[Freeipa-devel] [PATCH] 111 Let Bind track data changes

[Adam Tkac]

On 08/15/2011 04:36 PM, Simo Sorce wrote:
> On Mon, 2011-08-15 at 14:20 +0200, Martin Kosek wrote:
>> A new version of bind-dyndb-ldap has been released. Thanks to the new
>> persistent search feature, the name server can immediately pull new DNS
>> zones when they are created in IPA.
>>
>> Since the bind-dyndb-ldap plugin has not been released in F-15 yet, one
>> has to use the provided src.rpm:
>>
>> http://mkosek.fedorapeople.org/bind-dyndb-ldap/srpm/bind-dyndb-ldap-0.2.0-5.fc17.src.rpm
>>
>> or rpms I built for x86_64 F-15:
>>
>> http://mkosek.fedorapeople.org/bind-dyndb-ldap/x86_64/
>>
>> There is one setback though. When I investigated DNS persistent search
>> behavior I still miss the ability to detect changes to the DNS zone
>> itself. Adding a record (for example MX record) to the zone does not
>> trigger an update of the zone in nameserver cache. We still have to wait
>> for cache timeout (argument "cache_ttl"). We cannot therefore use this
>> feature as a solution of:
>>
>> https://fedorahosted.org/freeipa/ticket/1114
>> https://fedorahosted.org/freeipa/ticket/1125
>> https://fedorahosted.org/freeipa/ticket/1126
> Is this a bug/deficiency of the plugin ? Or is it something that depends
> on named internals somehow ?
>
> Simo.
>
Sorry for late response, I'm finally back from vacation.

There are two separate issues.

The first one is that the plugin didn't purge outdated (i.e.
persistent-search modified) zone data from cache. Patch for this issue
is attached.

The second issue is that the plugin doesn't recognize newly added
records which have same FQDN as zone, which are KX/MX/LOC records for
example. I haven't found why this happens, yet.

Regards, Adam
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: 0001-Expire-SOA-record-in-cache-when-we-modify-the-zone.patch
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20110830/245e2b65/attachment.ksh>