Ryan Malloy
6d72d65642
Big migration: the source/prepared split is gone. Each zones/*.zone is now an RFC-compliant zone file that CoreDNS reads directly. Editing a record is just edit + bump SOA + commit. CoreDNS auto-reloads within 30s; HE pulls on its own 300s SOA-refresh cycle. Why: groundwork for the coredns-rfc2136 plugin to edit zones in place without juggling a source/prepared transformation step. Also reduces the mental model from "edit source, run prep, push" to just "edit". Changes: - zones/*.zone: 84 files migrated from Vultr-export form to RFC-compliant form (SOA injected, Vultr NS replaced with HE NS, CNAME/MX/NS rdata dot-terminated, apex lines get explicit @ prefix). Diff is mechanical and byte-count is unchanged (~340K) -- pure formatting promotion. - docker-compose.yml: bind ./zones:/zones:ro (was ./zones-prepared) - Makefile: dropped 'prep' target. 'reload' is now a no-op explainer. 'tls-up' no longer depends on prep. 'clean' no longer wipes prepared. - scripts/prepare-zones.sh moved to scripts/archive/ (kept for reference). - .gitignore: updated comment for zones-prepared/ (now legacy). NOT in this commit (follow-ups): - CLAUDE.md updates documenting the new workflow. - scripts/bump-serials.sh helper for manual-edit SOA bumping. - coredns-rfc2136 plugin refactor (Phase 2b in the plan).
154 lines
6.6 KiB
Dns
154 lines
6.6 KiB
Dns
; Auto-prepared by scripts/prepare-zones.sh on 2026-05-21T11:12:50-06:00
|
|
; Source: zones/supported.systems.zone
|
|
$ORIGIN supported.systems.
|
|
$TTL 3600
|
|
@ 3600 IN SOA ns1.he.net. admin.supported.systems. (
|
|
2026052102 ; serial — bump per change (SERIAL=YYYYMMDDNN make prep)
|
|
300 ; refresh (5 min) — slaves poll us this often;
|
|
; tightened from 3600 to nudge HE's internal
|
|
; puller→anycast replication
|
|
120 ; retry (2 min) — kept < refresh per RFC 1912
|
|
604800 ; expire (1 week)
|
|
60 ; minimum (1 min) — negative-cache TTL on public
|
|
; resolvers; shrinks the window when an old
|
|
; NXDOMAIN keeps showing after we add a name
|
|
)
|
|
|
|
@ 3600 IN NS ns1.he.net.
|
|
@ 3600 IN NS ns2.he.net.
|
|
@ 3600 IN NS ns3.he.net.
|
|
@ 3600 IN NS ns4.he.net.
|
|
@ 3600 IN NS ns5.he.net.
|
|
|
|
|
|
@ 300 IN A 108.61.23.129
|
|
ns 300 IN AAAA 2001:19f0:5c00:4daa:5400:06ff:fe2d:38fa
|
|
ns 300 IN A 64.177.113.227
|
|
mail 300 IN A 155.138.160.10
|
|
old-mailu 300 IN A 66.42.75.247
|
|
ssh 300 IN A 45.77.1.152
|
|
git 300 IN CNAME git.supportedsystems.net.
