Wednesday, 2016-08-10

*** mlavalle has quit IRC		00:00
*** ducttape_ has quit IRC		00:10
*** ducttape_ has joined #openstack-dns		01:11
*** ducttape_ has quit IRC		01:16
*** ducttape_ has joined #openstack-dns		01:26
*** ducttape_ has quit IRC		01:28
*** richm has quit IRC		01:28
*** puck has quit IRC		01:31
*** puck has joined #openstack-dns		01:35
*** stanzgy has joined #openstack-dns		01:38
*** ducttape_ has joined #openstack-dns		02:28
*** ducttape_ has quit IRC		02:33
*** ducttape_ has joined #openstack-dns		02:38
*** tyr_ has joined #openstack-dns		02:46
*** tyr_ has quit IRC		02:52
*** ducttape_ has quit IRC		03:04
*** tyr_ has joined #openstack-dns		03:11
*** rudrajit has quit IRC		03:25
*** penick has quit IRC		03:53
*** rkrum has joined #openstack-dns		04:13
*** rudrajit has joined #openstack-dns		04:24
*** ducttape_ has joined #openstack-dns		04:35
*** ducttape_ has quit IRC		04:40
*** pcaruana has quit IRC		05:01
*** tyr_ has quit IRC		05:12
-openstackstatus- NOTICE: zuul is being restarted to reload configuration. Jobs should be re-enqueued but if you're missing anything (and it's not on http://status.openstack.org/zuul/) please issue a recheck in 30min.		05:24
*** ducttape_ has joined #openstack-dns		05:47
*** penick has joined #openstack-dns		05:51
*** ducttape_ has quit IRC		05:52
*** GonZo2000 has quit IRC		06:11
*** rudrajit has quit IRC		06:44
*** penick has quit IRC		06:45
*** f13o has joined #openstack-dns		06:47
*** ducttape_ has joined #openstack-dns		06:48
*** ducttape_ has quit IRC		06:53
*** f13o has quit IRC		06:55
*** rkrum has quit IRC		07:06
*** greghaynes has quit IRC		07:20
*** greghaynes has joined #openstack-dns		07:20
*** pcaruana has joined #openstack-dns		07:24
*** ducttape_ has joined #openstack-dns		07:49
*** ducttape_ has quit IRC		07:54
*** nyechiel has joined #openstack-dns		08:07
*** simonmcc has quit IRC		08:08
*** simonmcc has joined #openstack-dns		08:10
*** nyechiel has quit IRC		08:14
*** openstackgerrit has quit IRC		08:18
*** openstackgerrit has joined #openstack-dns		08:18
*** ChanServ sets mode: +v openstackgerrit		08:18
*** GonZo2000 has joined #openstack-dns		08:34
*** GonZo2000 has joined #openstack-dns		08:34
*** ducttape_ has joined #openstack-dns		08:50
*** ducttape_ has quit IRC		08:55
*** ducttape_ has joined #openstack-dns		09:50
*** ducttape_ has quit IRC		09:56
*** nyechiel has joined #openstack-dns		10:10
openstackgerrit	Davanum Srinivas (dims) proposed openstack/designate: [WIP] Testing latest u-c https://review.openstack.org/318020	10:10
*** rkrum has joined #openstack-dns		10:23
*** ducttape_ has joined #openstack-dns		10:51
*** cvstealth has joined #openstack-dns		10:53
*** cvstealt1 has quit IRC		10:55
*** ducttape_ has quit IRC		10:56
*** abalutoiu has joined #openstack-dns		11:12
*** GonZo2000 has quit IRC		11:13
*** kei_yama has joined #openstack-dns		11:22
*** kei_yama has quit IRC		11:25
*** kei_yama has joined #openstack-dns		11:27
*** kei_yama has quit IRC		11:31
*** rkrum has quit IRC		11:43
*** ducttape_ has joined #openstack-dns		11:52
*** ducttape_ has quit IRC		11:57
*** ducttape_ has joined #openstack-dns		12:07
*** ducttape_ has quit IRC		12:31
*** richm has joined #openstack-dns		12:35
*** GonZo2000 has joined #openstack-dns		12:46
*** GonZo2000 has joined #openstack-dns		12:46
*** GonZo2000 has quit IRC		12:48
*** stanzgy has quit IRC		12:50
*** GonZo2000 has joined #openstack-dns		12:56
*** GonZo2000 has quit IRC		12:56
*** GonZo2000 has joined #openstack-dns		12:58
*** GonZo2000 has joined #openstack-dns		12:58
*** hoobaman has joined #openstack-dns		13:26
hoobaman	Hi	13:26
