1 D(DOMAIN, REGISTRAR, DnsProvider(PROVIDER),
3 // Publish CAA records indicating that only letsencrypt should issue certificates
5 CAA("@", "issue", "letsencrypt.org", CF_TTL_ANY),
6 CAA("@", "issuewild", "letsencrypt.org", CF_TTL_ANY),
7 CAA("@", "iodef", "mailto:hostmaster@openstreetmap.org"),
9 // Use shenron as the MX host
11 MX("@", 10, QUALIFY("a.mx")),
12 MX("messages", 10, QUALIFY("a.mx")),
13 MX("noreply", 10, QUALIFY("a.mx")),
14 MX("otrs", 10, QUALIFY("a.mx")),
15 A("a.mx", SHENRON_IPV4),
16 AAAA("a.mx", SHENRON_IPV6),
18 // Publish SPF records indicating that only shenron sends mail
20 TXT("@", "v=spf1 ip4:212.110.172.32 ip6:2001:41c9:1:400::32 mx -all"),
21 TXT("otrs", "v=spf1 ip4:212.110.172.32 ip6:2001:41c9:1:400::32 mx -all"),
23 // Announce MTA-STS policy and TLSRPT policy for error reports
25 TXT("_mta-sts", "v=STSv1; id=202001291805Z"),
26 TXT("_smtp._tls", "v=TLSRPTv1; rua=mailto:postmaster@openstreetmap.org"),
28 // Delegate MTA-STS policy for subdomains
30 CNAME("_mta-sts.messages", QUALIFY("_mta-sts")),
31 CNAME("_mta-sts.noreply", QUALIFY("_mta-sts")),
32 CNAME("_mta-sts.otrs", QUALIFY("_mta-sts")),
34 // Google postmaster tools verification
36 CNAME("af323lytato5", "gv-o4v3qh5pfayqex.dv.googlehosted.com."),
37 CNAME("irzdddnmh465", "gv-cwr6bvt7xsgact.dv.googlehosted.com."),
39 // Delegate geo.openstreetmap.org to PowerDNS
41 NS("geo", QUALIFY("saphira")),
42 NS("geo", QUALIFY("ridgeback")),
43 NS("geo", QUALIFY("jakelong")),
44 NS("geo", QUALIFY("katie")),
45 NS("geo", QUALIFY("stormfly-02")),
46 NS("geo", QUALIFY("chrysophylax")),
48 // Main web servers and their aliases
50 A("spike-04", SPIKE04_IPV4),
51 AAAA("spike-04", SPIKE04_IPV6),
52 // A("@", SPIKE04_IPV4, TTL("10m")),
53 // AAAA("@", SPIKE04_IPV6, TTL("10m")),
54 // A("www", SPIKE04_IPV4, TTL("10m")),
55 // AAAA("www", SPIKE04_IPV6, TTL("10m")),
56 // A("api", SPIKE04_IPV4, TTL("10m")),
57 // AAAA("api", SPIKE04_IPV6, TTL("10m")),
58 // A("maps", SPIKE04_IPV4, TTL("10m")),
59 // AAAA("maps", SPIKE04_IPV6, TTL("10m")),
60 // A("mapz", SPIKE04_IPV4, TTL("10m")),
61 // AAAA("mapz", SPIKE04_IPV6, TTL("10m")),
62 A("spike-04.bm", SPIKE04_INTERNAL),
63 A("spike-04.oob", SPIKE04_OOB),
65 A("spike-05", SPIKE05_IPV4),
66 AAAA("spike-05", SPIKE05_IPV6),
67 // A("@", SPIKE05_IPV4, TTL("10m")),
68 // AAAA("@", SPIKE05_IPV6, TTL("10m")),
69 // A("www", SPIKE05_IPV4, TTL("10m")),
70 // AAAA("www", SPIKE05_IPV6, TTL("10m")),
71 // A("api", SPIKE05_IPV4, TTL("10m")),
72 // AAAA("api", SPIKE05_IPV6, TTL("10m")),