|
|
* 60 IN A 108.61.23.129
|
|
up 300 IN A 45.63.92.95
|
|
vpn 300 IN A 45.77.1.152
|
|
web-bmh-servicedesk.bmh 300 IN A 45.77.1.152
|
|
cdn 300 IN A 155.138.192.181
|
|
server1 300 IN A 45.76.231.166
|
|
docker-1 300 IN A 108.61.229.209
|
|
dns 300 IN A 45.63.92.95
|
|
or 300 IN A 74.91.22.233
|
|
mx 300 IN A 144.202.25.84
|
|
pm1 300 IN A 63.141.228.162
|
|
fw-1.nocix 300 IN A 192.168.99.2
|
|
s3-slow 300 IN A 155.138.192.181
|
|
spacetimedb 300 IN A 74.91.22.226
|
|
posthog 300 IN A 74.91.22.230
|
|
supabase 300 IN A 74.91.22.231
|
|
ldap 300 IN A 74.91.22.231
|
|
authentik 300 IN A 74.91.22.231
|
|
pihole 300 IN A 69.62.64.174
|
|
vault 300 IN A 108.61.23.129
|
|
help 300 IN A 108.61.23.129
|
|
nautobot 300 IN A 69.62.64.174
|
|
*.valhalla 300 IN A 74.91.22.232
|
|
seafile 300 IN A 155.138.192.181
|
|
*.dj.l 300 IN A 127.0.0.1
|
|
*.flamenco.l 300 IN A 127.0.0.1
|
|
flamenco.l 300 IN A 127.0.0.1
|
|
*.test 300 IN A 74.91.22.234
|
|
test 300 IN A 74.91.22.234
|
|
dj 300 IN A 108.61.23.129
|
|
pbx 300 IN A 155.138.222.32
|
|
phone 300 IN A 155.138.222.32
|
|
ptt 300 IN A 155.138.222.32
|
|
ptt-api 300 IN A 155.138.222.32
|
|
gpu-2 300 IN A 45.63.79.151
|
|
hure 300 IN A 108.61.23.129
|
|
tigerstyle 300 IN A 108.61.23.129
|
|
bezel 300 IN A 45.63.92.95
|
|
gpu-0 300 IN A 140.82.5.177
|
|
gpu-1 300 IN A 108.61.17.52
|
|
vllm-5 300 IN A 45.77.206.172
|
|
gpu 300 IN A 154.27.180.210
|
|
*.gpu 300 IN A 154.27.180.210
|
|
langfuse 300 IN A 154.27.180.210
|
|
grafana 300 IN A 154.27.180.210
|
|
vllm-2 300 IN A 45.76.31.63
|
|
prezhub 300 IN A 45.32.217.212
|
|
gpu-spot-1 300 IN A 149.248.19.109
|
|
gpu-spot-2 300 IN A 45.77.17.87
|
|
siglip 300 IN A 154.27.180.210
|
|
*.siglip 300 IN A 154.27.180.210
|
|
staging.siglip 300 IN A 154.27.180.210
|
|
docker-2 300 IN A 149.28.126.25
|
|
sip 300 IN A 108.61.23.129
|
|
big-ass-llm-1 300 IN A 45.76.107.157
|
|
ollama-a40ls-1 300 IN A 96.30.196.136
|
|
ollama-gh200-1 300 IN A 155.138.192.146
|
|
ollama-gh200-2 300 IN A 155.138.229.176
|
|
ollama-gh200-3 300 IN A 144.202.23.41
|
|
l 300 IN CNAME rpm-bullet.mer.idahomuellers.net.
|
|
*.l 300 IN CNAME rpm-bullet.mer.idahomuellers.net.
|
|
twilio.sip 300 IN A 108.61.23.129
|
|
cucm-pub.phones 300 IN A 192.168.1.128
|
|
cucm-sub1.phones 300 IN A 192.168.1.129
|
|
ccx-pub.phones 300 IN A 192.168.1.130
|
|
ccx-sub1.phones 300 IN A 192.168.1.131
|
|
autoconfig 3600 IN CNAME mail.supported.systems.
|
|
autodiscover 300 IN CNAME mail.supported.systems.
|
|
imap 300 IN CNAME mail.supported.systems.
|
|
smtp 300 IN CNAME mail.supported.systems.
|
|
pop 300 IN CNAME mail.supported.systems.
|
|
webmail 300 IN CNAME mail.supported.systems.
|
|
*.vpn 300 IN CNAME vpn.supported.systems.
|
|
app.mcpmc-1.l 300 IN CNAME mpmc-1.l.supported.systems.
|
|
auth.llm-fusion-mcp.l 300 IN CNAME llm-fusion-mcp.l.supported.systems.
|
|
*.llm-fusion-mcp.l 300 IN CNAME llm-fusion-mcp.l.supported.systems.
|
|
*.mcpmc-1.l 300 IN CNAME mcpmc-1.l.supported.systems.
|
|
*.unger-todo.l 300 IN CNAME unger-todo.l.supported.systems.
|
|
*.tigerstyle.l 300 IN CNAME tigerstyle.l.supported.systems.
|
|
*.marcia.l 300 IN CNAME marcia.l.supported.systems.
|
|
*.mcp-vultr.l 300 IN CNAME mcp-vultr.l.supported.systems.
|
|
*.room-scanner.l 300 IN CNAME room-scanner.l.supported.systems.
|
|
*.pages.l 300 IN CNAME pages.l.supported.systems.
|
|
*.mcp-client-test.l 300 IN CNAME mcp-client-test.l.supported.systems.
