsW2TxBNK1hGocKCA9N3VoZ1puPCDC5Li5AHN/1O20dv/d7Hgs98YfNxyQ6/woBflIrHQDuwcnPt3ZCd6aT2PW6Fgk8miJ49eeduG1UTGUICbaO2x2YczT3jHCNDiaXLGD5yLKt0o+9azL0J/QEyBu94AZhBGRUwcOgjG1GDmA10zYXAvvxXPVsiM6bc0wQIDAQAB"
@ IN A 45.158.40.166
IN AAAA 2a0f:5382:acab:1400::a6

6
c3d2.space.nix Normal file
View File

@ -0,0 +1,6 @@
{
# basically this, but knot can't do cname flattening
# CNAME = [ "c3d2.de." ];
A = [ "45.158.40.167" ];
AAAA = [ "2a0f:5382:acab:1400::a7" ];
}

29
c3dd.de.zone Normal file
View File

@ -0,0 +1,29 @@
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns0.q-ix.net. ; TODO: drop
IN NS ns1.supersandro.de.
IN MX 10 mail.c3d2.de.
IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
www IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
ftp IN CNAME ftp.c3d2.de.
pm IN CNAME oldwww.c3d2.de.
pentamedia IN CNAME oldwww.c3d2.de.
mail IN CNAME mail.c3d2.de.
pop IN CNAME mail
smtp IN CNAME mail
imap IN CNAME mail

30
cccdd.de.zone Normal file
View File

@ -0,0 +1,30 @@
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns0.q-ix.net. ; TODO: drop
IN NS ns1.supersandro.de.
IN MX 10 mail.c3d2.de.
IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
www IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
pm IN CNAME oldwww.c3d2.de.
pentamedia IN CNAME oldwww.c3d2.de.
ftp IN CNAME ftp.c3d2.de.
mail IN CNAME mail.c3d2.de.
pop IN CNAME mail
smtp IN CNAME mail
imap IN CNAME mail

30
datenspuren.de.zone Normal file
View File

@ -0,0 +1,30 @@
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns1.supersandro.de.
IN CAA 128 iodef "mailto:mail@c3d2.de"
IN CAA 0 issue "letsencrypt.org"
IN CAA 0 issuewild "letsencrypt.org"
IN CAA 0 issuewild "letsencrypt.org"
IN MX 10 mail.c3d2.de.
; mail.c3d2.de inbert
IN TXT "v=spf1 ip4:217.197.84.50 ip6:2001:67c:1400:2240::2 ip4:85.190.176.26 ip6:2001:67c:1400:2240::/56 mx -all"
IN TXT "v=DMARC1; p=none"
IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
www IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
stream IN CNAME rtmp.11ds.c3voc.de.
talks IN CNAME pretalx.c3d2.de.

24
dresden.ccc.de.zone Normal file
View File

@ -0,0 +1,24 @@
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns1.supersandro.de.
IN CAA 128 iodef "mailto:mail@c3d2.de"
IN CAA 0 issue "letsencrypt.org"
IN CAA 0 issuewild "letsencrypt.org"
IN CAA 0 issuewild "letsencrypt.org"
IN MX 10 mail.c3d2.de.
IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
www IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7

16
dyn.hq.c3d2.de.zone Normal file
View File

@ -0,0 +1,16 @@
$TTL 600 ; 10 minutes
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
@ IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns1.supersandro.de.
$TTL 30
ppp0 IN A 0.0.0.0

64
flake.lock Normal file
View File

@ -0,0 +1,64 @@
{
"nodes": {
"dns-nix": {
"inputs": {
"flake-utils": "flake-utils",
"nixpkgs": [
"nixpkgs"
]
},
"locked": {
"lastModified": 1703643450,
"narHash": "sha256-EUUF5oxFFPX/etKm0FNQg+7MPHQlNjmM1XhNgyDf7A0=",
"owner": "SuperSandro2000",
"repo": "dns.nix",
"rev": "70dcce71560d4253f63812fa36dee994c81ae814",
"type": "github"
},
"original": {
"owner": "SuperSandro2000",
"repo": "dns.nix",
"type": "github"
}
},
"flake-utils": {
"locked": {
"lastModified": 1614513358,
"narHash": "sha256-LakhOx3S1dRjnh0b5Dg3mbZyH0ToC9I8Y2wKSkBaTzU=",
"owner": "numtide",
"repo": "flake-utils",
"rev": "5466c5bbece17adaab2d82fae80b46e807611bf3",
"type": "github"
},
"original": {
"owner": "numtide",
"repo": "flake-utils",
"type": "github"
}
},
"nixpkgs": {
"locked": {
"lastModified": 1714596155,
"narHash": "sha256-oUiGUoKdB/HtessWs1251lgiuU9VwF/iz1j2r9MsItA=",
"owner": "SuperSandro2000",
"repo": "nixpkgs",
"rev": "04a590b7cf4c27d7c0709fc8c043845b5fe0aae3",
"type": "github"
},
"original": {
"owner": "SuperSandro2000",
"ref": "nixos-23.11",
"repo": "nixpkgs",
"type": "github"
}
},
"root": {
"inputs": {
"dns-nix": "dns-nix",
"nixpkgs": "nixpkgs"
}
}
},
"root": "root",
"version": 7
}

