implement pools, fix up setServerPolicy for Lua policies, document is

diff --git a/pdns/README-dnsdist.md b/pdns/README-dnsdist.md
index 6708d6c339b3b61522a6f2c0c3f328bf94333c0c..5128dcf54eb66bc7239120262b8b794429ece73b 100644 (file)
--- a/pdns/README-dnsdist.md
+++ b/pdns/README-dnsdist.md
@@ -106,11 +106,11 @@ this:
 > addDomainBlock("sh43354.cn.")
 ```
 
-Or we configure a server dedicated to receiving the nasty stuff:
+Or we configure a server pool dedicated to receiving the nasty stuff:
 
 ```
-> abuseServer(newServer("192.168.1.3"))
-> abuseSMN("sh43353.cn.")
+> newServer{address="192.168.1.3", pool="abuse")
+> addPoolRule({"sh43353.cn.", "ezdns.it."}, "abuse")
 ```
 
 The wonderful thing about this last solution is that it can also be used for
@@ -122,8 +122,13 @@ impacting the rest of the world (too much).
 We can similarly add clients to the abuse server:
 
 ```
-> abuseNM("192.168.12.0/24")
-> abuseNM("192.168.13.14")
+> addPoolRule({"192.168.12.0/24", "192.168.13.14"}, "abuse")
+```
+
+Pool rules can be inspected with `showPoolRules()`, and can be deleted with
+`rmPoolRule()`. Servers can be added or removed to pools with:
+```
+> getServer(7):addPool("abuse")
 ```
 
 More power
@@ -224,13 +229,12 @@ for example:
 
 ```
 counter=0
-servers=getServers()
-function luaroundrobin(remote, qname, qtype, dh) 
+function luaroundrobin(servers, remote, qname, qtype, dh) 
         counter=counter+1
         return servers[1+(counter % #servers)]
 end
 
-setServerPolicy(luaroundrobin)
+setServerPolicyLua("luaroundrobin", luaroundrobin)
 ```
 
 Incidentally, this is similar to setting: `setServerPolicy(roundrobin)`
@@ -242,20 +246,18 @@ Split horizon
 To implement a split horizon, try:
 
 ```
-authServer=newServer{address="2001:888:2000:1d::2", order=12}
--- order=12 is the current hack to make sure this server does 
--- not generally get used, will be replaced by dedicated pools later
+authServer=newServer{address="2001:888:2000:1d::2", pool="auth"}
 
-function splitSetup(remote, qname, qtype, dh)
+function splitSetup(servers, remote, qname, qtype, dh)
         if(dh:getRD() == false)
         then
                return authServer
         else
-               return leastOutstanding(remote, qname, qtype, dh)
+               return leastOutstanding(servers, remote, qname, qtype, dh)
         end
 end
 
-setServerPolicy(splitSetup)
+setServerPolicyLua("splitsetup", splitSetup)
 ```
 
 This will forward queries that don't want recursion to a specific

diff --git a/pdns/dnsdist.cc b/pdns/dnsdist.cc
index 65ec35c10ed9d3dfc243d8e9c2d535eb1ae60a55..d415b85d7273938216716fd6a8575aa456d917e2 100644 (file)
--- a/pdns/dnsdist.cc
+++ b/pdns/dnsdist.cc
@@ -200,6 +200,7 @@ private:
 };
 
 vector<pair<boost::variant<SuffixMatchNode,NetmaskGroup>, QPSLimiter> > g_limiters;
+vector<pair<boost::variant<SuffixMatchNode,NetmaskGroup>, string> > g_poolrules;
 
 struct IDState
 {
@@ -266,6 +267,7 @@ struct DownstreamState
   int order{1};
   int weight{1};
   StopWatch sw;
+  set<string> pools;
   enum class Availability { Up, Down, Auto} availability{Availability::Auto};
   bool upStatus{false};
   bool isUp() const
@@ -343,7 +345,7 @@ struct ClientState