73 // A("maps", SPIKE05_IPV4, TTL("10m")),
74 // AAAA("maps", SPIKE05_IPV6, TTL("10m")),
75 // A("mapz", SPIKE05_IPV4, TTL("10m")),
76 // AAAA("mapz", SPIKE05_IPV6, TTL("10m")),
77 A("spike-05.bm", SPIKE05_INTERNAL),
78 A("spike-05.oob", SPIKE05_OOB),
80 A("spike-06", SPIKE06_IPV4),
81 AAAA("spike-06", SPIKE06_IPV6),
82 A("@", SPIKE06_IPV4, TTL("10m")),
83 AAAA("@", SPIKE06_IPV6, TTL("10m")),
84 A("www", SPIKE06_IPV4, TTL("10m")),
85 AAAA("www", SPIKE06_IPV6, TTL("10m")),
86 A("api", SPIKE06_IPV4, TTL("10m")),
87 AAAA("api", SPIKE06_IPV6, TTL("10m")),
88 A("maps", SPIKE06_IPV4, TTL("10m")),
89 AAAA("maps", SPIKE06_IPV6, TTL("10m")),
90 A("mapz", SPIKE06_IPV4, TTL("10m")),
91 AAAA("mapz", SPIKE06_IPV6, TTL("10m")),
92 A("spike-06.ams", SPIKE06_INTERNAL),
93 A("spike-06.oob", SPIKE06_OOB),
95 A("spike-07", SPIKE07_IPV4),
96 AAAA("spike-07", SPIKE07_IPV6),
97 A("@", SPIKE07_IPV4, TTL("10m")),
98 AAAA("@", SPIKE07_IPV6, TTL("10m")),
99 A("www", SPIKE07_IPV4, TTL("10m")),
100 AAAA("www", SPIKE07_IPV6, TTL("10m")),
101 A("api", SPIKE07_IPV4, TTL("10m")),
102 AAAA("api", SPIKE07_IPV6, TTL("10m")),
103 A("maps", SPIKE07_IPV4, TTL("10m")),
104 AAAA("maps", SPIKE07_IPV6, TTL("10m")),
105 A("mapz", SPIKE07_IPV4, TTL("10m")),
106 AAAA("mapz", SPIKE07_IPV6, TTL("10m")),
107 A("spike-07.ams", SPIKE07_INTERNAL),
108 A("spike-07.oob", SPIKE07_OOB),
110 A("spike-08", SPIKE08_IPV4),
111 AAAA("spike-08", SPIKE08_IPV6),
112 A("@", SPIKE08_IPV4, TTL("10m")),
113 AAAA("@", SPIKE08_IPV6, TTL("10m")),
114 A("www", SPIKE08_IPV4, TTL("10m")),
115 AAAA("www", SPIKE08_IPV6, TTL("10m")),
116 A("api", SPIKE08_IPV4, TTL("10m")),
117 AAAA("api", SPIKE08_IPV6, TTL("10m")),
118 A("maps", SPIKE08_IPV4, TTL("10m")),
119 AAAA("maps", SPIKE08_IPV6, TTL("10m")),
120 A("mapz", SPIKE08_IPV4, TTL("10m")),
121 AAAA("mapz", SPIKE08_IPV6, TTL("10m")),
122 A("spike-08.ams", SPIKE08_INTERNAL),
123 A("spike-08.oob", SPIKE08_OOB),
125 // Rails application servers
127 A("thorn-01.ams", THORN01_INTERNAL),
128 A("rails1.ams", THORN01_INTERNAL),
129 A("thorn-01.oob", THORN01_OOB),
131 A("thorn-02.ams", THORN02_INTERNAL),
132 A("rails2.ams", THORN02_INTERNAL),
133 A("thorn-02.oob", THORN02_OOB),
135 A("thorn-03.ams", THORN03_INTERNAL),
136 A("rails3.ams", THORN03_INTERNAL),
137 A("thorn-03.oob", THORN03_OOB),
139 A("thorn-04.bm", THORN04_INTERNAL),
140 A("rails4.bm", THORN04_INTERNAL),
141 A("thorn-04.oob", THORN04_OOB),
143 A("thorn-05.bm", THORN05_INTERNAL),
144 A("rails5.bm", THORN05_INTERNAL),
145 A("thorn-05.oob", THORN05_OOB),
