aboutsummaryrefslogtreecommitdiffstats
path: root/deployment/dns/templates
diff options
context:
space:
mode:
Diffstat (limited to 'deployment/dns/templates')
-rw-r--r--deployment/dns/templates/2.1.0.0.0.0.0.1.b.0.e.0.1.0.a.2.ip6.arpa.zone6
-rw-r--r--deployment/dns/templates/7.0.0.0.2.0.0.0.8.7.1.2.2.0.a.2.ip6.arpa.zone10
-rw-r--r--deployment/dns/templates/mageia.fr.zone27
-rw-r--r--deployment/dns/templates/mageia.org.zone260
4 files changed, 155 insertions, 148 deletions
diff --git a/deployment/dns/templates/2.1.0.0.0.0.0.1.b.0.e.0.1.0.a.2.ip6.arpa.zone b/deployment/dns/templates/2.1.0.0.0.0.0.1.b.0.e.0.1.0.a.2.ip6.arpa.zone
index 166408b4..8ab67138 100644
--- a/deployment/dns/templates/2.1.0.0.0.0.0.1.b.0.e.0.1.0.a.2.ip6.arpa.zone
+++ b/deployment/dns/templates/2.1.0.0.0.0.0.1.b.0.e.0.1.0.a.2.ip6.arpa.zone
@@ -1,10 +1,10 @@
$TTL 3D
@ IN SOA ns0.mageia.org. root.mageia.org. (
- 2012110200 ; Serial
+ 2024090202 ; Serial
3600 ; Refresh
3600 ; Retry
- 2419200 ; Expire
- 86400 ; Minimum TTL
+ 3600000 ; Expire
+ 3600 ; Minimum TTL
)
; nameservers
diff --git a/deployment/dns/templates/7.0.0.0.2.0.0.0.8.7.1.2.2.0.a.2.ip6.arpa.zone b/deployment/dns/templates/7.0.0.0.2.0.0.0.8.7.1.2.2.0.a.2.ip6.arpa.zone
index 8a7007df..fdb83e63 100644
--- a/deployment/dns/templates/7.0.0.0.2.0.0.0.8.7.1.2.2.0.a.2.ip6.arpa.zone
+++ b/deployment/dns/templates/7.0.0.0.2.0.0.0.8.7.1.2.2.0.a.2.ip6.arpa.zone
@@ -1,10 +1,10 @@
$TTL 3D
@ IN SOA ns0.mageia.org. root.mageia.org. (
- 2012092801 ; Serial
+ 2024090202 ; Serial
3600 ; Refresh
3600 ; Retry
- 2419200 ; Expire
- 86400 ; Minimum TTL
+ 3600000 ; Expire
+ 3600 ; Minimum TTL
)
; nameservers
@@ -12,10 +12,8 @@ $TTL 3D
@ IN NS ns1.mageia.org.
1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 IN PTR gw-ipv6.mageia.org.
-2.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 IN PTR alamut.mageia.org.
-3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 IN PTR valstar.mageia.org.
4.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 IN PTR ecosse.mageia.org.
-5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 IN PTR jonund.mageia.org.
6.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 IN PTR fiona.mageia.org.
7.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 IN PTR sucuk.mageia.org.
8.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 IN PTR rabbit.mageia.org.
+9.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 IN PTR duvel.mageia.org.
diff --git a/deployment/dns/templates/mageia.fr.zone b/deployment/dns/templates/mageia.fr.zone
deleted file mode 100644
index 70ecc840..00000000
--- a/deployment/dns/templates/mageia.fr.zone
+++ /dev/null
@@ -1,27 +0,0 @@
-; cfengine-distributed file
-; local modifications will be lost
-; $Id$
-$TTL 3D
-@ IN SOA ns0.mageia.org. mageia.fr. (
- 2010110200 ; Serial
- 21600 ; Refresh
- 3600 ; Retry
- 2419200 ; Expire
- 86400 ; Minmun TTL
- )
-
-; nameservers
-@ IN NS ns0.mageia.org.
-@ IN NS ns1.mageia.org.
-
-@ IN MX 10 mx0.zarb.org.
-@ IN MX 20 mx1.zarb.org.
