infrastructure/machines/core-services-01/subZone.nix

101 lines
2.3 KiB
Nix
Raw Normal View History

2021-07-28 23:55:23 +02:00
{ config, lib, dns, ... }:
with dns.lib.combinators;
let
my = config.my;
2022-01-25 18:12:54 +01:00
public-cof-ips = {
A = [ "45.13.104.27" ];
AAAA = [ "2001:470:1f13:187:c08e:feff:fe4d:f5f5" ];
};
delegateACMEDNSChallenge = acme: { _acme-challenge.CNAME = [ acme ]; };
2021-07-28 23:55:23 +02:00
remoteBuilders = {
2022-08-15 00:00:55 +02:00
nix01 = [ "2001:470:1f13:187:611:4514:d93a:f80a" ];
2021-07-28 23:55:23 +02:00
};
dualstack = {
A = my.ipv4;
AAAA = my.ipv6.standard;
};
in
dualstack // {
SOA = {
nameServer = "ns1.${my.subZone}.";
adminEmail = my.email;
2021-11-15 00:09:44 +01:00
serial = 2021111400; # Y M D Version
};
NS = [
"ns1.${my.subZone}."
];
CAA = letsEncrypt my.email;
subdomains = {
git = dualstack;
drone = dualstack;
wiki = dualstack;
monitoring = dualstack;
auth = dualstack;
push = dualstack;
tailscale = dualstack;
inventory = dualstack;
core01 = dualstack;
ns1 = dualstack;
2021-07-28 23:55:23 +02:00
builders.subdomains = lib.mapAttrs (n: AAAA: { inherit AAAA; }) remoteBuilders;
2021-11-12 00:59:59 +01:00
gdd = {
NS = [ "ns1.gdd.${my.subZone}." ];
subdomains.ns1.AAAA = [ "2001:470:1f13:187:350a:214a:639c:b97b" ];
2021-11-13 00:59:59 +01:00
AAAA = [ "2001:470:1f13:187:350a:214a:639c:b97b" ];
2021-11-12 00:59:59 +01:00
};
acme = {
NS = [ "acme.${my.subZone}." ];
A = my.ipv4;
AAAA = [ my.ipv6.acme ];
};
2022-01-25 18:12:54 +01:00
beta = public-cof-ips // {
subdomains = {
2022-09-10 15:21:59 +02:00
traque = {
inherit (public-cof-ips) A;
AAAA = [ "2001:470:1f13:187:f053:94ff:fe46:9664" ];
};
2022-01-25 18:12:54 +01:00
nuage = public-cof-ips;
minecraft = public-cof-ips;
factorio = public-cof-ips;
home = public-cof-ips;
pads = public-cof-ips // {
subdomains = {
api = public-cof-ips;
files = public-cof-ips;
sandbox = public-cof-ips;
};
};
2022-01-25 18:12:54 +01:00
docs = public-cof-ips;
jurisprudens = public-cof-ips;
rstudio = public-cof-ips;
};
};
2021-08-04 15:59:21 +02:00
2021-11-15 00:09:44 +01:00
internal.subdomains = {
# Routers
router01.A = [ "10.1.1.1" ];
router02.A = [ "10.1.1.1" ];
# Hypervisors
pve01 = {
A = [ "10.1.1.10" ];
subdomains = {
idrac.A = [ "10.1.2.20" ];
} // delegateACMEDNSChallenge "7c663a49-151c-4eea-a34f-725ff9f19d41.acme.rz.ens.wtf.";
};
# Core machines
core01.A = [ "10.1.1.20" ];
};
};
}