149 A("pummelzacken", PUMMELZACKEN_IPV4),
150 A("pummelzacken.ucl", PUMMELZACKEN_INTERNAL),
151 A("pummelzacken.oob", PUMMELZACKEN_OOB),
153 A("dulcy", DULCY_IPV4),
154 AAAA("dulcy", DULCY_IPV6),
155 A("dulcy.ams", DULCY_INTERNAL),
156 A("dulcy.oob", DULCY_OOB),
158 CNAME("nominatim", "nominatim.geo.openstreetmap.org."),
162 A("grindtooth", GRINDTOOTH_IPV4),
163 A("taginfo", GRINDTOOTH_IPV4, TTL("10m")),
164 A("grindtooth.ucl", GRINDTOOTH_INTERNAL),
165 A("grindtooth.oob", GRINDTOOTH_OOB),
167 A("stormfly-01", STORMFLY01_IPV4),
168 AAAA("stormfly-01", STORMFLY01_IPV6),
169 // A("taginfo", STORMFLY01_IPV4, TTL("10m")),
170 // AAAA("taginfo", STORMFLY01_IPV6, TTL("10m")),
171 A("stormfly-01.oob", STORMFLY01_OOB),
176 AAAA("orm", ORM_IPV6),
177 A("orm.ams", ORM_INTERNAL),
178 A("orm.oob", ORM_OOB),
180 A("odin", ODIN_IPV4),
181 AAAA("odin", ODIN_IPV6),
182 A("odin.ams", ODIN_INTERNAL),
183 A("odin.oob", ODIN_OOB),
185 A("ysera", YSERA_IPV4),
186 A("ysera.ucl", YSERA_INTERNAL),
187 A("ysera.oob", YSERA_OOB),
189 A("scorch", SCORCH_IPV4),
190 AAAA("scorch", SCORCH_IPV6),
192 A("rhaegal", RHAEGAL_IPV4),
194 A("pyrene", PYRENE_IPV4),
195 AAAA("pyrene", PYRENE_IPV6),
196 A("pyrene.oob", TIAMAT00_INTERNAL),
198 A("bowser", BOWSER_IPV4),
200 CNAME("tile", "tile.geo.openstreetmap.org."),
201 CNAME("a.tile", "tile.geo.openstreetmap.org."),
202 CNAME("b.tile", "tile.geo.openstreetmap.org."),
203 CNAME("c.tile", "tile.geo.openstreetmap.org."),
207 A("ironbelly", IRONBELLY_IPV4),
208 AAAA("ironbelly", IRONBELLY_IPV6),
209 A("backup", IRONBELLY_IPV4, TTL("10m")),
210 AAAA("backup", IRONBELLY_IPV6, TTL("10m")),
211 A("planet", IRONBELLY_IPV4, TTL("10m")),
212 AAAA("planet", IRONBELLY_IPV6, TTL("10m")),
213 A("logstash", IRONBELLY_IPV4),
214 AAAA("logstash", IRONBELLY_IPV6),
215 A("ironbelly.ams", IRONBELLY_INTERNAL),
216 A("ironbelly.oob", IRONBELLY_OOB),
218 A("grisu", GRISU_IPV4),
219 AAAA("grisu", GRISU_IPV6),
220 // A("backup", GRISU_IPV4, TTL("10m")),
221 // AAAA("backup", GRISU_IPV6, TTL("10m")),
222 // A("planet", GRISU_IPV4, TTL("10m")),
223 // AAAA("planet", GRISU_IPV6, TTL("10m")),
224 A("grisu.bm", GRISU_INTERNAL),
225 A("grisu.oob", GRISU_OOB),
229 A("karm.ams", KARM_INTERNAL),
230 A("karm.oob", KARM_OOB),
232 A("eddie.ucl", EDDIE_INTERNAL),
233 A("eddie.oob", EDDIE_OOB),
235 A("katla.bm", KATLA_INTERNAL),
236 A("katla.oob", KATLA_OOB),
238 A("ramoth.ams", RAMOTH_INTERNAL),
239 A("ramoth.oob", RAMOTH_OOB),
241 // Development server with wildcard alias for user sites
243 A("errol", ERROL_IPV4),