 std::mutex g_luamutex;
 LuaContext g_lua;
 
-typedef std::function<shared_ptr<DownstreamState>(const ComboAddress& remote, const DNSName& qname, uint16_t qtype, dnsheader* dh)> policy_t;
+typedef std::function<shared_ptr<DownstreamState>(const vector<shared_ptr<DownstreamState>>& servers, const ComboAddress& remote, const DNSName& qname, uint16_t qtype, dnsheader* dh)> policy_t;
 
 struct ServerPolicy
 {
@@ -351,9 +353,9 @@ struct ServerPolicy
   policy_t policy;
 } g_policy;
 
-shared_ptr<DownstreamState> firstAvailable(const ComboAddress& remote, const DNSName& qname, uint16_t qtype, dnsheader* dh)
+shared_ptr<DownstreamState> firstAvailable(const vector<shared_ptr<DownstreamState>>& servers, const ComboAddress& remote, const DNSName& qname, uint16_t qtype, dnsheader* dh)
 {
-  for(auto& d : g_dstates) {
+  for(auto& d : servers) {
     if(d->isUp() && d->qps.check())
       return d;
   }
@@ -364,13 +366,13 @@ shared_ptr<DownstreamState> firstAvailable(const ComboAddress& remote, const DNS
   return g_dstates[counter % g_dstates.size()];
 }
 
-shared_ptr<DownstreamState> leastOutstanding(const ComboAddress& remote, const DNSName& qname, uint16_t qtype, dnsheader* dh)
+shared_ptr<DownstreamState> leastOutstanding(const vector<shared_ptr<DownstreamState>>& servers, const ComboAddress& remote, const DNSName& qname, uint16_t qtype, dnsheader* dh)
 {
-  vector<pair<int, shared_ptr<DownstreamState>>> poss;
+  vector<pair<pair<int,int>, shared_ptr<DownstreamState>>> poss;
 
-  for(auto& d : g_dstates) {      // w=1, w=10 -> 1, 11
+  for(auto& d : servers) {      // w=1, w=10 -> 1, 11
     if(d->isUp()) {
-      poss.push_back({d->outstanding.load(), d});
+      poss.push_back({make_pair(d->outstanding.load(), d->order), d});
     }
   }
   if(poss.empty())
@@ -379,11 +381,11 @@ shared_ptr<DownstreamState> leastOutstanding(const ComboAddress& remote, const D
   return poss.begin()->second;
 }
 
-shared_ptr<DownstreamState> wrandom(const ComboAddress& remote, const DNSName& qname, uint16_t qtype, dnsheader* dh)
+shared_ptr<DownstreamState> wrandom(const vector<shared_ptr<DownstreamState>>& servers, const ComboAddress& remote, const DNSName& qname, uint16_t qtype, dnsheader* dh)
 {
   vector<pair<int, shared_ptr<DownstreamState>>> poss;
   int sum=0;
-  for(auto& d : g_dstates) {      // w=1, w=10 -> 1, 11
+  for(auto& d : servers) {      // w=1, w=10 -> 1, 11
     if(d->isUp()) {
       sum+=d->weight;
       poss.push_back({sum, d});
@@ -397,11 +399,11 @@ shared_ptr<DownstreamState> wrandom(const ComboAddress& remote, const DNSName& q
   return p->second;
 }
 
-shared_ptr<DownstreamState> roundrobin(const ComboAddress& remote, const DNSName& qname, uint16_t qtype, dnsheader* dh)
+shared_ptr<DownstreamState> roundrobin(const vector<shared_ptr<DownstreamState>>& servers, const ComboAddress& remote, const DNSName& qname, uint16_t qtype, dnsheader* dh)
 {
   vector<shared_ptr<DownstreamState>> poss;
 
-  for(auto& d : g_dstates) {
+  for(auto& d : servers) {
     if(d->isUp()) {
       poss.push_back(d);
     }
@@ -419,8 +421,6 @@ shared_ptr<DownstreamState> roundrobin(const ComboAddress& remote, const DNSName
   return (*res)[(counter++) % res->size()];