|
|
*.magicplan.l 300 IN CNAME magicplan.l.supported.systems.
|
|
*.whereis.l 300 IN CNAME l.supported.systems.
|
|
*.leads.l 300 IN CNAME l.supported.systems.
|
|
*.portal.l 300 IN CNAME portal.l.supported.systems.
|
|
*.www.l 300 IN CNAME www.l.supported.systems.
|
|
*.matrix.l 300 IN CNAME matrix.l.supported.systems.
|
|
ollama 300 IN CNAME gpu-1.supported.systems.
|
|
speech 300 IN CNAME gpu-2.supported.systems.
|
|
chat.ollama 300 IN CNAME gpu-1.supported.systems.
|
|
*.hure 300 IN CNAME hure.supported.systems.
|
|
dafuk 300 IN CNAME hure.supported.systems.
|
|
*.tigerstyle 300 IN CNAME tigerstyle.supported.systems.
|
|
ei.l 300 IN CNAME idx.l.supported.systems.
|
|
vllm 300 IN CNAME gpu-0.supported.systems.
|
|
*.gpu-0 300 IN CNAME gpu-0.supported.systems.
|
|
llm 300 IN CNAME lb.gpu.supported.systems.
|
|
*.sip 300 IN CNAME sip.supported.systems.
|
|
s120 300 IN CNAME docker-2.supportedsystems.net.
|
|
docs 300 IN CNAME docker-2.supportedsystems.net.
|
|
*.docs 300 IN CNAME docker-2.supportedsystems.net.
|
|
mcbluetooth 300 IN CNAME docker-2.supportedsystems.net.
|
|
@ 300 IN MX 10 mail.supported.systems.
|
|
@ 3600 IN TXT "v=spf1 mx a:mail.supported.systems ~all"
|
|
@ 3600 IN TXT "google-site-verification=15bc_L-lCtt0kqBDSaxT92-ftzENYEfMuHv3g7yVNS8"
|
|
_dmarc 3600 IN TXT "v=DMARC1; p=reject; rua=mailto:reports@supported.systems; adkim=s; aspf=s;"
|
|
dkim._domainkey 3600 IN TXT "v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGPt3zH0RxxDUW1Wg+3FOKIYNQy5vo/hvbPB/U6O7hh5K/SnQ2MDPfnL3B+Ur3kKmYFcSTdVMotr9Ds7wRJWFv49oK4f4VKxfoBD8Sh9GrJDNDM+g86h8M1v3cWKLdeRa+UczJDLRb9wwW8eRR17OQafqGupN0ZbsazbZwTrC5z/RZlLBtEMsIceWwHP hR+H3Bl9rH2t1RQSjbD2A9fM5EPXeVvzn9SwDpxgfMRfs7/k/prPASxW0/8Bun3k2BOzOjP/H4v509xTJOn/6S5eC2QJ47hw5XsjOu1j9Fy2YqUkgDpcrqLiS5K/7E+BSWURitfuxAamv+vkTfrbU3D0lQIDAQAB"
|
|
supported.systems._report._dmarc.mail 3600 IN TXT "v=DMARC1;"
|
|
@ 3600 IN TXT "openai-domain-verification=dv-U5gJT4fmfg0LnrKfBgmv5vt6"
|
|
_25._tcp.mail 86400 IN TXT "2 1 1 0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3"
|
|
qubeseptic.com._report._dmarc.mail 300 IN TXT "v=DMARC1;"
|
|
_twilio 300 IN TXT "twilio-domain-verification=efffc13bf1b402210d9d2b65e3532a48"
|
|
_twilio.tw 300 IN TXT "twilio-domain-verification=833caff534ff55960f1f1c92ea3d2e49"
|
|
_imaps._tcp 3600 IN SRV 10 0 993 mail.supported.systems
|
|
_submission._tcp 3600 IN SRV 10 0 587 mail.supported.systems
|
|
_sips._tcp.sip 600 IN SRV 10 0 5061 sip.supported.systems
|
|
_sip._udp.sip 600 IN SRV 10 0 5060 sip.supported.systems
|
|
_sip._udp 300 IN SRV 10 0 5060 sip.supported.systems
|
|
_sip._tcp 300 IN SRV 10 0 5060 sip.supported.systems
|
|
_sips._tcp 300 IN SRV 10 0 5061 sip.supported.systems
|