Document DNS setup in bootstrap

[danielrichman]

The act of running sync_linode deals with everything under vm.habhub.org, but there are some important records elsewhere: DKIM for naked habhub.org, ceto.habhub.org, phorcys.habhub.org and ukhas.org.uk.

[danielrichman]

Okay, so I propose adding a section like this:

DNS Setup

If you're setting up DNS from scratch, there are probably other things you need to visit (habcloud-vms depends on linode to sync public DNS, etc.). This section mainly exists to record what we did for documentation purposes, though it is worded as if it were bootstrapping instructions.

Before starting

• Setup a zone habhub.org, add ceto & phorcys' A & AAAA records.
• Setup an empty zone vm.habhub.org, and let the API key used in habcloud-vms edit it.

After salt has set up the support vm,

• run habcloud-vms sync_linode to sync the vm.habhub.org zone
• retrieve the DKIM public key (from support:/etc/exim4/dkim.public.key, or a DKIM record that the script just added) and apply it to
  • support._domainkey.habhub.org
  • support._domainkey.ceto.habhub.org
  • support._domainkey.phorcys.habhub.org
  • support._domainkey.ukhas.org.uk

At your leisure

• Setup a zone ukhas.org.uk
• Add MX records to ukhas.org.uk and habhub.org (Google Apps)
• Set A and AAAA records on the naked domains habhub.org and ukhas.org.uk
• Set CNAME records to point to the right VM for the various services on habhub.org and ukhas.org.uk.
• Add TXT records with contents v=spf1 a:support.vm.habhub.org -all to
  • ceto.habhub.org
  • phorcys.habhub.org
• Add TXT records with contents v=spf1 a:support.vm.habhub.org include:aspmx.googlemail.com -all to
  • habhub.org
  • ukhas.org.uk

[danielrichman]

This point:

• Set CNAME records to point to the right VM for the various services on habhub.org and ukhas.org.uk.

makes me feel like it might be a lot easier if habcloud-vms just manages the entire habhub zone.
We could record which vms should have which cnames in vms.yaml (or maybe somewhere else).