 }
 
-
-
 static void daemonize(void)
 {
   if(fork())
@@ -440,12 +440,23 @@ static void daemonize(void)
 }
 
 SuffixMatchNode g_suffixMatchNodeFilter;
-SuffixMatchNode g_abuseSMN;
-NetmaskGroup g_abuseNMG;
-shared_ptr<DownstreamState> g_abuseDSS;
+
 ComboAddress g_serverControl{"127.0.0.1:5199"};
 
+using servers_t =vector<shared_ptr<DownstreamState>>;
+servers_t getDownstreamCandidates(const std::string& pool)
+{
+  if(pool.empty())
+    return g_dstates;
+  
+  servers_t ret;
+  for(auto& s : g_dstates) 
+    if(s->pools.count(pool))
+      ret.push_back(s);
+  
+  return ret;
 
+}
 
 // listens to incoming queries, sends out to downstream servers, noting the intended return path 
 void* udpClientThread(ClientState* cs)
@@ -478,96 +489,114 @@ try
   }
   for(;;) {
     try {
-    len = recvfrom(cs->udpFD, packet, sizeof(packet), 0, (struct sockaddr*) &remote, &socklen);
-    if(len < (int)sizeof(struct dnsheader)) 
-      continue;
-
-    if(!g_ACL.match(remote))
-      continue;
-
-    if(dh->qr)    // don't respond to responses
-      continue;
-
-
-    DNSName qname(packet, len, 12, false, &qtype);
-
-    g_rings.queryRing.push_back(qname);
-    
-    bool blocked=false;
-    for(auto& lim : g_limiters) {
-      if(auto nmg=boost::get<NetmaskGroup>(&lim.first)) {
-       if(nmg->match(remote) && !lim.second.check()) {
-         blocked=true;
-         break;
+      len = recvfrom(cs->udpFD, packet, sizeof(packet), 0, (struct sockaddr*) &remote, &socklen);
+      if(len < (int)sizeof(struct dnsheader)) 
+       continue;
+      
+      if(!g_ACL.match(remote))
+       continue;
+      
+      if(dh->qr)    // don't respond to responses
+       continue;
+      
+      
+      DNSName qname(packet, len, 12, false, &qtype);
+      
+      g_rings.queryRing.push_back(qname);
+      
+      bool blocked=false;
+      for(auto& lim : g_limiters) {
+       if(auto nmg=boost::get<NetmaskGroup>(&lim.first)) {
+         if(nmg->match(remote) && !lim.second.check()) {
+           blocked=true;
+           break;
+         }
        }
-      }
-      else if(auto smn=boost::get<SuffixMatchNode>(&lim.first)) {
-       if(smn->check(qname) && !lim.second.check()) {
-         blocked=true;
-         break;
+       else if(auto smn=boost::get<SuffixMatchNode>(&lim.first)) {
+         if(smn->check(qname) && !lim.second.check()) {
+           blocked=true;
+           break;
+         }
        }
       }
-    }
-    if(blocked)
-      continue;
+      if(blocked)
+       continue;
 
-    if(blockFilter)
-    {
-      std::lock_guard<std::mutex> lock(g_luamutex);
 
-      if(blockFilter(remote, qname, qtype, dh))
+      
+      if(blockFilter) {
+       std::lock_guard<std::mutex> lock(g_luamutex);
+       
+       if(blockFilter(remote, qname, qtype, dh))
+         continue;
+      }
+      
+      if(g_suffixMatchNodeFilter.check(qname))
        continue;
-    }
-
-    if(g_suffixMatchNodeFilter.check(qname))
-      continue;
+      
+      if(re && re->match(qname.toString())) {
+       g_regexBlocks++;
+       continue;
+      }
+      
+      if(dh->qr) { // something turned it into a response
+       sendto(cs->udpFD, packet, len, 0, (struct sockaddr*)&remote, remote.getSocklen());
