Add he.net dns slaves

2 files changed, 24 insertions, 13 deletions

diff --git a/config/dns.nix b/config/dns.nix
index 9b32e6d..0741119 100644
--- a/config/dns.nix
+++ b/config/dns.nix
@@ -28,7 +28,7 @@ in
           type master;
           file "/var/run/named/db.${zone}.zone";
           auto-dnssec maintain;
-	  inline-signing yes;
+          inline-signing yes;
           sig-validity-interval 21 16;
           key-directory "/opt/secret/bind/${zone}";
           update-policy local;
@@ -38,42 +38,48 @@ in
             193.35.52.61;               // trygve transfer
             2a00:1b60:1011::6def:e868;  // ns1
             2001:67c:29f4::61;          // ns2
-            2604:2000:12c1:c0c6::1000;  // sabaki
+            216.218.133.2;              // slave.dns.he.net
+            2001:470:600::2;            // slave.dns.he.net
           };
           also-notify {
             193.35.52.61;               // trygve transfer
             2a00:1b60:1011::6def:e868;  // ns1
             2001:67c:29f4::61;          // ns2
+            216.218.133.2;              // slave.dns.he.net
+            2001:470:600::2;            // slave.dns.he.net
           };
           notify-source-v6 2001:470:8e2e:20::d;
-	  notify explicit;
+          notify explicit;
         };
       '') masterZones}
 
       include "/opt/secret/bind/dynamic.orbekk.com/update/named.conf.key";
       zone dynamic.orbekk.com {
         type master;
-	file "/var/run/named/db.dynamic.orbekk.com.zone";
-	auto-dnssec maintain;
-	key-directory "/opt/secret/bind/dynamic.orbekk.com";
-	allow-query { any; };
+        file "/var/run/named/db.dynamic.orbekk.com.zone";
+        auto-dnssec maintain;
+        key-directory "/opt/secret/bind/dynamic.orbekk.com";
+        allow-query { any; };
         allow-transfer {
           ::1;
           193.35.52.61;               // trygve transfer
           2a00:1b60:1011::6def:e868;  // ns1
           2001:67c:29f4::61;          // ns2
-          2604:2000:12c1:c0c6::1000;  // sabaki
+          216.218.133.2;              // slave.dns.he.net
+          2001:470:600::2;            // slave.dns.he.net
         };
         also-notify {
           193.35.52.61;               // trygve transfer
           2a00:1b60:1011::6def:e868;  // ns1
           2001:67c:29f4::61;          // ns2
+          216.218.133.2;              // slave.dns.he.net
+          2001:470:600::2;            // slave.dns.he.net
         };
         notify-source-v6 2001:470:8e2e:20::d;
-	notify explicit;
-	update-policy {
-	  grant dynamic.orbekk.com.key zonesub any;
-	};
+        notify explicit;
+        update-policy {
+          grant dynamic.orbekk.com.key zonesub any;
+        };
       };
     '';
   };
diff --git a/data/dns/db.orbekk.shared.zone b/data/dns/db.orbekk.shared.zone
index 9ec5937..bbbd51c 100644
--- a/data/dns/db.orbekk.shared.zone
+++ b/data/dns/db.orbekk.shared.zone
@@ -1,7 +1,7 @@
 $TTL 600
 @   IN  SOA kremkake.trygveandre.net.   root.orbekk.com. (
     $serial;    serial
-    601;        refresh
+    602;        refresh
     900;        retry
     2419200;    expire
     3600;
@@ -9,6 +9,11 @@ $TTL 600
 
     IN  NS  kakespade.trygveandre.net.
     IN  NS  kremkake.trygveandre.net.
+    IN  NS  ns1.he.net.
+    IN  NS  ns2.he.net.
+    IN  NS  ns3.he.net.
+    IN  NS  ns4.he.net.
+    IN  NS  ns5.he.net.
 
     IN MX 10 in1-smtp.messagingengine.com.
     IN MX 20 in2-smtp.messagingengine.com.