zones: replace all A 100.79.95.190 with CNAME rpm-bullet.mer.idahomuellers.net

27 records across 15 zones converted from direct A records pointing at
the Tailscale endpoint (100.79.95.190) to CNAMEs pointing at the
Tailscale-named alias. Now if the underlying Tailscale node's IP
changes, only the rpm-bullet record needs updating instead of
chasing 27 zones.

Affected zones (all *.l labels + a handful of dev / dev.mary names):
  acrazy.org      copper-springs.online   demostar.io      flonhoney.com
  homestar.ink    kg7q.cc                 malloys.us       ourjob.site
  qubeseptic.com  ryanmalloy.com          septic.report    sidejob.pro
  supported.systems  warehack.ing         zmesh.systems

No CNAME collisions: none of the converted names had other records
(MX/TXT/SRV/CAA/AAAA) at the same exact name. _acme-challenge.<sub>.l
records sit at distinct subdomains and continue to resolve independently
(verified: TXT lookups for known _acme-challenge.l.* names still return
the original values).

Also fixed prepare-zones.sh: added `|| true` after the serial-detection
grep so a zero-match (first run of a new day) doesn't trip `set -e`
and abort the whole prep.

scripts/prepare-zones.sh

@@ -32,8 +32,10 @@ TODAY=$(date +%Y%m%d)
 if [[ -z "${SERIAL:-}" ]]; then
   # Pull the highest YYYYMMDDNN serial from currently-prepared zones
   # that starts with today's date. If none, default to NN=01.
+  # `|| true` so a zero-match grep doesn't trip `set -e`. Empty $highest
+  # then triggers the "first run of the day" branch below.
   highest=$(grep -hE '^[[:space:]]+'"${TODAY}"'[0-9]{2}[[:space:]]+;' "$DST_DIR"/*.zone 2>/dev/null \
-            | awk '{print $1}' | sort -un | tail -1)
+            | awk '{print $1}' | sort -un | tail -1 || true)
   if [[ -n "$highest" ]]; then
     nn=$((10#${highest:8:2}))
     next_nn=$((nn + 1))

zones/acrazy.org.zone

@@ -7,8 +7,8 @@ $TTL 3600
 	300	IN	NS	ns2.vultr.com
 	300	IN	A	74.91.22.234
 or	300	IN	A	74.91.22.233
-l	300	IN	A	100.79.95.190
-*.l	300	IN	A	100.79.95.190
+l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
+*.l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 b	300	IN	A	108.61.229.209
 dootie	300	IN	A	108.61.229.209
 *	300	IN	CNAME	acrazy.org

zones/copper-springs.online.zone

@@ -6,7 +6,7 @@ $TTL 3600
 	300	IN	NS	ns1.vultr.com
 	300	IN	NS	ns2.vultr.com
 	300	IN	A	74.91.22.234
-dev	300	IN	A	100.79.95.190
+dev	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 *	300	IN	CNAME	copper-springs.online
 *.dev	300	IN	CNAME	dev.copper-springs.online
 	300	IN	MX	10	copper-springs.online

zones/demostar.io.zone

@@ -9,7 +9,7 @@ $TTL 3600
 ph	300	IN	A	144.202.60.236
 or	300	IN	A	74.91.22.233
 vdo	300	IN	A	74.91.22.230
-dev	300	IN	A	100.79.95.190
+dev	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 *	300	IN	CNAME	demostar.io
 shynet	300	IN	CNAME	demostar.io
 oo-sandbox	300	IN	CNAME	oo.demostar.io

zones/flonhoney.com.zone

@@ -6,8 +6,8 @@ $TTL 3600
 	300	IN	NS	ns1.vultr.com
 	300	IN	NS	ns2.vultr.com
 	300	IN	A	108.61.229.209
-l	300	IN	A	100.79.95.190
-*.l	300	IN	A	100.79.95.190
+l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
+*.l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 *	300	IN	CNAME	flonhoney.com
 	300	IN	MX	10	mail.supported.systems
 	300	IN	TXT	"v=spf1 mx a:mail.supported.systems ~all"

zones/homestar.ink.zone

@@ -6,8 +6,8 @@ $TTL 3600
 	300	IN	NS	ns1.vultr.com
 	300	IN	NS	ns2.vultr.com
 	300	IN	A	108.61.229.209
-l	300	IN	A	100.79.95.190
-*.l	300	IN	A	100.79.95.190
+l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
+*.l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 photos.mock-reso	300	IN	A	108.61.229.209
 *	300	IN	CNAME	homestar.ink
 	300	IN	MX	10	homestar.ink

zones/kg7q.cc.zone

@@ -6,7 +6,7 @@ $TTL 3600
 	300	IN	NS	ns1.vultr.com
 	300	IN	NS	ns2.vultr.com
 	300	IN	A	149.28.126.25
-*.l	300	IN	A	100.79.95.190
-l	300	IN	A	100.79.95.190
+*.l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
+l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 *	300	IN	CNAME	kg7q.cc
 	300	IN	MX	10	mail.supported.systems

