[Freeipa-users] Antwort: Re: Problem with DNS

Petr Spacek pspacek at redhat.com
Wed Apr 11 20:26:36 UTC 2012 

On 04/11/2012 10:10 PM, Christoph Kaminski wrote:
> [root at cerber ~]# rpm -q bind-dyndb-ldap
> bind-dyndb-ldap-0.2.0-7.el6.x86_64
>
> yep found the solution to (with help from ipa irc channel)...
> The GUI and the ipa tools created the cNAMERecord inside the A Object.
> This doesnt work. It needs to be a separate Object for cname. In
> unstable IPA it is already fixed/changed.
As I wrote below, it works in latest RHEL 6.2. If your CentOS has a 
equivalent, you can upgrade to latest stable.

Petr^2 Spacek
>
> MfG
> Christoph Kaminski
>
>
> -----freeipa-users-bounces at redhat.com schrieb: -----
>
>     Hello,
>
>     On 04/11/2012 08:21 PM, Christoph Kaminski wrote:
>      > Hi All
>      >
>      > I have a problem with cnames in ipa dns settings. If I set a
>     cname, it
>      > doesnt work. I have configured a cname 'icinga' to A record 'azazel'.
>      > If I do 'host azazel' then I get:
>      > azazel.chao5.int has address 192.168.50.20
>      > Host azazel.chao5.int not found: 3(NXDOMAIN)
>      > Host azazel.chao5.int not found: 3(NXDOMAIN)
>      > (yep 2 times the same)
>      >
>      > If I do 'host icinga' then I get:
>      > Host icinga not found: 3(NXDOMAIN)
>      >
>      > This doesnt work to: 'ipa dns-resolve icinga'
>      > ipa: ERROR: Host 'icinga.chao5.int.' not found
>      >
>      > In LDAP I can see the attrib: 'cNAMERecord icinga' on
>      > 'idnsname=azazel,idnsname=chao5.int,cn=dns,dc=chao5,dc=int'
>      > what can be the problem?
>     These names are flipped, I think.
>     Do you want to create cname "alias" icinga => azazel, right? So when
>     somebody resolves icinga, he actually gets record for azazel. It's
>     meant
>     in this way?
>
>     If I understood correctly, you have to create LDAP object
>     'idnsname=icinga,idnsname=chao5.int,cn=dns,dc=chao5,dc=int' with
>     cNAMERecord 'azazel'.
>
>     It says 'if you are looking for name icinga, right place is azazel'.
>
>     I tested this on RHEL 6.2 with bind-dyndb-ldap.x86_64 0:0.2.0-7.el6.
>
>     Right IPA command is:
>     ipa dnsrecord-add chao5.int icinga --cname-rec=azazel
>
>
>     Please don't forget to remove cname attribute from azazel. It's not
>     allowed to mix cname with other records. In that case behaviour is
>     undefined.
>
>      > IPA Version is the last stable for centos6.
>     Please provide exact version number:
>     rpm -q bind-dyndb-ldap
>
>     Petr^2 Spacek
>
>      > TiA
>      >
>      > MfG
>      > Christoph Kaminski

More information about the Freeipa-users mailing list