From 911535433eca4320c4efcc249e9590382c448444 Mon Sep 17 00:00:00 2001 From: Andreas Baumann Date: Tue, 23 Apr 2024 17:43:21 +0200 Subject: synched with prod --- config/obr/nsd-external/etc/nsd.conf | 24 ++++++++++++++++++++++++ config/obr/nsd-internal/etc/nsd.conf | 5 +++++ config/obr/relayd.conf | 4 ++++ config/obr/unbound/etc/unbound.conf | 5 +++++ 4 files changed, 38 insertions(+) diff --git a/config/obr/nsd-external/etc/nsd.conf b/config/obr/nsd-external/etc/nsd.conf index a8435e7..8f9b4b1 100644 --- a/config/obr/nsd-external/etc/nsd.conf +++ b/config/obr/nsd-external/etc/nsd.conf @@ -116,3 +116,27 @@ zone: provide-xfr: 167.88.161.228 NOKEY provide-xfr: 199.195.249.208 NOKEY provide-xfr: 104.244.78.122 NOKEY + +zone: + name: "patrick-frey.org" + zonefile: "patrick-frey.org" + # old ones + provide-xfr: 173.244.206.25 NOKEY + provide-xfr: 173.244.206.26 NOKEY + provide-xfr: 88.198.106.11 NOKEY + # new ones + provide-xfr: 108.61.224.67 NOKEY + provide-xfr: 116.203.6.3 NOKEY + provide-xfr: 107.191.99.111 NOKEY + provide-xfr: 185.22.172.112 NOKEY + provide-xfr: 103.6.87.125 NOKEY + provide-xfr: 192.184.93.99 NOKEY + provide-xfr: 119.252.20.56 NOKEY + provide-xfr: 31.220.30.73 NOKEY + provide-xfr: 185.34.136.178 NOKEY + provide-xfr: 185.136.176.247 NOKEY + provide-xfr: 45.77.29.133 NOKEY + provide-xfr: 116.203.0.64 NOKEY + provide-xfr: 167.88.161.228 NOKEY + provide-xfr: 199.195.249.208 NOKEY + provide-xfr: 104.244.78.122 NOKEY diff --git a/config/obr/nsd-internal/etc/nsd.conf b/config/obr/nsd-internal/etc/nsd.conf index 3fd84a6..79a9c66 100644 --- a/config/obr/nsd-internal/etc/nsd.conf +++ b/config/obr/nsd-internal/etc/nsd.conf @@ -43,3 +43,8 @@ zone: zone: name: "openbsd-firewall.org" zonefile: "openbsd-firewall.org" + +zone: + name: "patrick-frey.org" + zonefile: "patrick-frey.org" + diff --git a/config/obr/relayd.conf b/config/obr/relayd.conf index b6bac8f..4769a8b 100644 --- a/config/obr/relayd.conf +++ b/config/obr/relayd.conf @@ -58,6 +58,10 @@ http protocol "http_protocol" { forward to no tag match request quick header "Host" value "openbsd-firewall.org" \ forward to no tag + match request quick header "Host" value "www.patrick-frey.org" \ + forward to no tag + match request quick header "Host" value "patrick-frey.org" \ + forward to no tag block request tagged disallowed_host label "BAD host" } diff --git a/config/obr/unbound/etc/unbound.conf b/config/obr/unbound/etc/unbound.conf index b12f9f5..af27ca0 100644 --- a/config/obr/unbound/etc/unbound.conf +++ b/config/obr/unbound/etc/unbound.conf @@ -21,6 +21,7 @@ server: private-domain: "lan" private-domain: "andreasbaumann.cc" private-domain: "maschezuoz.ch" + private-domain: "patrick-frey.org" local-zone: "lan." nodefault local-zone: "168.192.in-addr.arpa." nodefault @@ -51,6 +52,10 @@ stub-zone: name: "maschezuoz.ch." stub-addr: 127.0.0.1@8053 +stub-zone: + name: "patrick-frey.org." + stub-addr: 127.0.0.1@8053 + forward-zone: name: "." forward-addr: 212.25.1.1 -- cgit v1.2.3-54-g00ecf