-
-; MX
-;@ IN MX 10 mx0.zarb.org.
-
-; machines
-mageia.fr. IN A 212.85.158.22
-
-; aliases
-www IN CNAME mageia.fr.
diff --git a/deployment/dns/templates/mageia.org.zone b/deployment/dns/templates/mageia.org.zone
index 69b43b75..a04ca19b 100644
--- a/deployment/dns/templates/mageia.org.zone
+++ b/deployment/dns/templates/mageia.org.zone
@@ -1,138 +1,174 @@
+<%-
+ # nodes list defined in puppet/manifests/nodes_ip.pp
+ nodes = scope.lookupvar('::nodes_ipaddr')
+-%>
; puppet-distributed file
; local modifications will be lost
; $Id$
-$TTL 1h
+$TTL 30m
@ IN SOA ns0.mageia.org. root.mageia.org. (
- 2012110200 ; Serial
- 21600 ; Refresh
+ 2025100701 ; Serial
+ 7200 ; Refresh
3600 ; Retry
- 2419200 ; Expire
- 86400 ; Minmun TTL
+ 3600000 ; Expire
+ 300 ; Minimum TTL
)
; nameservers
@ IN NS ns0.mageia.org.
@ IN NS ns1.mageia.org.
-@ IN MX 10 mx0.zarb.org.
-@ IN MX 20 mx1.zarb.org.
+@ IN MX 10 sucuk.mageia.org.
+@ IN MX 20 neru.mageia.org.
+
+; DKIM for mageia.org
+sucuk._domainkey IN TXT "v=DKIM1; k=rsa; t=s; s=email; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDGH25Jb2Al84XlTfSWuqZL8f6K6b+QhJjvV3zbF1/t31WmLwEt0So+p3FbFeKmaq/e0nJ+wKteTSVZsl3xwux+MaARKJDpEXslEgy+ojCedWqqpP6xLUjPuYPimGPljwkLwDoJxwvjiLa2POebec7C+R/nzaGm2nnTFwYQomqlvQIDAQAB"
+sucuk._domainkey.group IN TXT "v=DKIM1; k=rsa; t=s; s=email; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDBRrdmAaYpDBHCtzkephaLX9LrMFJvgq84dS0ogTIb0xD32qxQF69FU/gEUlfTjzJooTJQC3PK7R3oLnfoWttMlbHCGg/llSfoSI0gD/4UolZokzWZY3qdqMz+zKi9+bfjz0y4Fwx5EPyda1ihHhVB6c+wq6cekhDNOH8PHhO74QIDAQAB"
+sucuk._domainkey.duvel IN TXT "v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDHYgFMZTHMYlymX0WJ17ZvgchABE+5O/c6np1gj5sBV2BPIJGs+h/i+Iq6jLYVhSOWEI+6wQKza/8r3Vr4ddi3/UPDzllfqMnKsbPHC/LscyIkQmpNiO2n0nIUhKbuVU1SsRC1B8svO9iNmEjg33/lrLiaV3DtDbGr0ozmBmeFVwIDAQAB"
+sucuk._domainkey.fiona IN TXT "v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeFoY9MTeZD4Z3OnxUJvp6Nr5UF6+rBwCg0TwVWwe/17uCQ4M6ptDxPSGgVIMYJowg/VUcbqNLlt56kluC4mO/gVVUyPQe6EjYib+NV5PkvgHx2TOJfb27ANPiZ4f57eEFqmE3eD7SxqUqF9j2Vobt0J+XgFuyFUBzHZsRTNUpzQIDAQAB"
+sucuk._domainkey.forums IN TXT "v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDEVhhONroS/ayEPs+9fmom34EWsny7asKVxIuyJh8EzvPJmx6ODYtX/tN1ul++3xoFNHeAe5YSSGyK+7EgJ5E5wlhw6FwnHPnYp/eMsShDI2dyfYsQnS2Yc1VXkI9s83ZWaVTL9uPRDETMKDIF+QjljFQZAN+eaH55q9u3EZRrWwIDAQAB"