hoobaman	anyone alredy tested designate with an infoblox backend?	13:26
*** ducttape_ has joined #openstack-dns		13:27
mugsie	hoobaman: yeah infoblox themselves test it	13:31
*** ducttape_ has quit IRC		13:31
*** kei_yama has joined #openstack-dns		13:40
*** kei_yama has quit IRC		13:41
*** kei_yama has joined #openstack-dns		13:42
*** stanzgy has joined #openstack-dns		13:42
*** kei_yama has quit IRC		13:43
*** kei_yama has joined #openstack-dns		13:44
*** kei_yama has quit IRC		13:47
*** kei_yama has joined #openstack-dns		13:47
*** rkrum has joined #openstack-dns		13:47
*** kei_yama has quit IRC		13:51
*** kei_yama has joined #openstack-dns		13:51
*** kei_yama has quit IRC		13:52
*** kei_yama has joined #openstack-dns		13:52
*** malos_ has joined #openstack-dns		13:57
*** kei_yama has quit IRC		13:57
*** ducttape_ has joined #openstack-dns		13:59
*** GonZo2000 has quit IRC		14:05
hoobaman	mugsie: ok thx	14:09
*** catintheroof has joined #openstack-dns		14:09
mugsie	hoobaman: he is not online right now, but johnbelamaric is good point of contact for the infoblox driver	14:11
hoobaman	mugsie: ok thanks for the contact! :)	14:15
*** rkrum has quit IRC		14:15
*** kei_yama has joined #openstack-dns		14:28
*** kei_yama has quit IRC		14:29
*** kei_yama has joined #openstack-dns		14:29
*** mlavalle has joined #openstack-dns		14:32
*** kei_yama has quit IRC		14:33
*** kei_yama has joined #openstack-dns		14:47
*** leitan has joined #openstack-dns		14:50
leitan	Hi guys, i have some questions about multiple dns servers on the pool.yml file	14:51
leitan	anyone that can lend me a hand ?	14:51
*** d34dh0r531234123 is now known as d34dh0r53		14:51
*** kei_yama has quit IRC		14:51
leitan	i have everything working with one instance	14:52
elarson	leitan: ask away!	14:59
leitan	elarson,	14:59
leitan	great	14:59
leitan	i have 3 powerdns	14:59
leitan	they share the database	14:59
leitan	its a galera mariadb cluster	14:59
leitan	so i want to know on the TARGET section	15:00
leitan	i have the options section with the mysql connection string	15:00
leitan	but on HOST and PORT i have only one instance of powerdns	15:00
leitan	can i name multiple instances there ?	15:00
leitan	with multiple host/port statements ?	15:00
leitan	pointing to the same DB ?	15:01
timsim	You can not.	15:01
timsim	I'm assuming you only want to write to one db?	15:01
elarson	you probably don't want to since they share the same db	15:02
timsim	Or, one node in your cluster?	15:02
leitan	on the connection string	15:02
leitan	i put the VIP address	15:02
elarson	the idea being write to one target, verify it lands on multiple nameservers	15:02
leitan	of the galera db	15:02
timsim	Sure, ok.	15:02
leitan	so the DB is not an issue	15:02
leitan	is the HOST/PORT part	15:02
leitan	of the options section that worries me	15:02
leitan	if that HOST/PORT goes down	15:02
timsim	So the only thing the host/port are used for there is notifying.	15:02
leitan	i want to keep going	15:02
timsim	So you should put the host/port of one of your PowerDNS instances there, and put the other two ips as "also-notify"s	15:03
*** pglass has joined #openstack-dns		15:03
timsim	https://github.com/openstack/designate/blob/master/etc/designate/pools.yaml.sample#L51	15:04
leitan	timsim, awesome, if that isntance its down, it will notify to the "also notify" and dont fail or stack trying to notify the first one ?	15:04
*** tyr_ has joined #openstack-dns		15:05
timsim	As long as the database is up, it should notify all three.	15:07
timsim	If I'm reading the code right :P	15:07