+       continue;
+      }
 
-    if(re && re->match(qname.toString())) {
-      g_regexBlocks++;
-      continue;
-    }
-   
-    if(dh->qr) { // something turned it into a response
-      sendto(cs->udpFD, packet, len, 0, (struct sockaddr*)&remote, remote.getSocklen());
-      continue;
-    }
+      string pool;
+      for(auto& pr : g_poolrules) {
+       if(auto nmg=boost::get<NetmaskGroup>(&pr.first)) {
+         if(nmg->match(remote)) {
+           pool=pr.second;
+           break;
+         }
+       }
+       else if(auto smn=boost::get<SuffixMatchNode>(&pr.first)) {
+         if(smn->check(qname)) {
+           pool=pr.second;
+           break;
+         }
+       }
+      }
+      DownstreamState* ss = 0;
+      {
+       std::lock_guard<std::mutex> lock(g_luamutex);
+       auto candidates=getDownstreamCandidates(pool);
+       ss = g_policy.policy(candidates, remote, qname, qtype, dh).get();
+      }
 
-    DownstreamState* ss = 0;
-    if(g_abuseSMN.check(qname) || g_abuseNMG.match(remote)) {
-      ss = &*g_abuseDSS;
-    }
-    else {
-      std::lock_guard<std::mutex> lock(g_luamutex);
-      ss = g_policy.policy(remote, qname, qtype, dh).get();
       if(!ss)
        continue;
+      
+      ss->queries++;
+      
+      unsigned int idOffset = (ss->idOffset++) % ss->idStates.size();
+      IDState* ids = &ss->idStates[idOffset];
+      
+      if(ids->origFD < 0) // if we are reusing, no change in outstanding
+       ss->outstanding++;
+      else
+       ss->reuseds++;
+      
+      ids->origFD = cs->udpFD;
+      ids->age = 0;
+      ids->origID = dh->id;
+      ids->origRemote = remote;
+      ids->sentTime.start();
+      ids->qname = qname;
+      ids->qtype = qtype;
+      dh->id = idOffset;
+      
+      len = send(ss->fd, packet, len, 0);
+      if(len < 0) 
+       ss->sendErrors++;
+      
+      vinfolog("Got query from %s, relayed to %s", remote.toStringWithPort(), ss->remote.toStringWithPort());
     }
-    ss->queries++;
-
-    unsigned int idOffset = (ss->idOffset++) % ss->idStates.size();
-    IDState* ids = &ss->idStates[idOffset];
-
-    if(ids->origFD < 0) // if we are reusing, no change in outstanding
-      ss->outstanding++;
-    else
-      ss->reuseds++;
-    
-    ids->origFD = cs->udpFD;
-    ids->age = 0;
-    ids->origID = dh->id;
-    ids->origRemote = remote;
-    ids->sentTime.start();
-    ids->qname = qname;
-    ids->qtype = qtype;
-    dh->id = idOffset;
-    
-    len = send(ss->fd, packet, len, 0);
-    if(len < 0) 
-      ss->sendErrors++;
-
-    vinfolog("Got query from %s, relayed to %s", remote.toStringWithPort(), ss->remote.toStringWithPort());
+    catch(std::exception& e){
+      errlog("Got an error: %s", e.what());
     }
-    catch(...){}
   }
   return 0;
 }
@@ -606,7 +635,7 @@ int getTCPDownstream(DownstreamState** ds, const ComboAddress& remote, const DNS
 {
   {
     std::lock_guard<std::mutex> lock(g_luamutex);
-    *ds = g_policy.policy(remote, qname, qtype, dh).get();
+    *ds = g_policy.policy(g_dstates, remote, qname, qtype, dh).get();
   }
   
   vinfolog("TCP connecting to downstream %s", (*ds)->remote.toStringWithPort());
