From ddf4d1ca2a27956a7ca79e7b1093ee00b88d4b9d Mon Sep 17 00:00:00 2001 From: Jonas Smedegaard Date: Sun, 31 May 2020 17:26:43 +0200 Subject: initial setup --- bind/named.conf-fsub1 | 7 +++++++ bind/named.conf.acl | 11 +++++++++++ bind/named.conf.pri | 3 +++ bind/pri/fsub.de | 22 ++++++++++++++++++++++ bind/skel/A | 4 ++++ bind/skel/CNAME | 1 + bind/skel/MX | 9 +++++++++ bind/skel/MX-avoid | 3 +++ bind/skel/NS | 6 ++++++ realm | 1 + redpill | 1 + 11 files changed, 68 insertions(+) create mode 100644 bind/named.conf-fsub1 create mode 100644 bind/named.conf.acl create mode 100644 bind/named.conf.pri create mode 100644 bind/pri/fsub.de create mode 100644 bind/skel/A create mode 100644 bind/skel/CNAME create mode 100644 bind/skel/MX create mode 100644 bind/skel/MX-avoid create mode 100644 bind/skel/NS create mode 100644 realm create mode 100644 redpill diff --git a/bind/named.conf-fsub1 b/bind/named.conf-fsub1 new file mode 100644 index 0000000..9439413 --- /dev/null +++ b/bind/named.conf-fsub1 @@ -0,0 +1,7 @@ +include "/etc/local-FSUB.DE/bind/named.conf.acl"; + +include "/etc/local-FSUB.DE/bind/named.conf.pri"; + +include "/etc/local-REDPILL.DK/bind/named.conf.JONES.DK"; +include "/etc/local-REDPILL.DK/bind/named.conf.HOMEBASE.DK"; +include "/etc/local-REDPILL.DK/bind/named.conf.SHAKTI.IN"; diff --git a/bind/named.conf.acl b/bind/named.conf.acl new file mode 100644 index 0000000..9b0a9bb --- /dev/null +++ b/bind/named.conf.acl @@ -0,0 +1,11 @@ +acl fsub_peers { + 193.163.102.6; // hostcount.dk-hostmaster.dk + 192.251.226.135; // ns.superserver.dk + 2a06:e881:1700:1:400:c0ff:fefb:e287; + 87.104.3.163; // new ns.bitbase.dk + 163.172.142.110; // ns.bitbase.dk + 94.18.231.212; // ns.homebase.dk + 188.183.5.254; // dns.jones.dk + 146.185.137.224; // ns.copyninja.info + 217.70.177.40; // ns6.gandi.net +}; diff --git a/bind/named.conf.pri b/bind/named.conf.pri new file mode 100644 index 0000000..32be822 --- /dev/null +++ b/bind/named.conf.pri @@ -0,0 +1,3 @@ +zone "fsub.de" { + type master; allow-transfer { fsub_peers; }; + file "/etc/local-FSUB.DE/bind/pri/fsub.de"; }; diff --git a/bind/pri/fsub.de b/bind/pri/fsub.de new file mode 100644 index 0000000..f93e388 --- /dev/null +++ b/bind/pri/fsub.de @@ -0,0 +1,22 @@ +$TTL 1h +@ SOA ns.bitbase.dk. hostmaster.fsub.de. ( + 2020053001 + 1h 30m 1w 1h ) + +# SSHFP records (execute at the host): ssh-keygen -r. + +$INCLUDE /etc/local-FSUB.DE/bind/skel/NS +$INCLUDE /etc/local-FSUB.DE/bind/skel/A +$INCLUDE /etc/local-FSUB.DE/bind/skel/MX + +$INCLUDE /etc/local-FSUB.DE/skel/A fsub1 +$INCLUDE /etc/local-FSUB.DE/skel/MX-avoid fsub1 + HINFO "QEMU Virtual CPU Dual @ 2GHz (QEMU)" "Debian GNU/Linux" + SSHFP 1 1 f052b9a92e221be0616f5bbae8be8512165916df + SSHFP 1 2 ffedd2e155b94b6b1c5aec6564e28ebefbf53a5a0d5bad0faf16737ae8a6dc1b + SSHFP 3 1 cfa12f07a9aa92fd06248fdbc73c6f45cb4679f2 + SSHFP 3 2 dfcae01db484d1023e08453392fa9d05cba57d66e6f2d00298e1366294959eb3 + SSHFP 4 1 3d1869221cda828472f447ed7ffedd5e7ed551b5 + SSHFP 4 2 72163f7d6d4de428979378534d58a5d8b3471585f03dacea9f2677eff099bc92 + +$INCLUDE /etc/local-FSUB.DE/bind/skel/CNAME www diff --git a/bind/skel/A b/bind/skel/A new file mode 100644 index 0000000..b1b8004 --- /dev/null +++ b/bind/skel/A @@ -0,0 +1,4 @@ +@ A 193.26.120.115 +@ AAAA 2a06:e881:1702:1:400:c1ff:fe1a:7873 +@ TXT "PTR=fusb-web01.4830.org." +@ TXT "Addr=Hamburg, Germany" diff --git a/bind/skel/CNAME b/bind/skel/CNAME new file mode 100644 index 0000000..644f2b4 --- /dev/null +++ b/bind/skel/CNAME @@ -0,0 +1 @@ +@ CNAME fsub1.fsub.de. diff --git a/bind/skel/MX b/bind/skel/MX new file mode 100644 index 0000000..fd372cb --- /dev/null +++ b/bind/skel/MX @@ -0,0 +1,9 @@ +@ MX 10 mail.fsub.de. +@ MX 50 mail.jones.dk. +@ MX 50 mail.homebase.dk. +@ SPF "v=spf1 mx -all" +@ TXT "v=spf1 mx -all" + +# _domainkey records: + +2020._domainkey TXT "v=DKIM1; h=sha256; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3oFBcQuGgiVCF25O+d/C2OA7lNUJ8vnR6nLtAUQacmbXVHgMURiLMlIluYWHJTjrSyeGDNzm/kvUO+YcL//opoRAwfcTJgKVCQjT1AFZgcdzQAbXuWq5xF5EuQlm6EW13hOFvkGuu4SIg1Xlz0gpQ7PkWSS6/QzNLhM8/seQOvmbvkn5U1WOp7DfUl8/bhLfRMNwjFJ/fkZx8ICbzRN7d0mO6tcG2dM1hoQ9KDbED6t4NkRb9RHPA+WKAdbOmQXpSJuRL6Rhh657ZZiSK8tg25KyNsxgpi+gSarnENmnMVnA4dnJmXvzmdT+IOSTioBDH05OvptWd2j8zy4AQ4PmdwIDAQAB" diff --git a/bind/skel/MX-avoid b/bind/skel/MX-avoid new file mode 100644 index 0000000..1acbe8d --- /dev/null +++ b/bind/skel/MX-avoid @@ -0,0 +1,3 @@ +@ IN MX 0 . +@ IN SPF "v=spf1 -all" +@ IN TXT "v=spf1 -all" diff --git a/bind/skel/NS b/bind/skel/NS new file mode 100644 index 0000000..4c5284d --- /dev/null +++ b/bind/skel/NS @@ -0,0 +1,6 @@ +@ NS ns.superserver.dk. +@ NS dns.jones.dk. +@ NS ns.bitbase.dk. +@ NS ns.homebase.dk. +@ CAA 0 issue "letsencrypt.org" +@ CAA 0 iodef "mailto:hostmaster@fsub.de" diff --git a/realm b/realm new file mode 100644 index 0000000..b22e599 --- /dev/null +++ b/realm @@ -0,0 +1 @@ +FSUB.DE diff --git a/redpill b/redpill new file mode 100644 index 0000000..6bd47cf --- /dev/null +++ b/redpill @@ -0,0 +1 @@ +REDPILL.DK -- cgit v1.2.3