X-Git-Url: https://git.openstreetmap.org./dns.git/blobdiff_plain/662b3e7f301fcf16c3816b95d649ba741f4e4216..7df237ab044d059fe1f88b2d6ec877d1a36764b5:/src/osmfoundation.js diff --git a/src/osmfoundation.js b/src/osmfoundation.js index 7d83d66..642e584 100644 --- a/src/osmfoundation.js +++ b/src/osmfoundation.js @@ -13,13 +13,11 @@ D(DOMAIN, REGISTRAR, DnsProvider(PROVIDER), ], }), - // Let google handle email + // Let mailbox.org handle email - MX("@", 1, "aspmx.l.google.com."), - MX("@", 5, "alt1.aspmx.l.google.com."), - MX("@", 5, "alt2.aspmx.l.google.com."), - MX("@", 10, "alt3.aspmx.l.google.com."), - MX("@", 10, "alt4.aspmx.l.google.com."), + MX("@", 10, "mxext1.mailbox.org."), + MX("@", 10, "mxext2.mailbox.org."), + MX("@", 20, "mxext3.mailbox.org."), // Handle mail for the join subdomain ourselves @@ -31,17 +29,9 @@ D(DOMAIN, REGISTRAR, DnsProvider(PROVIDER), label: "@", parts: [ "v=spf1", - "include:_spf.google.com", // Google GSuite - "ip4:212.110.172.32", // shenron ipv4 - "ip6:2001:41c9:1:400::32", // shenron ipv6 - "ip4:184.104.226.98", // fafnir ipv4 - "ip6:2001:470:1:b3b::2", // fafnir ipv6 - "ip4:193.60.236.0/24", // ucl external - "ip4:184.104.179.128/27", // amsterdam external - "ip6:2001:470:1:fa1::/64", // amsterdam external - "ip4:184.104.226.96/27", // dublin external - "ip6:2001:470:1:b3b::/64", // dublin external "include:mailbox.org", // mailbox.org + "include:_spf.google.com", // Google GSuite + "include:openstreetmap.org", // main openstreetmap.org spf record "-all" ] }), @@ -50,13 +40,7 @@ D(DOMAIN, REGISTRAR, DnsProvider(PROVIDER), label: "wiki", parts: [ "v=spf1", - "ip4:184.104.226.98", // fafnir ipv4 - "ip6:2001:470:1:b3b::2", // fafnir ipv6 - "ip4:193.60.236.0/24", // ucl external - "ip4:184.104.179.128/27", // amsterdam external - "ip6:2001:470:1:fa1::/64", // amsterdam external - "ip4:184.104.226.96/27", // dublin external - "ip6:2001:470:1:b3b::/64", // dublin external + "include:openstreetmap.org", // main openstreetmap.org spf record "-all" ] }), @@ -100,29 +84,56 @@ D(DOMAIN, REGISTRAR, DnsProvider(PROVIDER), CNAME("calendar", "ghs.googlehosted.com."), CNAME("sites", "ghs.googlehosted.com."), - // Main web server and it's aliases + // Aliases for mailbox.org services - A("@", RIDLEY_IPV4), - A("www", RIDLEY_IPV4), - A("wiki", RIDLEY_IPV4), - A("blog", RIDLEY_IPV4), + CNAME("autoconfig", "mailbox.org."), + SRV("_hkps._tcp", 1, 1, 443, "pgp.mailbox.org."), - A("crm", RIDLEY_IPV4), - A("join", RIDLEY_IPV4), - A("support", RIDLEY_IPV4), - A("supporting", RIDLEY_IPV4), - A("donate", RIDLEY_IPV4), + // Main web server and it's aliases - A("board", RIDLEY_IPV4), - A("dwg", RIDLEY_IPV4), - A("mwg", RIDLEY_IPV4), - A("operations", NAGA_IPV4), - AAAA("operations", NAGA_IPV6), + A("@", IPV4["ridley"]), + A("www", IPV4["ridley"]), + A("wiki", IPV4["ridley"]), + A("blog", IPV4["ridley"]), + A("crm", IPV4["ridley"]), + A("join", IPV4["ridley"]), + A("support", IPV4["ridley"]), + A("supporting", IPV4["ridley"]), + A("donate", IPV4["ridley"]), + + A("board", IPV4["ridley"]), + A("dwg", IPV4["ridley"]), + A("mwg", IPV4["ridley"]), + A("operations", IPV4["naga.he"]), + AAAA("operations", IPV6["naga.he"]), + + // HTTPS / SVCB records + HTTPS("www", 1, ".", "alpn=h2"), + HTTPS("wiki", 1, ".", "alpn=h2"), + HTTPS("blog", 1, ".", "alpn=h2"), + HTTPS("crm", 1, ".", "alpn=h2"), + HTTPS("join", 1, ".", "alpn=h2"), + HTTPS("support", 1, ".", "alpn=h2"), + HTTPS("supporting", 1, ".", "alpn=h2"), + HTTPS("donate", 1, ".", "alpn=h2"), + HTTPS("board", 1, ".", "alpn=h2"), + HTTPS("dwg", 1, ".", "alpn=h2"), + HTTPS("mwg", 1, ".", "alpn=h2"), + HTTPS("operations", 1, ".", "alpn=h2"), // Nextcloud instance CNAME("files", "nextcloud-openstreetmapfoundation.cloud68.systems."), - A("hardware", IDRIS_IPV4) + // Staging Blog + A("staging.blog", IPV4["tabaluga"]), + AAAA("staging.blog", IPV6["tabaluga"]), + // HTTPS / SVCB records + HTTPS("staging.blog", 1, ".", "alpn=h2"), + + A("hardware", IPV4["idris.he"]), + + // HTTPS / SVCB records + HTTPS("hardware", 1, ".", "alpn=h2") );