244 A("dev", ERROL_IPV4),
245 A("*.dev", ERROL_IPV4),
246 A("ooc", ERROL_IPV4),
247 A("a.ooc", ERROL_IPV4),
248 A("b.ooc", ERROL_IPV4),
249 A("c.ooc", ERROL_IPV4),
250 A("npe", ERROL_IPV4),
251 A("errol.ucl", ERROL_INTERNAL),
252 A("errol.oob", ERROL_OOB),
256 A("ridley", RIDLEY_IPV4),
257 A("otrs", RIDLEY_IPV4),
258 A("blog", RIDLEY_IPV4),
259 A("foundation", RIDLEY_IPV4),
260 A("hot", RIDLEY_IPV4),
261 A("dmca", RIDLEY_IPV4),
262 A("ridley.ucl", RIDLEY_INTERNAL),
263 A("ridley.oob", RIDLEY_OOB),
267 A("eustace", EUSTACE_IPV4),
268 A("piwik", EUSTACE_IPV4),
269 A("eustace.ucl", EUSTACE_INTERNAL),
270 A("eustace.oob", EUSTACE_OOB),
274 A("draco", DRACO_IPV4),
275 A("draco.ucl", DRACO_INTERNAL),
276 A("draco.oob", DRACO_OOB),
278 A("kessie", KESSIE_IPV4),
279 AAAA("kessie", KESSIE_IPV6),
280 A("agri", KESSIE_IPV4, TTL("1h")),
281 AAAA("agri", KESSIE_IPV6, TTL("1h")),
282 A("a.agri", KESSIE_IPV4, TTL("1h")),
283 AAAA("a.agri", KESSIE_IPV6, TTL("1h")),
284 A("b.agri", KESSIE_IPV4, TTL("1h")),
285 AAAA("b.agri", KESSIE_IPV6, TTL("1h")),
286 A("c.agri", KESSIE_IPV4, TTL("1h")),
287 AAAA("c.agri", KESSIE_IPV6, TTL("1h")),
288 A("os", KESSIE_IPV4, TTL("1h")),
289 AAAA("os", KESSIE_IPV6, TTL("1h")),
290 A("a.os", KESSIE_IPV4, TTL("1h")),
291 AAAA("a.os", KESSIE_IPV6, TTL("1h")),
292 A("b.os", KESSIE_IPV4, TTL("1h")),
293 AAAA("b.os", KESSIE_IPV6, TTL("1h")),
294 A("c.os", KESSIE_IPV4, TTL("1h")),
295 AAAA("c.os", KESSIE_IPV6, TTL("1h")),
296 A("kessie.oob", KESSIE_OOB),
300 A("urmel", URMEL_IPV4),
301 A("munin", URMEL_IPV4),
302 A("urmel.ucl", URMEL_INTERNAL),
303 A("urmel.oob", URMEL_OOB),
307 A("sarel", SAREL_IPV4),
308 A("chef", SAREL_IPV4),
309 A("hardware", SAREL_IPV4),
310 A("acme", SAREL_IPV4),
311 A("git", SAREL_IPV4, TTL("10m")),
312 A("dns", SAREL_IPV4, TTL("10m")),
313 A("sarel.ucl", SAREL_INTERNAL),
314 A("sarel.oob", SAREL_OOB),
318 A("clifford", CLIFFORD_IPV4),
319 A("forum", CLIFFORD_IPV4, TTL("10m")),
320 A("clifford.ucl", CLIFFORD_INTERNAL),
321 A("clifford.oob", CLIFFORD_OOB),
325 A("kvm1.ucl", KVM1_INTERNAL),
327 // Managed network switches
329 A("switch1", SWITCH1_IPV4),
330 AAAA("switch1", SWITCH1_IPV6),
332 // Managed power strips
334 A("pdu1.ams", PDU1_INTERNAL),
335 A("pdu2.ams", PDU2_INTERNAL),
337 // Bytemark machine, and the services which operate from it
339 A("shenron", SHENRON_IPV4),
340 AAAA("shenron", SHENRON_IPV6),
341 A("mail", SHENRON_IPV4),
342 AAAA("mail", SHENRON_IPV6),
343 A("mta-sts", SHENRON_IPV4),
344 AAAA("mta-sts", SHENRON_IPV6),