timsim	I think those notifies only matter for creates though.	15:10
timsim	in Powerdns	15:10
timsim	Because it doesn't look like we send one for updates?	15:10
timsim	mugsie ^	15:11
*** haplo37__ has joined #openstack-dns		15:29
leitan	timsim, thats my doubt	15:30
leitan	if that host/port on the options section on the target, if its down, it will fail ? cause if thats the case ill need to use haproxy to balance tcp	15:31
leitan	the tcp 53, so it can reach any powerdns availble	15:32
timsim	It looks like it will only fail to notify the also-notifies on creates if the database is down	15:33
timsim	It doesn't appear that notifying everyone on updates is necessary, but the also-notifies will get notified on updates, but not the primary host/port (nothing saying you couldn't put the primary in also-notify too)	15:33
timsim	and no one gets notified on deletes.	15:33
timsim	It will fail to notify the primary if the db is down too	15:34
timsim	primary == the powerdns server that has host/port specified in pool target options	15:34
leitan	timsim, http://paste.openstack.org/show/h2bRXoWbxSRomyxK4m5v/	15:36
leitan	so this will be ok	15:36
leitan	taking into account that that the .200 is the VIP of the db cluster	15:37
leitan	sorry im missing the also_notifies	15:37
openstackgerrit	Alin Balutoiu proposed openstack/designate: Add support for Microsoft DNS Server backend https://review.openstack.org/332703	15:37
*** rudrajit has joined #openstack-dns		15:39
openstackgerrit	Alin Balutoiu proposed openstack/designate: Add support for Microsoft DNS Server backend https://review.openstack.org/332703	15:40
*** pglass has quit IRC		15:50
*** nyechiel has quit IRC		15:52
*** rudrajit has quit IRC		15:54
*** rudrajit has joined #openstack-dns		15:55
*** rudrajit has quit IRC		15:57
*** rudrajit has joined #openstack-dns		15:57
*** rudrajit has quit IRC		16:01
*** pglass has joined #openstack-dns		16:03
*** penick has joined #openstack-dns		16:17
*** pglass has quit IRC		16:25
*** pcaruana has quit IRC		16:29
*** pglass has joined #openstack-dns		16:32
*** rudrajit has joined #openstack-dns		16:40
*** rudrajit has quit IRC		16:43
*** shewless has joined #openstack-dns		16:43
*** rudrajit has joined #openstack-dns		16:44
shewless	Hello. I'm trying to setup a dns such that instances with a floating IP each have a unique DNS name. I found this doc (http://docs.openstack.org/mitaka/networking-guide/adv-config-dns.html) which I think explains the "dns" side, but I think I need to also setup designate seperately as well. Can someone confirm?	16:45
shewless	I found this doc but it's liberty specific (I'm running Mitaka) and I'm not sure how much has changed: http://docs.openstack.org/developer/designate/install/ubuntu-liberty.html	16:46
pglass	shewless: the pool configuration is totally different in mitaka	16:50
pglass	instead of putting pool_targets and pool_nameservers in designate.conf, they go in a pools.yaml file	16:51
shewless	pglass: do you know of any documentation or examples for this?	16:51
pglass	here: http://docs.openstack.org/developer/designate/upgrade/mitaka.html	16:51
pglass	there is also backend documentation here: http://docs.openstack.org/developer/designate/backends.html with the yaml fields needed for different nameservers	16:52
shewless	pglass: okay I saw that one. So I need to install it as part of liberty and then decipher the bits that are different in the upgrade guide?	16:52
*** abalutoiu has quit IRC		16:53
pglass	yeah. nobody has written a mitaka install guide yet	16:53