@@ -697,8 +726,7 @@ void* tcpClientThread(int pipefd)
     --g_tcpclientthreads.d_queued;
     ci=*citmp;
     delete citmp;
-     
-
+    
     uint16_t qlen, rlen;
     try {
       for(;;) {      
@@ -959,6 +987,10 @@ void setupLua(bool client)
                          ret->qps=QPSLimiter(boost::lexical_cast<int>(vars["qps"]),boost::lexical_cast<int>(vars["qps"]));
                        }
 
+                       if(vars.count("pool")) {
+                         ret->pools.insert(vars["pool"]);
+                       }
+
                        if(vars.count("order")) {
                          ret->order=boost::lexical_cast<int>(vars["order"]);
                        }
@@ -978,7 +1010,7 @@ void setupLua(bool client)
 
 
 
-  g_lua.writeFunction("deleteServer", 
+  g_lua.writeFunction("rmServer", 
                      [](boost::variant<std::shared_ptr<DownstreamState>, int> var)
                      { 
                        if(auto* rem = boost::get<shared_ptr<DownstreamState>>(&var))
@@ -988,8 +1020,12 @@ void setupLua(bool client)
                      } );
 
 
-  g_lua.writeFunction("setServerPolicy", [](ServerPolicy policy) {
-      g_policy = policy;
+  g_lua.writeFunction("setServerPolicy", [](ServerPolicy policy)  {
+      g_policy=policy;
+    });
+
+  g_lua.writeFunction("setServerPolicyLua", [](string name, policy_t policy)  {
+      g_policy=ServerPolicy{name, policy};
     });
 
   g_lua.writeFunction("showServerPolicy", []() {
@@ -999,7 +1035,7 @@ void setupLua(bool client)
 
   g_lua.registerMember("name", &ServerPolicy::name);
   g_lua.registerMember("policy", &ServerPolicy::policy);
-
+  g_lua.writeFunction("newServerPolicy", [](string name, policy_t policy) { return ServerPolicy{name, policy};});
   g_lua.writeVariable("firstAvailable", ServerPolicy{"firstAvailable", firstAvailable});
   g_lua.writeVariable("roundrobin", ServerPolicy{"roundrobin", roundrobin});
   g_lua.writeVariable("wrandom", ServerPolicy{"wrandom", wrandom});
@@ -1030,9 +1066,9 @@ void setupLua(bool client)
       try {
       ostringstream ret;
       
-      boost::format fmt("%1$-3d %2% %|30t|%3$5s %|36t|%4$7.1f %|41t|%5$7d %|44t|%6$3d %|53t|%7$2d %|55t|%8$10d %|61t|%9$7d %|76t|%10$5.1f %|84t|%11$5.1f" );
+      boost::format fmt("%1$-3d %2% %|30t|%3$5s %|36t|%4$7.1f %|41t|%5$7d %|44t|%6$3d %|53t|%7$2d %|55t|%8$10d %|61t|%9$7d %|76t|%10$5.1f %|84t|%11$5.1f %12%" );
       //             1        2          3       4        5       6       7       8           9        10        11
-      ret << (fmt % "#" % "Address" % "State" % "Qps" % "Qlim" % "Ord" % "Wt" % "Queries" % "Drops" % "Drate" % "Lat") << endl;
+      ret << (fmt % "#" % "Address" % "State" % "Qps" % "Qlim" % "Ord" % "Wt" % "Queries" % "Drops" % "Drate" % "Lat" % "Pools") << endl;
 
       uint64_t totQPS{0}, totQueries{0}, totDrops{0};
       int counter=0;
@@ -1045,9 +1081,16 @@ void setupLua(bool client)
        else 
          status = (s->upStatus ? "up" : "down");
 
+       string pools;
+       for(auto& p : s->pools) {
+         if(!pools.empty())
+           pools+=" ";
+         pools+=p;
+       }
+
        ret << (fmt % counter % s->remote.toStringWithPort() % 