345 A("lists", SHENRON_IPV4),
346 AAAA("lists", SHENRON_IPV6),
347 A("svn", SHENRON_IPV4),
348 AAAA("svn", SHENRON_IPV6),
349 A("trac", SHENRON_IPV4),
350 AAAA("trac", SHENRON_IPV6),
351 A("irc", SHENRON_IPV4),
352 AAAA("irc", SHENRON_IPV6),
353 A("help", SHENRON_IPV4),
354 AAAA("help", SHENRON_IPV6),
355 A("blogs", SHENRON_IPV4, TTL("10m")),
356 AAAA("blogs", SHENRON_IPV6, TTL("10m")),
357 A("shenron.bm", SHENRON_INTERNAL),
361 A("tabaluga", TABALUGA_IPV4),
362 AAAA("tabaluga", TABALUGA_IPV6),
363 A("wiki", TABALUGA_IPV4, TTL("10m")),
364 AAAA("wiki", TABALUGA_IPV6, TTL("10m")),
365 A("tabaluga.ams", TABALUGA_INTERNAL),
366 A("tabaluga.oob", TABALUGA_OOB),
370 A("noquiklos", NOQUIKLOS_IPV4),
371 A("gps-tile", NOQUIKLOS_IPV4),
372 A("a.gps-tile", NOQUIKLOS_IPV4),
373 A("b.gps-tile", NOQUIKLOS_IPV4),
374 A("c.gps-tile", NOQUIKLOS_IPV4),
375 A("gps.tile", NOQUIKLOS_IPV4),
376 A("gps-a.tile", NOQUIKLOS_IPV4),
377 A("gps-b.tile", NOQUIKLOS_IPV4),
378 A("gps-c.tile", NOQUIKLOS_IPV4),
379 A("noquiklos.ucl", NOQUIKLOS_INTERNAL),
380 A("noquiklos.oob", NOQUIKLOS_OOB),
382 // Tile cache servers
384 A("gorynych", GORYNYCH_IPV4),
385 AAAA("gorynych", GORYNYCH_IPV6),
386 A("trogdor", TROGDOR_IPV4),
387 A("trogdor.oob", TROGDOR_OOB),
388 A("ridgeback", RIDGEBACK_IPV4),
389 A("ridgeback.oob", RIDGEBACK_OOB),
390 A("jakelong", JAKELONG_IPV4),
391 AAAA("jakelong", JAKELONG_IPV6),
392 A("nepomuk", NEPOMUK_IPV4),
393 AAAA("nepomuk", NEPOMUK_IPV6),
394 A("simurgh", SIMURGH_IPV4),
395 A("katie", KATIE_IPV4),
396 AAAA("katie", KATIE_IPV6),
397 A("konqi", KONQI_IPV4),
398 AAAA("konqi", KONQI_IPV6),
399 A("longma", LONGMA_IPV4),
400 AAAA("longma", LONGMA_IPV6),
401 A("viserion", VISERION_IPV4),
402 AAAA("viserion", VISERION_IPV6),
403 A("drogon", DROGON_IPV4),
404 AAAA("drogon", DROGON_IPV6),
405 A("saphira", SAPHIRA_IPV4),
406 AAAA("saphira", SAPHIRA_IPV6),
407 A("toothless", TOOTHLESS_IPV4),
408 AAAA("toothless", TOOTHLESS_IPV6),
409 A("sarkany", SARKANY_IPV4),
410 AAAA("sarkany", SARKANY_IPV6),
411 A("cmok", CMOK_IPV4),
412 AAAA("cmok", CMOK_IPV6),
413 A("stormfly-02", STORMFLY02_IPV4),
414 AAAA("stormfly-02", STORMFLY02_IPV6),
415 A("stormfly-02.oob", STORMFLY02_OOB),
416 A("rimfaxe", RIMFAXE_IPV4),
417 AAAA("rimfaxe", RIMFAXE_IPV6),
418 A("culebre", CULEBRE_IPV4),
419 A("kalessin", KALESSIN_IPV4),
420 AAAA("kalessin", KALESSIN_IPV6),
421 A("angor", ANGOR_IPV4),
422 // AAAA("angor", ANGOR_IPV6),
423 A("ladon", LADON_IPV4),
424 AAAA("ladon", LADON_IPV6),
425 A("ascalon", ASCALON_IPV4),