shewless	pglass: in the end I want something like this for each floating IP. Do you know if it would be possible? hostName.projectName.domain.com	16:53
pglass	i don't have any idea how the flip stuff works...	16:54
shewless	also, is this correct: http://docs.openstack.org/mitaka/networking-guide/adv-config-dns.html sets up DNS on openstack, while http://docs.openstack.org/developer/designate/install/ubuntu-liberty.html setups up an external DNS service?	16:54
*** rudrajit_ has joined #openstack-dns		17:00
*** rudrajit has quit IRC		17:04
leitan	shewless, the installing guide for liberty works for you ok, then use the pool yml part to update the pool definition on the database, pools are now persisted there an its config	17:15
*** kei_yama has joined #openstack-dns		17:15
shewless	leitan: thanks. I'll give it a try.	17:19
*** kei_yama has quit IRC		17:20
leitan	shewless, let me know, i have successfully installed a mitaka deployment with FIP neutron integration a couple of days ago	17:20
*** pglass has quit IRC		17:21
shewless	leitan: that is awesome. how long did it take? :)	17:21
shewless	leitan: does the FIP get a DNS automatically or do you have to do a command to make it happen?	17:22
leitan	nope	17:22
leitan	neutron puts a message on the queue	17:22
leitan	designate picks ups this message	17:23
leitan	thats floatingip.associate or something like this	17:23
leitan	then grabs the FIP from the message and create the record on designate	17:23
leitan	and then designate propagate the record to your dns backend/target	17:23
mugsie	leitan: ah, you used sink?	17:23
leitan	mugsie, yes i did	17:23
mugsie	the new integration in mitaka means that neutron calls us directly	17:24
mugsie	(our HTTP API)	17:24
leitan	mugsie, didnt try that yet, the adv-config-dns guide	17:24
mugsie	yeah	17:24
*** penick has quit IRC		17:24
mugsie	just avoids using a queue. and means that it is more reliable	17:24
mugsie	(as queues can drop messages)	17:25
leitan	mugsie, does the notification from neutron retries to designate ?	17:25
mugsie	nope	17:25
mugsie	neutron just dumps it on a queue	17:25
mugsie	it doensnt care if it is read at all	17:25
leitan	mugsie, i know, on sinks op mode	17:25
leitan	but on direct http call mode	17:25
leitan	retries ?	17:25
mugsie	oh, yeah. its should	17:26
mugsie	it*	17:26
shewless	leitan: the setup you have.. is it the one that has performance implications?	17:26
leitan	mugsie, ok, ill take a look, because if dont, its more unreliable than the queue method, we use queing the queue for metering and we dont loose any message on our queue cluster	17:26
Krenair	Ah, my bug about not being able to create origin domains as records was a dupe, okay	17:28
Krenair	But I saw https://review.openstack.org/#/c/337773/3/designatedashboard/dashboards/project/dns_domains/forms.py	17:28
Krenair	Why aren't CNAME/PTR covered?	17:28
Krenair	Dunno about SRV	17:29
mugsie	neither should be at the root of a domain	17:29
mugsie	well.	17:29
mugsie	CNAME can be, but we disallow it	17:29
mugsie	(in the API)	17:29
Krenair	Say you control IP 123.123.123.123	17:29
Krenair	the operator grants you domain 123.123.123.123.in-addr.arpa.	17:29
Krenair	you should be able to create a PTR record at the root of this domain	17:30
*** ducttape_ has quit IRC		17:30
mugsie	true. We assume that most operators will not do that	17:31
mugsie	so, PTR may need to move down	17:31
Krenair	But I think it's a valid use case	17:31
Krenair	you're right most won't	17:31
*** kei_yama has joined #openstack-dns		17:33
*** kei_yama has quit IRC		17:34
*** kei_yama has joined #openstack-dns		17:35
shewless	in the liberty doc there is a configure the pool section. something about [pool:794ccc2c-d751-44fe-b57f-8894c9f5c842]. Is that required for Mitaka?	17:36