40
flake.nix Normal file
View File

@ -0,0 +1,40 @@
{
description = "Zone file templating";
inputs = {
dns-nix = {
url = "github:SuperSandro2000/dns.nix";
inputs.nixpkgs.follows = "nixpkgs";
};
nixpkgs.url = "github:SuperSandro2000/nixpkgs/nixos-23.11";
};
outputs = { dns-nix, nixpkgs, ... }: let
util = dns-nix.util.x86_64-linux;
inherit (nixpkgs) lib;
pkgs = nixpkgs.legacyPackages.x86_64-linux;
in {
packages.x86_64-linux = let
src = builtins.filterSource (path: type: let
baseName = baseNameOf path;
in type == "regular" && lib.hasSuffix ".nix" baseName && (!lib.any (x: baseName == x) [ "flake.nix" "template.nix" ])) ./.;
template = import ./template.nix;
zones = lib.listToAttrs (map
(file: let
zone = lib.removeSuffix ".nix" file;
in {
name = zone;
value = util.writeZone zone (lib.recursiveUpdate template (import "${src}/${file}"));
})
(lib.attrNames (builtins.readDir src))
);
all = pkgs.runCommandNoCC "all-zones" { } (''
mkdir -p $out
'' + (lib.concatStrings (lib.attrValues (lib.mapAttrs (zone: drv: ''
cp ${drv} $out/${zone}.zone
'') zones))));
in { inherit all; } // zones;
};
}

83
hq.c3d2.de.zone Normal file
View File

@ -0,0 +1,83 @@
$TTL 600 ; 10 minutes
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
@ IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns1.supersandro.de.
public-access-proxy IN A 172.22.99.27
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
; vhosts through public-access-proxy
adsb IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
dacbert IN A 172.22.99.203
IN AAAA 2a00:8180:2c00:223:dea6:32ff:fee0:46bf
dn42 IN A 172.22.99.253
IN AAAA 2a00:8180:2c00:223::ffff
drkkr IN CNAME pipebert
drucker IN CNAME pipebert
drone IN A 172.20.73.77
IN AAAA 2a00:8180:2c00:282::2b
glotzbert IN A 172.22.99.205
IN AAAA 2a00:8180:2c00:223:921b:eff:fe88:da0a
grafana IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:4042:fbff:fe4b:2de8
home-assistant IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:d049:95ff:fea2:4e44
hydra IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
ledfx IN CNAME pipebert
matemat IN A 172.20.73.21
IN AAAA 2a00:8180:2c00:282:f82b:1bff:fedc:8572
mopidy IN CNAME pipebert
nix-cache IN CNAME hydra
oxigraph IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
pipebert IN A 172.22.99.209
IN AAAA 2a00:8180:2c00:223:eea8:6bff:fefe:b4cb
pulsebert IN A 172.22.99.208
IN AAAA 2a00:8180:2c00:223:ba27:ebff:fe16:3161
riscbert IN A 172.22.99.202
schalter IN A 172.22.99.204
IN AAAA 2a00:8180:2c00:223:ba27:ebff:feac:65d2
scrape IN AAAA 2a00:8180:2c00:282:e073:50ff:fef5:eb6e
IN A 81.201.149.152
sdr IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
spaceapi IN AAAA 2a00:8180:2c00:282:1457:adff:fe93:62e9
storage IN AAAA 2a00:8180:2c00:223::20
IN A 172.22.99.20
stream IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
torrents IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
; Xerox-Printer
xeri IN A 172.22.99.40
IN AAAA 2a00:8180:2c00:223:a00:37ff:fe81:93b0
roxi IN A 172.22.99.41
; Services for HQ LEDs
; LED an Traverse
esp-proc IN A 172.22.99.211
esp-sdk IN A 172.22.99.212
ledbeere IN A 172.22.99.206
IN AAAA 2a00:8180:2c00:223:ba27:ebff:fe60:9959
ledball1 IN A 172.22.99.207
ruststripe1 IN A 172.22.99.210
; LED Röhre (?)
ustriper IN A 172.22.99.82
IN AAAA 2a00:8180:2c00:223:a8bb:95ff:fe33:bbaa
; DHCP ranges
;$GENERATE 100-200 chaos-$ IN A 172.22.99.$
; Public IPv4 space via tunnel on wormbert
;$GENERATE 128-159 node-$ IN A 217.115.11.$