426 A("noomoahk", NOOMOAHK_IPV4),
427 AAAA("noomoahk", NOOMOAHK_IPV6),
428 A("cherufe", CHERUFE_IPV4),
429 A("norbert", NORBERT_IPV4),
430 AAAA("norbert", NORBERT_IPV6),
431 A("chrysophylax", CHRYSOPHYLAX_IPV4),
432 AAAA("chrysophylax", CHRYSOPHYLAX_IPV6),
433 A("necrosan", NECROSAN_IPV4),
434 AAAA("necrosan", NECROSAN_IPV6),
435 A("keizer", KEIZER_IPV4),
436 AAAA("keizer", KEIZER_IPV6),
437 A("vipertooth", VIPERTOOTH_IPV4),
438 AAAA("vipertooth", VIPERTOOTH_IPV6),
439 A("tuatara", TUATARA_IPV4),
440 AAAA("tuatara", TUATARA_IPV6),
441 A("waima", WAIMA_IPV4),
442 A("nidhogg", NIDHOGG_IPV4),
443 AAAA("nidhogg", NIDHOGG_IPV6),
444 A("boitata", BOITATA_IPV4),
445 AAAA("boitata", BOITATA_IPV6),
446 A("fafnir", FAFNIR_IPV4),
447 AAAA("fafnir", FAFNIR_IPV6),
448 A("fume", FUME_IPV4),
449 A("balerion", BALERION_IPV4),
450 A("naga", NAGA_IPV4),
454 A("tiamat-00", TIAMAT00_IPV4),
455 A("tiamat-00.ucl", TIAMAT00_INTERNAL),
456 A("tiamat-00.oob", TIAMAT00_OOB),
457 A("tiamat-01", TIAMAT01_IPV4),
458 A("tiamat-01.ucl", TIAMAT01_INTERNAL),
459 A("tiamat-01.oob", TIAMAT01_OOB),
460 A("tiamat-02", TIAMAT02_IPV4),
461 A("tiamat-02.ucl", TIAMAT02_INTERNAL),
462 A("tiamat-02.oob", TIAMAT02_OOB),
463 A("tiamat-03", TIAMAT03_IPV4),
464 A("tiamat-03.ucl", TIAMAT03_INTERNAL),
465 A("tiamat-03.oob", TIAMAT03_OOB),
466 A("tiamat-10", TIAMAT10_IPV4),
467 A("tiamat-10.ucl", TIAMAT10_INTERNAL),
468 A("tiamat-10.oob", TIAMAT10_OOB),
469 A("tiamat-11", TIAMAT11_IPV4),
470 A("tiamat-11.ucl", TIAMAT11_INTERNAL),
471 A("tiamat-11.oob", TIAMAT11_OOB),
472 A("tiamat-12", TIAMAT12_IPV4),
473 A("tiamat-12.ucl", TIAMAT12_INTERNAL),
474 A("tiamat-12.oob", TIAMAT12_OOB),
475 A("tiamat-13", TIAMAT13_IPV4),
476 A("tiamat-13.ucl", TIAMAT13_INTERNAL),
477 A("tiamat-13.oob", TIAMAT13_OOB),
478 A("tiamat-20", TIAMAT20_IPV4),
479 A("tiamat-20.ucl", TIAMAT20_INTERNAL),
480 A("tiamat-20.oob", TIAMAT20_OOB),
481 A("tiamat-21", TIAMAT21_IPV4),
482 A("tiamat-21.ucl", TIAMAT21_INTERNAL),
483 A("tiamat-21.oob", TIAMAT21_OOB),
484 A("tiamat-22", TIAMAT22_IPV4),
485 A("tiamat-22.ucl", TIAMAT22_INTERNAL),
486 A("tiamat-22.oob", TIAMAT22_OOB),
487 A("tiamat-23", TIAMAT23_IPV4),
488 A("tiamat-23.ucl", TIAMAT23_INTERNAL),
489 A("tiamat-23.oob", TIAMAT23_OOB),
493 A("donate", RIDLEY_IPV4, TTL("10m")),
495 // Uptime site at StatusCake
497 CNAME("uptime", "uptimessl.statuscake.com."),
499 // Custom Domain for https://github.com/osmfoundation/welcome-mat/
501 CNAME("welcome", "osmfoundation.github.io."),
503 // Dynamic DNS records
projects / dns.git / blob