                status % 
-               s->queryLoad % s->qps.getRate() % s->order % s->weight % s->queries.load() % s->reuseds.load() % (s->dropRate) % (s->latencyUsec/1000.0)) << endl;
+               s->queryLoad % s->qps.getRate() % s->order % s->weight % s->queries.load() % s->reuseds.load() % (s->dropRate) % (s->latencyUsec/1000.0) % pools) << endl;
 
        totQPS += s->queryLoad;
        totQueries += s->queries.load();
@@ -1056,12 +1099,54 @@ void setupLua(bool client)
       }
       ret<< (fmt % "All" % "" % "" 
                % 
-             (double)totQPS % "" % "" % "" % totQueries % totDrops % "" % "") << endl;
+            (double)totQPS % "" % "" % "" % totQueries % totDrops % "" % "" % "" ) << endl;
 
       g_outputBuffer=ret.str();
       }catch(std::exception& e) { g_outputBuffer=e.what(); throw; }
     });
 
+  g_lua.writeFunction("addPoolRule", [](boost::variant<string,vector<pair<int, string>> > var, string pool) {
+      SuffixMatchNode smn;
+      NetmaskGroup nmg;
+
+      auto add=[&](string src) {
+       try {
+         smn.add(DNSName(src));
+       } catch(...) {
+         nmg.addMask(src);
+       }
+      };
+      if(auto src = boost::get<string>(&var))
+       add(*src);
+      else {
+       for(auto& a : boost::get<vector<pair<int, string>>>(var)) {
+         add(a.second);
+       }
+      }
+      if(nmg.empty())
+       g_poolrules.push_back({smn, pool});
+      else
+       g_poolrules.push_back({nmg, pool});
+
+    });
+
+  g_lua.writeFunction("showPoolRules", []() {
+      boost::format fmt("%-3d %-50s %s\n");
+      g_outputBuffer += (fmt % "#" % "Object" % "Pool").str();
+      int num=0;
+      for(const auto& lim : g_poolrules) {
+       string name;
+       if(auto nmg=boost::get<NetmaskGroup>(&lim.first)) {
+         name=nmg->toString();
+       }
+       else if(auto smn=boost::get<SuffixMatchNode>(&lim.first)) {
+         name=smn->toString(); 
+       }
+       g_outputBuffer += (fmt % num % name % lim.second).str();
+       ++num;
+      }
+    });
+
 
   g_lua.writeFunction("addQPSLimit", [](boost::variant<string,vector<pair<int, string>> > var, int lim) {
       SuffixMatchNode smn;
@@ -1087,7 +1172,7 @@ void setupLua(bool client)
        g_limiters.push_back({nmg, QPSLimiter(lim, lim)});
     });
 
-  g_lua.writeFunction("deleteQPSLimit", [](int i) {
+  g_lua.writeFunction("rmQPSLimit", [](int i) {
       g_limiters.erase(g_limiters.begin() + i);
     });
 
@@ -1120,11 +1205,12 @@ void setupLua(bool client)
 
   g_lua.writeFunction("getServer", [](int i) { return g_dstates[i]; });
 
-  g_lua.registerFunction<string(DownstreamState::*)()>("tostring", [](const DownstreamState& s) { return s.remote.toStringWithPort(); });
   g_lua.registerFunction<bool(DownstreamState::*)()>("checkQPS", [](DownstreamState& s) { return s.qps.check(); });
   g_lua.registerFunction<void(DownstreamState::*)(int)>("setQPS", [](DownstreamState& s, int lim) { s.qps = lim ? QPSLimiter(lim, lim) : QPSLimiter(); });
+  g_lua.registerFunction<void(DownstreamState::*)(string)>("addPool", [](DownstreamState& s, string pool) { s.pools.insert(pool);});