*** rudrajit has joined #openstack-dns		17:36
Krenair	mugsie, any thoughts about SRV? I've honestly never used that type	17:36
*** penick has joined #openstack-dns		17:36
*** rudrajit_ has quit IRC		17:38
mugsie	shewless: no	17:38
shewless	excellent	17:39
shewless	that part looks confusing :)	17:39
mugsie	Krenair: SRV have a very defined recordset name format, so wiht our current validation, they cant go in the root	17:39
mugsie	shewless: yeap. thats why we got the yaml file in for mitaka	17:39
*** kei_yama has quit IRC		17:40
*** ducttape_ has joined #openstack-dns		17:48
*** pglass has joined #openstack-dns		17:52
*** kei_yama has joined #openstack-dns		17:53
*** kei_yama has quit IRC		17:53
*** kei_yama has joined #openstack-dns		17:54
*** sonuk has quit IRC		17:57
*** kei_yama has quit IRC		17:58
Krenair	mugsie, okay, thanks. should I upload a patch for PTR?	18:01
mugsie	yeah, please do	18:01
mugsie	:)	18:01
shewless	when I run this command: "sudo su -s /bin/sh -c "designate-manage pool-manager-cache sync" designate"	18:06
shewless	I get this error: DbMigrationError: Pool Manager Cache requires its own database. Please check your config file.	18:06
shewless	I setup a designate_pool_manager database	18:06
*** ducttape_ has quit IRC		18:07
shewless	but I didn't setup the pool manager stuff. Do I need to run designate-manage pool update first?	18:07
*** ducttape_ has joined #openstack-dns		18:07
Krenair	mugsie, I wanted to get my own devstack environment set up so I could test designate changes properly locally	18:09
Krenair	Unfortunately I ran into issues with a different OpenStack project, and no one has been able to fix it	18:10
*** kei_yama has joined #openstack-dns		18:11
shewless	any recommendations on the DNS server? Was going to use bind but maybe powerDNS is easier?	18:11
mugsie	shewless: did you set https://github.com/openstack/designate/blob/master/etc/designate/designate.conf.sample#L375 ?	18:12
*** rudrajit_ has joined #openstack-dns		18:12
*** kei_yama_ has joined #openstack-dns		18:12
mugsie	Bind & powerdns are both fully tested	18:12
*** kei_yama has quit IRC		18:12
mugsie	personally I prefer powerdns	18:13
mugsie	but peope get attached to bind	18:13
shewless	mugsie: no I didn't set that.. I thought maybe I didn't need to in Mitaka.. thanks I'll set it	18:13
shewless	mugsie: thanks I think powerdns looks slightly easier	18:14
openstackgerrit	Alexander Monk proposed openstack/designate-dashboard: Follow-up Ibddffc5f: Also allow PTR records pointing to the domain itself https://review.openstack.org/353671	18:14
*** rudrajit has quit IRC		18:15
*** kei_yama_ has quit IRC		18:17
Krenair	mugsie, done ^	18:26
*** catintheroof has quit IRC		18:34
*** ducttape_ has quit IRC		18:38
*** ducttape_ has joined #openstack-dns		18:49
shewless	mugsi, leitan: any reason why I couldn't just follow http://docs.openstack.org/mitaka/networking-guide/adv-config-dns.html?	18:57
shewless	I mean.. what does "external dns" get me? I'm confused	18:57
leitan	shewless, no reason	18:58
shewless	leitan: I mean.. it's missing all the stuff about setting up bind, etc.. do I need that?	18:58
leitan	shewless, you will need that , so designate can update your actual dns ... if its bind or powerdns	18:59
leitan	the ones that will actually resolv	19:00
shewless	leitan: if I already have a bind9 service in my lab. I know I want to integrate that somehow but I'm not sure how	19:00
