diff options
author | Johannes Löthberg <johannes@kyriasis.com> | 2024-08-21 12:31:47 +0200 |
---|---|---|
committer | Johannes Löthberg <johannes@kyriasis.com> | 2024-08-21 12:31:47 +0200 |
commit | 3a5246d11cb032dd0ca1088d686ce4e28de24dee (patch) | |
tree | cc16f3fd0b5ac58cb990e4c2073e2ca19bc4ea6c | |
parent | 18f0b17f751794f1528700caa79608ad8fb67299 (diff) | |
download | dns-3a5246d11cb032dd0ca1088d686ce4e28de24dee.tar.xz |
Signed-off-by: Johannes Löthberg <johannes@kyriasis.com>
-rw-r--r-- | letsencrypt-tlsa.zone | 1 | ||||
-rw-r--r-- | named-slave.conf | 9 | ||||
-rw-r--r-- | named.conf | 20 | ||||
-rw-r--r-- | remmy.io.zone | 53 |
4 files changed, 0 insertions, 83 deletions
diff --git a/letsencrypt-tlsa.zone b/letsencrypt-tlsa.zone index 8ff87e1..7e1bf6d 100644 --- a/letsencrypt-tlsa.zone +++ b/letsencrypt-tlsa.zone @@ -2,7 +2,6 @@ ; - kyriasis.com ; - pie-in-the-sky.kitchen ; - remmy.foo -; - remmy.io ; E5 @ 3600 IN TLSA 2 1 1 3586d4ecf070578cbd27aedce20b964e48bc149faeb9dad72f46b857869172b8 diff --git a/named-slave.conf b/named-slave.conf index c7e3d55..b2f96be 100644 --- a/named-slave.conf +++ b/named-slave.conf @@ -53,15 +53,6 @@ zone "remmy.foo" { }; }; -zone "remmy.io" { - type slave; - file "remmy.io.zone"; - masters { - 212.71.254.33; // theos - 2a01:7e00::f03c:91ff:fe6e:f996; // theos - }; -}; - logging { channel xfer-log { file "/var/log/named.log"; @@ -42,12 +42,6 @@ parental-agents "foo" { 216.239.36.105; // ns-tld3.charlestonroadregistry.com. }; -parental-agents "io" { - 65.22.160.17; // a0.nic.io. - 65.22.161.17; // b0.nic.io. - 65.22.162.17; // c0.nic.io. -}; - parental-agents "kitchen" { 65.22.32.17; // v0n0.nic.kitchen. 65.22.35.17; // v2n0.nic.kitchen. @@ -95,20 +89,6 @@ zone "remmy.foo" IN { parental-agents { "foo"; }; }; -zone "remmy.io" IN { - type master; - file "dns/remmy.io.zone"; - - allow-transfer { - 178.79.157.58; // lucifer - 2a01:7e00::f03c:91ff:fe69:1787; // lucifer - }; - - inline-signing yes; - dnssec-policy standard; - parental-agents { "io"; }; -}; - logging { channel dnssec-log { file "/var/named/log/dnssec" versions 3 size 20m; diff --git a/remmy.io.zone b/remmy.io.zone deleted file mode 100644 index d086889..0000000 --- a/remmy.io.zone +++ /dev/null @@ -1,53 +0,0 @@ -$ORIGIN remmy.io. -$TTL 24h - -@ IN SOA ns1.kyriasis.com. hostmaster.remmy.io. ( - 2408032054 ; serial - 24h ; refresh - 2h ; retry - 1w ; expire - 4h ; minttl - ) - NS ns1.kyriasis.com. - NS ns2.kyriasis.com. - - ; -> theos.kyriasis.com - A 212.71.254.33 - AAAA 2a01:7e00:e000:136::1 - -www CNAME remmy.io. - -;; Gallery -gallery CNAME remmy.io. -gallery-static CNAME remmy.io. - -;;;; Email - -;; MX -@ MX 0 theos.kyriasis.com. - -;; DMARC <https://tools.ietf.org/html/rfc7489> -_dmarc TXT "v=DMARC1; adkim=r; aspf=r; fo=1:d:s; p=quarantine; rua=mailto:aggrep@remmy.io; ruf=mailto:authfail@remmy.io" - -;; SPF <http://tools.ietf.org/html/rfc4408> -@ TXT "v=spf1 a mx ip4:178.79.157.58 ip6:2a01:7e00::f03c:91ff:fe69:1787 ~all" -@ SPF "v=spf1 a mx ip4:178.79.157.58 ip6:2a01:7e00::f03c:91ff:fe69:1787 ~all" - -;; DKIM <http://tools.ietf.org/html/rfc6376> -theos._domainkey TXT "k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC5u7MOeQk0oIgy64BcFDvmxiRGuZBPTFaFvRTz0LZMIq66E0iW76RFC9tBONQrVvVUCeMldmgy7AGjRMbZaszgtL14PJQeD9HDfbVnEVQhS12kMY2HPR3HruwfLcSgADjBwt3nVkdXusjTsNoGB/Yj7+Bdr/HFHi5blLB3a+6S7wIDAQAB" - - -;; Google Postmaster Tools -@ TXT "google-site-verification=oBjxYyNlVzkw3gcMJcXx9_ElXSULYrraglg-ytnEgWQ" - -;;;; Certificates -;; CAA -@ CAA 0 issue "letsencrypt.org" -@ CAA 0 iodef "mailto:certificates@remmy.io" - -;; TLSA -$INCLUDE "dns/letsencrypt-tlsa.zone" _443._tcp.remmy.io -$INCLUDE "dns/letsencrypt-tlsa.zone" _443._tcp.gallery.remmy.io -$INCLUDE "dns/letsencrypt-tlsa.zone" _443._tcp.gallery-static.remmy.io - -; vim: ft=bindzone ts=8 sw=8 nowrap et |