32
inbert.c3d2.de.zone Normal file
View File

@ -0,0 +1,32 @@
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns1.supersandro.de.
IN A 217.197.83.184
IN AAAA 2001:67c:1400:2240::1
mail IN A 172.22.100.7
IN AAAA 2001:67c:1400:2240::2
db IN A 172.22.100.8
IN AAAA 2a00:1828:a008:108::1
;; contains etherpad
cloudybay IN A 172.22.100.10
IN AAAA 2a00:1828:a008:110::1
web IN A 172.22.100.3
IN AAAA 2001:67c:1400:2240::3
;; contains mediagoblin
wiki IN A 172.22.100.6
IN AAAA 2a00:1828:a008:106::1

40
netzbiotop.org.zone Normal file
View File

@ -0,0 +1,40 @@
;;; domain liegt bei namecheap, bis 2031 registriert
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns1.supersandro.de.
IN MX 10 mail.flpk.zentralwerk.org.
_imap._tcp IN SRV 5 0 143 mail.flpk.zentralwerk.org.
_imaps._tcp IN SRV 5 0 993 mail.flpk.zentralwerk.org.
_pop3._tcp IN SRV 5 0 110 mail.flpk.zentralwerk.org.
_pop3s._tcp IN SRV 5 0 995 mail.flpk.zentralwerk.org.
_submission._tcp IN SRV 5 0 587 mail.flpk.zentralwerk.org.
_submissions._tcp IN SRV 5 0 465 mail.flpk.zentralwerk.org.
; mx resolves to the same IPs
IN TXT "v=spf1 ip4:45.158.40.168 ip6:2a0f:5382:acab:1400::a8 mx -all"
_dmarc IN TXT "v=DMARC1; p=none"
default._domainkey IN TXT "v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1Gj20I965rhuHQxV2+6SW9c8Iln005Y3lHfGbYF6duYgUAucj5v7M7h2vbSrAmEzx4L+xPrA5/FQTIfrX9SoH6EeFgixRqCPESuPBQt+PcjJCHGQF1Co/stEWFurXi1knzEDqcwP7fPdID0tm8iQzExsW2TxBNK1hGocKCA9N3VoZ1puPCDC5Li5AHN/1O20dv/d7Hgs98YfNxyQ6/woBflIrHQDuwcnPt3ZCd6aT2PW6Fgk8miJ49eeduG1UTGUICbaO2x2YczT3jHCNDiaXLGD5yLKt0o+9azL0J/QEyBu94AZhBGRUwcOgjG1GDmA10zYXAvvxXPVsiM6bc0wQIDAQAB"
IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
www IN A 81.201.149.152
IN AAAA 2a00:8180:2c00:282:1024:5fff:febd:9be7
autoconfig IN CNAME mail.flpk.zentralwerk.org.
autodiscover IN CNAME mail.flpk.zentralwerk.org.
imap IN CNAME mail.flpk.zentralwerk.org.
mail IN CNAME mail.flpk.zentralwerk.org.
pop IN CNAME mail.flpk.zentralwerk.org.
smtp IN CNAME mail.flpk.zentralwerk.org.

24
pentamedia.org.zone Normal file
View File

@ -0,0 +1,24 @@
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
@ IN NS ns.c3d2.de.
IN NS ns.spaceboyz.net.
IN NS ns0.q-ix.net. ; TODO: drop
IN NS ns1.supersandro.de.
IN A 217.197.84.51
IN AAAA 2001:67c:1400:2240::3
www IN A 217.197.84.51
IN AAAA 2001:67c:1400:2240::3
update IN A 217.197.84.51
IN AAAA 2001:67c:1400:2240::3
ssh IN AAAA 2001:6f8:900:8ce4:200:c3ff:fed2:2
stream IN CNAME stream.c3d2.de.

17
template.nix Normal file
View File

@ -0,0 +1,17 @@
{
TTL = 3600;
SOA = {
nameServer = "ns.c3d2.de.";
adminEmail = "hostmaster@c3d2.de";
serial = 0; # automatically bumped by knot
refresh = 14400;
retry = 1800;
expire = 604800;
minimum = 600;
};
NS = [
"ns.c3d2.de."
"ns.spaceboyz.net."
"ns1.supersandro.de."
];
}

18
zentralwerk.ffdd.zone Normal file
View File

@ -0,0 +1,18 @@
$TTL 3600 ; 1 hour
@ IN SOA ns.c3d2.de. hostmaster.c3d2.de. (
0 ; serial, auto-incremented by knot
14400 ; refresh (4 hours)
1800 ; retry (30 minutes)
604800 ; expire (1 week)
600 ; minimum (10 minutes)
)
IN NS ns.c3d2.de.
IN A 10.200.200.74
turm-d-ost IN A 10.200.4.80
turm-c-ost IN A 10.200.4.120
turm-c-nord IN A 10.200.7.80
turm-c-west IN A 10.200.7.100
turm-c-sued IN A 10.200.7.107