leitan	shewless, you can totally do that check http://docs.openstack.org/developer/designate/backends/bind9.html	19:01
leitan	shewless, just a few things you need to change	19:01
shewless	leitan: this would give openstack direct control to my bind server right? Is it possible to create another bind server which somehow interacts with the main bind server?	19:02
leitan	yes, but thats just plain DNS, nothing to do with designate, you can allow transfer from your "designate bind" to your main productive bind	19:03
leitan	shewless, you can use the "also-notifies" too	19:03
shewless	leitan: so setup a sort of "internal" bind server just for openstack and then set the also-notifies to notify my main bind server - is that what you mean?	19:04
pglass	i think that setup will work for zone updates, but not creates and deletes (out of the box)	19:05
pglass	i.e. bind doesn't support replicating zone creates/deletes	19:05
leitan	shewless, thats an option	19:06
leitan	shewless, or for example, you can mount 3 bind servers	19:06
leitan	shewless, just for your cloud	19:06
leitan	and delegate only cloud domains to it	19:06
leitan	make it authoritative for shewlesscloud.com	19:06
leitan	and you keep your main dns, for other "legacy" things	19:06
leitan	untouched	19:06
leitan	shewless, there are a lot of ways of acomplish this	19:07
leitan	the last one is what i mainly do on production with clients	19:07
leitan	that has legacy dns servers	19:07
shewless	leitan. I think that last one might work the best	19:08
shewless	leitan: just curious - what did you mean about mounting "3" bind servers.. why 3?	19:11
*** GonZo2000 has joined #openstack-dns		19:14
*** tyr__ has joined #openstack-dns		19:19
leitan	shewless, just random number for redundancy purposes	19:20
leitan	ns1.shewlesscloud.com, ns2.shewlesscloud.com, ns3.shewlesscloud.com	19:21
leitan	the 3 authoritative for your cloud zones	19:21
leitan	just not to depend on one bind server/instance	19:21
*** tyr_ has quit IRC		19:22
leitan	you can use 2 servers too	19:22
*** rudrajit has joined #openstack-dns		19:23
shewless	leitan: I see. thanks. I'll have to think about this. would be easier to give openstack access to the existing bind server but I don't think my network admin will go for that :)	19:27
*** rudrajit_ has quit IRC		19:27
leitan	shewless, thats the usual behaviour haha	19:27
*** haplo37__ has quit IRC		20:07
*** GonZo2K has joined #openstack-dns		20:26
*** GonZo2K has quit IRC		20:26
*** GonZo2K has joined #openstack-dns		20:26
*** GonZo2000 has quit IRC		20:29
*** kei_yama has joined #openstack-dns		20:39
*** kei_yama has quit IRC		20:41
*** kei_yama has joined #openstack-dns		20:41
*** kei_yama has quit IRC		20:46
*** kei_yama has joined #openstack-dns		20:47
*** pglass has quit IRC		21:00
*** kei_yama has quit IRC		21:02
*** kei_yama has joined #openstack-dns		21:02
*** pglass has joined #openstack-dns		21:13
*** ducttape_ has quit IRC		21:18
*** ducttape_ has joined #openstack-dns		21:20
*** sonuk has joined #openstack-dns		21:30
*** ducttape_ has quit IRC		21:36
*** ducttape_ has joined #openstack-dns		21:38
*** pglass has quit IRC		22:08
*** rudrajit_ has joined #openstack-dns		22:09
*** rudrajit has quit IRC		22:12
*** kei_yama has quit IRC		22:15
*** kei_yama has joined #openstack-dns		22:16
*** ducttape_ has quit IRC		22:19
*** ducttape_ has joined #openstack-dns		22:20
*** kei_yama has quit IRC		22:21
*** ducttape_ has quit IRC		22:24
*** sonuk has quit IRC		22:36
*** leitan has quit IRC		22:47
*** chlong\|mtg has quit IRC		23:31
*** rkrum has joined #openstack-dns		23:50

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!