+  g_lua.registerFunction<void(DownstreamState::*)(string)>("rmPool", [](DownstreamState& s, string pool) { s.pools.erase(pool);});
 
-  g_lua.registerFunction<int(DownstreamState::*)()>("getOutstanding", [](const DownstreamState& s) { return s.outstanding.load(); });
+  g_lua.registerFunction<void(DownstreamState::*)()>("getOutstanding", [](const DownstreamState& s) { g_outputBuffer=std::to_string(s.outstanding.load()); });
 
 
   g_lua.registerFunction("isUp", &DownstreamState::isUp);
@@ -1133,6 +1219,7 @@ void setupLua(bool client)
   g_lua.registerFunction("setAuto", &DownstreamState::setAuto);
   g_lua.registerMember("upstatus", &DownstreamState::upStatus);
   g_lua.registerMember("weight", &DownstreamState::weight);
+  g_lua.registerMember("order", &DownstreamState::order);
   
   g_lua.writeFunction("show", [](const string& arg) {
       g_outputBuffer+=arg;
@@ -1338,19 +1425,6 @@ void setupLua(bool client)
   g_lua.writeFunction("newQPSLimiter", [](int rate, int burst) { return QPSLimiter(rate, burst); });
   g_lua.registerFunction("check", &QPSLimiter::check);
 
-  g_lua.writeFunction("usleep", [](int usec) { usleep(usec); });
-
-  g_lua.writeFunction("abuseShuntSMN", [](const std::string& name) {
-      g_abuseSMN.add(DNSName(name));
-    });
-
-  g_lua.writeFunction("abuseShuntNM", [](const std::string& str) {
-      g_abuseNMG.addMask(str);
-    });
-
-  g_lua.writeFunction("abuseServer", [](shared_ptr<DownstreamState> dss) {
-      g_abuseDSS=dss;
-    });
 
   g_lua.writeFunction("makeKey", []() {
       g_outputBuffer="setKey("+newKey()+")\n";

diff --git a/pdns/dnsdistconf.lua b/pdns/dnsdistconf.lua
index a593d0d20ffbd0c496826a2f83aa6e74f48fc6ac..100f2de8584d0ced8d7ef72516539927c232c5ae 100644 (file)
--- a/pdns/dnsdistconf.lua
+++ b/pdns/dnsdistconf.lua
@@ -13,13 +13,10 @@ newServer("2620:0:ccd::2", 10)
 newServer{address="192.168.1.2", qps=1000, order=2}
 
 newServer{address="127.0.0.1:5300", order=3}
-abuse=newServer{address="192.168.1.30:5300", order=4}
-
-abuseServer(abuse)
-abuseShuntSMN("ezdns.it.")
-abuseShuntSMN("xxx.")
-abuseShuntNM("192.168.1.0/24")
+newServer{address="192.168.1.30:5300", pool="abuse"}
 
+addPoolRule({"ezdns.it.", "xxx."}, "abuse")
+addPoolRule("192.168.1.0/24", "abuse")
 
 block=newDNSName("powerdns.org.")
 -- called before we distribute a question
@@ -40,23 +37,23 @@ function blockFilter(remote, qname, qtype, dh)
 end
 
 counter=0
-servers=getServers()
 
 -- called to pick a downstream server
-function luaroundrobin(remote, qname, qtype, dh) 
+function luaroundrobin(servers, remote, qname, qtype, dh) 
+        print("Got called: "..#servers)
         counter=counter+1;
         return servers[1+(counter % #servers)]
 end
 
--- setServerPolicy(luaroundrobin)
+-- setServerPolicyLua("luaroundrobin", luaroundrobin)
 
 authServer=newServer{address="2001:888:2000:1d::2", order=12}
 
-function splitSetup(remote, qname, qtype, dh)
+function splitSetup(servers, remote, qname, qtype, dh)
         if(dh:getRD() == false)
         then
                return authServer
         else
-               return firstAvailable(remote, qname, qtype, dh)
+               return firstAvailable(servers, remote, qname, qtype, dh)
         end
 end
\ No newline at end of file