From d69b016cc6b54c814653af3446c28ed37b9e3130 Mon Sep 17 00:00:00 2001 From: Alex Dehnert Date: Tue, 18 Jul 2023 10:19:38 -0400 Subject: [PATCH] Progress towards setting up chankillo --- named.conf.local | 2 ++ named.conf.olinda | 1 + pri/combined-dehnerts.zone | 8 ++++++-- 3 files changed, 9 insertions(+), 2 deletions(-) diff --git a/named.conf.local b/named.conf.local index cffad2e..c42339d 100644 --- a/named.conf.local +++ b/named.conf.local @@ -23,6 +23,7 @@ acl "transfer-allowed" { 18.18.208.12; // olinda 18.25.129.162; // adehnert3.xvm 130.44.166.3; // DD + 18.18.208.22; // chankillo // Linode 104.237.137.10; 45.79.109.10; @@ -42,6 +43,7 @@ masters "primary-ns" { masters "secondary-ns" { 18.25.129.162; // adehnert3.xvm + 18.18.208.22; // chankillo // Linode // https://www.linode.com/docs/products/networking/dns-manager/guides/incoming-dns-zone-transfers/#operate-as-a-secondary-read-only-dns-service 104.237.137.10; diff --git a/named.conf.olinda b/named.conf.olinda index ab3fa11..cdf1537 100644 --- a/named.conf.olinda +++ b/named.conf.olinda @@ -13,6 +13,7 @@ zone "dynamic.dehnerts.com" IN { grant xidi.dynamic.dehnerts.com name _acme-challenge.homeassistant.dynamic.dehnerts.com TXT; grant xidi.dynamic.dehnerts.com name _acme-challenge.pihole.dynamic.dehnerts.com TXT; grant xidi.dynamic.dehnerts.com name _acme-challenge.unifi.dynamic.dehnerts.com TXT; + grant adehnert-test-d.dynamic.dehnerts.com name _acme-challenge.squaresdb.dynamic.dehnerts.com TXT; }; allow-transfer { "transfer-allowed"; }; allow-query { any; }; diff --git a/pri/combined-dehnerts.zone b/pri/combined-dehnerts.zone index 207a893..1e6e40f 100644 --- a/pri/combined-dehnerts.zone +++ b/pri/combined-dehnerts.zone @@ -1,6 +1,6 @@ $TTL 300 @ IN SOA ns root ( - 2023061102 ; Serial + 2023071801 ; Serial 4h ; slave refresh 15m ; slave retry time in case of a problem 4w ; slave expiration time @@ -12,7 +12,7 @@ $TTL 300 IN NS olinda.mit.edu. IN A 18.18.208.12 IN MX 10 mail - IN MX 20 adehnert3.xvm.mit.edu. +; IN MX 20 adehnert3.xvm.mit.edu. ; SPF IN TXT "v=spf1 mx a ~all" ; dehnerts.com @@ -24,6 +24,9 @@ $TTL 300 olinda-202207._domainkey IN TXT ( "v=DKIM1; t=y; h=sha256; k=rsa; " "p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmY9SdH535aHo7xO2TdTTzvJJiGe5YRonZpoAJNJjNRmGuzYEr3CPeJ1wkVbAWIbYg4ZQXlWMaUpbS63UI1widngx+r5sUIBc1Ib/Vyg/XgSND5ZQ/QksNEFobnGafWh+0cd6GKcgBfFi2KZaYdGjsToD0Kosl7fZI4dOocG9yKdLP7PbwFN87cyKHC9y7/XvytphjomHxUDtRp" "saKFHa5N5F1oASmW4gnnyNWHcmVpanknlTmiTHLrNPcTDhC0ODYAB5RFmeO49+fHBaK1q4ZE9jnSHraPm8lz0wba9XCaUs9CJ1MEh+SJNjE/td5p2m9LR0HxX6N6mC0zzN+VDPdwIDAQAB" ) ; ----- DKIM key olinda-202207 for localhost +adehnert-test-d-202307._domainkey IN TXT ( "v=DKIM1; h=sha256; k=rsa; " + "p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2BG4abdXLgH3S2PuVWWXdukSQiGbHwsk0MnDGcAQOGivH3vAtwJ42nS8rgzV8QJfnGLvAeo4E0Mg5OPeMMrFcqaBE6gNg2u88HREcv7ExhXWGDirlqPI2zc1fNzHOjlTXkJ+B1cJApeqJQl/mpfybWj9cUIJjeO+jj0XhAEYI95kpdWqhPRdVglWQ8OLVmhL4nCQuISiLBHyZk" + "d97nqJz+ni7t5dv2lSIrsvyJ92zV0Lfeqe3rlwX2UW79x+hF6VCGaBGSNwkl+jfLKzqiG4VVIlARjQJTMJpiohxX+7Evdw2s+Y3vDVpHwbUcBbZtTW+EdxFgsXN3m10vdvy9cjpQIDAQAB" ) ; ----- DKIM key adehnert-test-d-202307 for localhost _dmarc IN TXT "v=DMARC1;p=none;sp=none;pct=100;rua=mailto:dmarcreports@dehnerts.com;" @@ -38,6 +41,7 @@ virunga IN CNAME virunga.mit.edu. augsburg IN CNAME augsburg.mit.edu. augsburg-monitor IN CNAME augsburg-monitor.dynamic chankillo IN A 18.18.208.22 +_acme-challenge.chankillo IN CNAME _acme-challenge.chankillo.dynamic linode IN A 23.92.18.48 ; external IP for Duck Dacha(?) -- 2.34.1