+sucuk._domainkey.identity IN TXT "v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDBv4aqFb9cQQkPB30zRfCtcquWKsP5G2Nhh3HSEdN0fFvOegQnGykuGq6lDED9iJuiNSVGO2cjtWtFTwX3+1/W1AW7pmaUD7U9HzPoZgxGPWtvFcJ/tZ1mjKNoGaPa5vLaVpXwxNKjPUCI+w2t5cM8JPnemW1Vm/LeEJ0XLE0InwIDAQAB"
+sucuk._domainkey.madb IN TXT "v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDI9WOO3aRQLLnXc08q9HP15VY79TQZR5GqdBcYu0H+jAiuR+OKz6NUSNoYdeNQ4FSvrz27elW6thNcKQg4wYNT4tsJ8d4OU5ScFcrPJszPucVyMpkl/ybCgVq0CmXgOh1yXYwl2YY4AfzUQ6skpTE5G2abIWBvPOvs8Q92vYJ1nwIDAQAB"
+sucuk._domainkey.rabbit IN TXT "v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZYdG5dEd0CHAYGPRG+OXm2gJTDVpjmsKkn5+4BISToAOXXyogRcJN/P6oPySlG+CyUl5PW/2nBIiiUfHNKxVSa9gPO3vS0nlEppSHulkhth4deNu8YXRgJQp31IgaD0/Cbu7CKcDJbxTKGdnMV7XPKoIxB/Mjn0TxUS+WC2WY6QIDAQAB"
+sucuk._domainkey.sucuk IN TXT "v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDdzn4W4Tl4sJ0pfhktNVlWRYFXnIwaMENqmi2vgc/P8M/zVxysVuWPcEwhy+IiVT8tMleXMt9dreErzJS+8ZmMd8oTqRXM55ZzRuBtqiecKnbIrXpecYUhh+2o0BMouTRHZvrPK5PV6Y2PrXkXwLF8qOS/eslZDk7hLRk2XBVDWwIDAQAB"
+sucuk._domainkey.ml IN TXT "v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC4uPUsb1kvNCXT1AsEBldhU/9akmeRrRHOQtI8g60K+y2fRRur5l+TJDZ/+bnyVS69AMhyfeWEaWGhQytvmkKZBQyHZ6JzS2him+HT/x7xCYOHlQ5vixy0t4jYqbYZ04pdokJ4jcJ3pU7CFisgzk2Ln7HA4JDD1Dc+kCYbOvivtQIDAQAB"
+sucuk._domainkey.neru IN TXT "v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC4uPUsb1kvNCXT1AsEBldhU/9akmeRrRHOQtI8g60K+y2fRRur5l+TJDZ/+bnyVS69AMhyfeWEaWGhQytvmkKZBQyHZ6JzS2him+HT/x7xCYOHlQ5vixy0t4jYqbYZ04pdokJ4jcJ3pU7CFisgzk2Ln7HA4JDD1Dc+kCYbOvivtQIDAQAB"
; TODO use a loop here
-ml IN MX 10 alamut.mageia.org.
-ml IN MX 20 krampouezh.mageia.org.
+ml IN MX 10 sucuk.mageia.org.
+ml IN MX 20 neru.mageia.org.
-group IN MX 10 alamut.mageia.org.
-group IN MX 20 krampouezh.mageia.org.
+; Sender Policy Framework for mailing lists & some automated mails
+@ IN TXT "v=spf1 include:smtp.dnamail.fi mx ~all"
+ml IN TXT "v=spf1 mx ~all"
+group IN TXT "v=spf1 mx ~all"
+group IN MX 10 sucuk.mageia.org.
+group IN MX 20 neru.mageia.org.
-; MX
-;@ IN MX 10 mx0.zarb.org.