zones/malloys.us.zone

@@ -6,7 +6,7 @@ $TTL 3600
 	300	IN	NS	ns1.vultr.com
 	300	IN	NS	ns2.vultr.com
 	300	IN	A	74.91.22.234
-dev.mary	300	IN	A	100.79.95.190
+dev.mary	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 *	300	IN	CNAME	malloys.us
 *.dev.mary	300	IN	CNAME	dev.mary.malloys.us
 vault	300	IN	CNAME	idahomuellers.fortiddns.com

zones/ourjob.site.zone

@@ -6,7 +6,7 @@ $TTL 3600
 	300	IN	NS	ns1.vultr.com
 	300	IN	NS	ns2.vultr.com
 	300	IN	A	108.61.229.209
-l	300	IN	A	100.79.95.190
-*.l	300	IN	A	100.79.95.190
+l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
+*.l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 *	300	IN	CNAME	ourjob.site
 	300	IN	MX	10	ourjob.site

zones/qubeseptic.com.zone

@@ -6,10 +6,10 @@ $TTL 3600
 	300	IN	NS	ns1.vultr.com
 	300	IN	NS	ns2.vultr.com
 	300	IN	A	108.61.229.209
-l	300	IN	A	100.79.95.190
+l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 *	300	IN	A	108.61.229.209
 autoconfig	600	IN	A	66.42.75.247
-*.l	300	IN	A	100.79.95.190
+*.l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 tw	300	IN	CNAME	lsct.ashburn.us1.twilio.com
 	300	IN	MX	10	mail.supported.systems
 jobs	300	IN	MX	10	mail.supported.systems

zones/ryanmalloy.com.zone

@@ -6,8 +6,8 @@ $TTL 3600
 	300	IN	NS	ns1.vultr.com
 	300	IN	NS	ns2.vultr.com
 	300	IN	A	108.61.229.209
-l	300	IN	A	100.79.95.190
-*.l	300	IN	A	100.79.95.190
+l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
+*.l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 *	300	IN	CNAME	ryanmalloy.com
 	300	IN	MX	10	mail.supported.systems
 	300	IN	TXT	"v=spf1 mx a:mail.supported.systems ~all"

zones/septic.report.zone

@@ -6,8 +6,8 @@ $TTL 3600
 	300	IN	NS	ns1.vultr.com
 	300	IN	NS	ns2.vultr.com
 	300	IN	A	108.61.229.209
-*.l	300	IN	A	100.79.95.190
-l	300	IN	A	100.79.95.190
+*.l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
+l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 *	300	IN	CNAME	septic.report
 permits	300	IN	CNAME	docker-2.supported.systems
 *.permits	300	IN	CNAME	permits.septic.report

zones/sidejob.pro.zone

@@ -6,8 +6,8 @@ $TTL 3600
 	300	IN	NS	ns1.vultr.com
 	300	IN	NS	ns2.vultr.com
 	300	IN	A	108.61.229.209
-*.l	300	IN	A	100.79.95.190
-l	300	IN	A	100.79.95.190
+*.l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
+l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 *	300	IN	CNAME	sidejob.pro
 	300	IN	MX	10	sidejob.pro
 _acme-challenge.api	300	IN	TXT	"a1zkQ7ukvloDCOuB5kCsxC1TWH2rRXKCCI88GJrwV84"

zones/supported.systems.zone

@@ -67,8 +67,8 @@ ollama-a40ls-1	300	IN	A	96.30.196.136
 ollama-gh200-1	300	IN	A	155.138.192.146
 ollama-gh200-2	300	IN	A	155.138.229.176
 ollama-gh200-3	300	IN	A	144.202.23.41
-l	300	IN	A	100.79.95.190
-*.l	300	IN	A	100.79.95.190
+l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
+*.l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 twilio.sip	300	IN	A	108.61.229.209
 cucm-pub.phones	300	IN	A	192.168.1.128
 cucm-sub1.phones	300	IN	A	192.168.1.129

zones/warehack.ing.zone

@@ -6,8 +6,8 @@ $TTL 3600
 	300	IN	NS	ns1.vultr.com
 	300	IN	NS	ns2.vultr.com
 	300	IN	A	149.28.126.25
-l	300	IN	A	100.79.95.190
-*.l	300	IN	A	100.79.95.190
+l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
+*.l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 *	300	IN	CNAME	warehack.ing
 git	300	IN	CNAME	idahomuellers.fortiddns.com
 juliet	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net

zones/zmesh.systems.zone

@@ -6,8 +6,8 @@ $TTL 3600
 	300	IN	NS	ns1.vultr.com
 	300	IN	NS	ns2.vultr.com
 	300	IN	A	149.28.126.25
-l	300	IN	A	100.79.95.190
-*.l	300	IN	A	100.79.95.190
+l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
+*.l	300	IN	CNAME	rpm-bullet.mer.idahomuellers.net
 *	300	IN	CNAME	zmesh.systems
 	300	IN	MX	10	zmesh.systems
 	300	IN	MX	5	mail.supported.systems