aboutsummaryrefslogtreecommitdiffstats
path: root/deployment/dns/templates/mageia.org.zone
blob: 5f552a8b221e8b16ce9299ea10cccd4b9e0b8304 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
<%-
  # nodes list defined in puppet/manifests/nodes_ip.pp
  nodes = scope.lookupvar('::nodes_ipaddr')
-%>
; puppet-distributed file
; local modifications will be lost
; $Id$
$TTL	30m
@       IN      SOA     ns0.mageia.org.   root.mageia.org.  (
        2024101410	; Serial
        7200		; Refresh
        3600		; Retry
        3600000		; Expire
        300		; Minimum TTL
        )

; nameservers
@	IN      NS      ns0.mageia.org.
@	IN      NS      ns1.mageia.org.

@   IN      MX 10   sucuk.mageia.org.
@   IN      MX 20   neru.mageia.org.

; DKIM for mageia.org
sucuk._domainkey    IN      TXT     "v=DKIM1; k=rsa; t=s; s=email; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDGH25Jb2Al84XlTfSWuqZL8f6K6b+QhJjvV3zbF1/t31WmLwEt0So+p3FbFeKmaq/e0nJ+wKteTSVZsl3xwux+MaARKJDpEXslEgy+ojCedWqqpP6xLUjPuYPimGPljwkLwDoJxwvjiLa2POebec7C+R/nzaGm2nnTFwYQomqlvQIDAQAB"
sucuk._domainkey.group    IN      TXT     "v=DKIM1; k=rsa; t=s; s=email; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDGH25Jb2Al84XlTfSWuqZL8f6K6b+QhJjvV3zbF1/t31WmLwEt0So+p3FbFeKmaq/e0nJ+wKteTSVZsl3xwux+MaARKJDpEXslEgy+ojCedWqqpP6xLUjPuYPimGPljwkLwDoJxwvjiLa2POebec7C+R/nzaGm2nnTFwYQomqlvQIDAQAB"
sucuk._domainkey.ml    IN      TXT     "v=DKIM1; k=rsa; t=s; s=email; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDGH25Jb2Al84XlTfSWuqZL8f6K6b+QhJjvV3zbF1/t31WmLwEt0So+p3FbFeKmaq/e0nJ+wKteTSVZsl3xwux+MaARKJDpEXslEgy+ojCedWqqpP6xLUjPuYPimGPljwkLwDoJxwvjiLa2POebec7C+R/nzaGm2nnTFwYQomqlvQIDAQAB"

; TODO use a loop here
ml  IN      MX 10   sucuk.mageia.org.
ml  IN      MX 20   neru.mageia.org.

; Sender Policy Framework for mailing lists & some automated mails
ml  IN      TXT     "v=spf1 mx ~all"
group  IN      TXT     "v=spf1 mx ~all"

group  IN      MX 10   sucuk.mageia.org.
group  IN      MX 20   neru.mageia.org.


; machines
<%-
  nodes_txt = ''
  nodes.keys.sort.each{|nodename|
    spf = ''
    if nodes[nodename].has_key?('ipv4')
      nodes_txt += nodename + ' IN A ' + nodes[nodename]['ipv4'] + "\n"
      spf += ' ip4:' + nodes[nodename]['ipv4']
    end
    if nodes[nodename].has_key?('ipv6')
      nodes_txt += nodename + ' IN AAAA ' + nodes[nodename]['ipv6'] + "\n"
      spf += ' ip6:' + nodes[nodename]['ipv6']
    end
    nodes_txt += nodename + ' IN TXT "v=spf1 ' + spf + ' mx:mageia.org ~all" ' + "\n"
  }
-%>
<%= nodes_txt %>

;SSHFP

; sucuk
ns0         IN  A       <%= nodes['sucuk']['ipv4'] %>
ns0         IN  AAAA    <%= nodes['sucuk']['ipv6'] %>
; neru
ns1         IN  A       <%= nodes['neru']['ipv4'] %>
ns1         IN  AAAA    <%= nodes['neru']['ipv6'] %>

; mageia.org set to IP of neru
mageia.org.	IN	A	<%= nodes['neru']['ipv4'] %>
mageia.org.	IN	AAAA	<%= nodes['neru']['ipv6'] %>

; madb on mageia.madb.org
madb        IN  A       163.172.201.211

; since we have a subdomain, we cannot use a CNAME
ml          IN  A       <%= nodes['sucuk']['ipv4'] %>
ml          IN  AAAA    <%= nodes['sucuk']['ipv6'] %>

; aliases
ldap-slave-1 IN CNAME neru

archives    IN	CNAME neru
blog        IN	CNAME neru
dashboard   IN	CNAME neru
doc         IN	CNAME neru
hugs        IN	CNAME neru
meetbot     IN  CNAME neru
planet      IN	CNAME neru
releases    IN	CNAME neru
start       IN	CNAME neru
static      IN	CNAME neru
www-test    IN  CNAME neru

rsync       IN  CNAME duvel
svn         IN  CNAME duvel
git         IN  CNAME duvel
puppetmaster  IN  CNAME duvel
puppet      IN  CNAME duvel
pkgsubmit   IN CNAME duvel
binrepo	    IN CNAME duvel
repository  IN CNAME duvel
maintdb     IN CNAME duvel
ldap        IN CNAME duvel
ldap-master IN CNAME duvel
advisories  IN CNAME duvel
projects    IN CNAME duvel
bcd	    IN CNAME rabbit

epoll       IN CNAME sucuk
forums      IN CNAME sucuk
forum       IN CNAME sucuk

send        IN CNAME sucuk
bugs        IN CNAME sucuk
check       IN CNAME sucuk
gitweb      IN CNAME sucuk
identity    IN  A       <%= nodes['sucuk']['ipv4'] %>
identity-trunk IN CNAME sucuk
mirrors     IN CNAME sucuk
nav         IN CNAME sucuk
people      IN CNAME sucuk
perl        IN CNAME sucuk
pg          IN CNAME sucuk
pkgcpan     IN CNAME sucuk
svnweb      IN CNAME sucuk
treasurer   IN CNAME sucuk
wiki        IN CNAME sucuk
www         IN CNAME sucuk
xymon       IN CNAME sucuk

; build nodes aliases
ecosse0 IN CNAME ecosse
ecosse1 IN CNAME ecosse
rabbit0 IN CNAME rabbit
rabbit1 IN CNAME rabbit
rabbit2 IN CNAME rabbit
ec2aa1-a IN CNAME ec2aa1
ec2aa1-b IN CNAME ec2aa1
ec2aa2-a IN CNAME ec2aa2
ec2aa2-b IN CNAME ec2aa2
ec2aa3-a IN CNAME ec2aa3
ec2aa3-b IN CNAME ec2aa3
ec2x1-a IN CNAME ec2x1
ec2x1-b IN CNAME ec2x1
ec2x2-a IN CNAME ec2x2
ec2x2-b IN CNAME ec2x2
pktaa1-a IN CNAME pktaa1
pktaa1-b IN CNAME pktaa1
pktaa1-c IN CNAME pktaa1
pktaa1-d IN CNAME pktaa1
pktaa1-e IN CNAME pktaa1
pktaa1-f IN CNAME pktaa1
ociaa1-a IN CNAME ociaa1
ociaa1-b IN CNAME ociaa1
ociaa1-c IN CNAME ociaa1
ociaa2-a IN CNAME ociaa2
ociaa2-b IN CNAME ociaa2
ociaa2-c IN CNAME ociaa2

<%# vim: set filetype=bindzone : -%>