; machines
-;mageia.org. IN A 212.85.158.22
-; mageia.org set to IP of champagne :
-mageia.org. IN A 217.70.188.116
-www-zarb IN A 212.85.158.22
-
-krampouezh IN A 95.142.164.207
-krampouezh IN AAAA 2001:4b98:dc0:51:216:3eff:fe6b:4ea9
-
-champagne IN A 217.70.188.116
-champagne IN AAAA 2001:4b98:dc0:41:216:3eff:fe4f:5a18
-
-; lost oasis
-alamut IN A 212.85.158.146
-alamut IN AAAA 2a02:2178:2:7::2
-alamut IN SSHFP 1 1 ef093dc95002c4af6623f02238749fd59fe81eec
-alamut IN SSHFP 2 1 179cfa0660550698c4d98f488772b7c7896d96b5
+<%-
+ nodes_txt = ''
+ nodes.keys.sort.each{|nodename|
+ spf = ''
+ if nodes[nodename].has_key?('ipv4')
+ nodes_txt += nodename + ' IN A ' + nodes[nodename]['ipv4'] + "\n"
+ spf += ' ip4:' + nodes[nodename]['ipv4']
+ end
+ if nodes[nodename].has_key?('ipv6')
+ nodes_txt += nodename + ' IN AAAA ' + nodes[nodename]['ipv6'] + "\n"
+ spf += ' ip6:' + nodes[nodename]['ipv6']
+ end
+ nodes_txt += nodename + ' IN TXT "v=spf1 ' + spf + ' mx:mageia.org ~all" ' + "\n"
+ }
+-%>
+<%= nodes_txt %>
+
+;SSHFP
+
+; sucuk
+ns0 IN A <%= nodes['sucuk']['ipv4'] %>
+ns0 IN AAAA <%= nodes['sucuk']['ipv6'] %>
+; neru
+ns1 IN A <%= nodes['neru']['ipv4'] %>
+ns1 IN AAAA <%= nodes['neru']['ipv6'] %>
+
+; mageia.org set to IP of neru
+mageia.org. IN A <%= nodes['neru']['ipv4'] %>
+mageia.org. IN AAAA <%= nodes['neru']['ipv6'] %>
+
+; madb on mageia.madb.org
+;madb IN A 163.172.201.211
+; temporarily for hosting a redirect while the real madb is down
+madb IN CNAME neru
+
; since we have a subdomain, we cannot use a CNAME
-ml IN A 212.85.158.146
-ml IN AAAA 2a02:2178:2:7::2
-; mga torrent server and tracker
-torrent IN A 212.85.158.146
-torrent IN AAAA 2a02:2178:2:7::2
-
-valstar IN A 212.85.158.147
-valstar IN AAAA 2a02:2178:2:7::3
-valstar IN SSHFP 1 1 f08e336f678d7c4a8772f17770976af7dd4d7a4f
-valstar IN SSHFP 2 1 c0c45ed25aa8a9f1723a1ae077dcee61677a56a6
-
-ecosse IN A 212.85.158.148
-ecosse IN AAAA 2a02:2178:2:7::4
-jonund IN A 212.85.158.149
-jonund IN AAAA 2a02:2178:2:7::5
-fiona IN A 212.85.158.150
-fiona IN AAAA 2a02:2178:2:7::6
-sucuk IN A 212.85.158.151
-sucuk IN AAAA 2a02:2178:2:7::7
-rabbit IN A 212.85.158.152
-rabbit IN AAAA 2a02:2178:2:7::8
-
-arm1 IN A 10.42.0.51
-arm2 IN A 10.42.0.52
-
-; alamut
-ns0 IN A 212.85.158.146
-; krampouezh
-ns1 IN A 95.142.164.207
+ml IN A <%= nodes['sucuk']['ipv4'] %>
+ml IN AAAA <%= nodes['sucuk']['ipv6'] %>
; aliases
-;www IN CNAME www-zarb
-www IN CNAME champagne
-www-test IN CNAME champagne
-static IN CNAME champagne
-start IN CNAME champagne
-blog IN CNAME champagne
-planet IN CNAME champagne
-hugs IN CNAME champagne
-releases IN CNAME champagne
-dashboard IN CNAME champagne
-nav IN CNAME champagne
-doc IN CNAME champagne
-rsync IN CNAME valstar
-
-svn IN CNAME valstar
-git IN CNAME valstar
-meetbot IN CNAME krampouezh
