globals: dns:
with dns.lib.combinators; {
  CAA = letsEncrypt "caa@kun.is";

  SOA = {
    nameServer = "ns1";
    adminEmail = "webmaster.kun.is";
    serial = 2024041301;
  };

  NS = [
    "ns1.kun.is."
    "ns2.kun.is."
  ];

  MX = [
    (mx.mx 10 "mail.kun.is.")
  ];

  TXT = [
    (with spf; soft ["include:spf.glasnet.nl"])
  ];

  subdomains = rec {
    "*".A = [globals.routerPublicIPv4];

    ns = {
      A = [globals.routerPublicIPv4];
      AAAA = [];
    };

    ns1 = ns;
    ns2 = ns;

    wg = {
      A = [globals.routerPublicIPv4];
      AAAA = [];
    };

    #for SMTP2GO to be able send emails from kun.is domain
    em670271 = {
      CNAME = ["return.smtp2go.net."];
    };

    "s670271._domainkey" = {
      CNAME = ["dkim.smtp2go.net."];
    };

    link = {
      CNAME = ["track.smtp2go.net."];
    };
  };
}