-
-tmp IN CNAME alamut
-
-puppetmaster IN CNAME valstar
-puppet IN CNAME valstar
-pkgsubmit IN CNAME valstar
-binrepo IN CNAME valstar
-repository IN CNAME valstar
-maintdb IN CNAME valstar
-ldap IN CNAME valstar
-
-ldap-master IN CNAME valstar
-ldap-slave-1 IN CNAME krampouezh
-
-identity IN CNAME alamut
-identity-trunk IN CNAME alamut
-mirrors IN CNAME alamut
-epoll IN CNAME alamut
-pgsql IN CNAME alamut
-bugs IN CNAME alamut
-transifex IN CNAME alamut
-svnweb IN CNAME alamut
-xymon IN CNAME alamut
-check IN CNAME alamut
-wiki IN CNAME alamut
-gitweb IN CNAME alamut
-pkgcpan IN CNAME alamut
-perl IN CNAME alamut
-tmp IN CNAME alamut
-
+ldap-slave-1 IN CNAME neru
+
+archives IN CNAME neru
+blog IN CNAME neru
+dashboard IN CNAME neru
+doc IN CNAME neru
+hugs IN CNAME neru
+meetbot IN CNAME neru
+planet IN CNAME neru
+releases IN CNAME neru
+start IN CNAME neru
+static IN CNAME neru
+www-test IN CNAME neru
+
+rsync IN CNAME duvel
+svn IN CNAME duvel
+git IN CNAME duvel
+puppetmaster IN CNAME duvel
+puppet IN CNAME duvel
+pkgsubmit IN CNAME duvel
+binrepo IN CNAME duvel
+repository IN CNAME duvel
+maintdb IN CNAME duvel
+ldap IN CNAME duvel
+ldap-master IN CNAME duvel
+advisories IN CNAME duvel
+projects IN CNAME duvel
bcd IN CNAME rabbit
+epoll IN CNAME sucuk
+forums IN CNAME sucuk
+forum IN CNAME sucuk
+
+send IN CNAME sucuk
+bugs IN CNAME sucuk
+check IN CNAME sucuk
+gitweb IN CNAME sucuk
+identity IN A <%= nodes['sucuk']['ipv4'] %>
+identity-trunk IN CNAME sucuk
+mirrors IN CNAME sucuk
+nav IN CNAME sucuk
+people IN CNAME sucuk
+perl IN CNAME sucuk
+pg IN CNAME sucuk
+pkgcpan IN CNAME sucuk
+svnweb IN CNAME sucuk
+treasurer IN CNAME sucuk
+wiki IN CNAME sucuk
+www IN CNAME sucuk
+xymon IN CNAME sucuk
+
; build nodes aliases
-jonund0 IN CNAME jonund
-jonund1 IN CNAME jonund
ecosse0 IN CNAME ecosse
ecosse1 IN CNAME ecosse
-
-; temporary, until the vm is moved elsewhere
-forums IN CNAME alamut
-forum IN CNAME alamut
-;wiki IN A 88.191.83.84
+rabbit0 IN CNAME rabbit
+rabbit1 IN CNAME rabbit
+rabbit2 IN CNAME rabbit
+ec2aa1-a IN CNAME ec2aa1
+ec2aa1-b IN CNAME ec2aa1
+ec2aa2-a IN CNAME ec2aa2
+ec2aa2-b IN CNAME ec2aa2
+ec2aa3-a IN CNAME ec2aa3
+ec2aa3-b IN CNAME ec2aa3
+ec2x1-a IN CNAME ec2x1
+ec2x1-b IN CNAME ec2x1
+ec2x2-a IN CNAME ec2x2
+ec2x2-b IN CNAME ec2x2
+pktaa1-a IN CNAME pktaa1
+pktaa1-b IN CNAME pktaa1
+pktaa1-c IN CNAME pktaa1
+pktaa1-d IN CNAME pktaa1
+pktaa1-e IN CNAME pktaa1
+pktaa1-f IN CNAME pktaa1
+ociaa1-a IN CNAME ociaa1
+ociaa1-b IN CNAME ociaa1
+ociaa1-c IN CNAME ociaa1
+ociaa2-a IN CNAME ociaa2
+ociaa2-b IN CNAME ociaa2
+ociaa2-c IN CNAME ociaa2
+ncaa1-a IN CNAME ncaa1
+ncaa1-b IN CNAME ncaa1
+ncaa1-c IN CNAME ncaa1
+
+<%# vim: set filetype=bindzone : -%>
generated by cgit v1.2.1 (git 2.21.0) at 2025-11-16 16:39:31 +0000