Friday, 2018-06-29

« Thursday, 2018-06-28 Index Saturday, 2018-06-30 »
*** Leo_m has quit IRC00:10
*** Leo_m has joined #openstack-dns00:11
*** masber has joined #openstack-dns00:58
*** ivve has joined #openstack-dns02:52
*** Leo_m has quit IRC04:14
*** Leo_m_ has joined #openstack-dns04:14
*** Leo_m has joined #openstack-dns04:15
*** Leo_m_ has quit IRC04:19
*** masber has quit IRC04:29
*** Leo_m has quit IRC04:34
*** Leo_m has joined #openstack-dns04:34
*** AlexeyAbashkin has joined #openstack-dns04:48
*** pcaruana has joined #openstack-dns05:20
*** AlexeyAbashkin has quit IRC05:51
*** AlexeyAbashkin has joined #openstack-dns06:01
*** Alexey_Abashkin has joined #openstack-dns06:13
*** AlexeyAbashkin has quit IRC06:15
*** Alexey_Abashkin is now known as AlexeyAbashkin06:15
*** sapcc-bot1 has joined #openstack-dns06:29
*** sapcc-bot1 has quit IRC06:30
*** sapcc-bot1 has joined #openstack-dns06:30
*** sapcc-bot1 has quit IRC06:31
*** sapcc-bot1 has joined #openstack-dns06:31
*** sapcc-bot1 has quit IRC06:32
*** sapcc-bot1 has joined #openstack-dns06:32
*** sapcc-bot1 has quit IRC06:33
*** sapcc-bot1 has joined #openstack-dns06:33
*** AlexeyAbashkin has quit IRC06:33
*** sapcc-bot1 has quit IRC06:34
*** sapcc-bot1 has joined #openstack-dns06:34
*** sapcc-bot1 has quit IRC06:35
*** sapcc-bot1 has joined #openstack-dns06:35
*** sapcc-bot1 has quit IRC06:36
*** sapcc-bot1 has joined #openstack-dns06:36
*** sapcc-bot1 has quit IRC06:37
*** sapcc-bot has quit IRC07:05
*** sapcc-bot has joined #openstack-dns07:07
*** d063130_ has joined #openstack-dns07:09
*** Shadowphax has joined #openstack-dns07:26
*** diman1 has joined #openstack-dns08:20
*** mannamne has joined #openstack-dns10:07
*** Shadowphax has quit IRC11:19
*** Shadowphax has joined #openstack-dns11:19
*** rfreire has joined #openstack-dns11:26
*** briner has joined #openstack-dns11:38
*** briner_ has joined #openstack-dns11:41
*** briner has quit IRC11:43
*** peereb has joined #openstack-dns12:46
*** openstackgerrit has quit IRC12:49
*** briner_ has quit IRC13:18
*** briner has joined #openstack-dns13:27
*** bnemec has joined #openstack-dns13:46
*** bnemec is now known as beekneemech13:46
*** Shadowphax has quit IRC14:05
*** jafeha has quit IRC14:22
*** mannamne has quit IRC14:34
*** diman1 has quit IRC14:40
*** Leo_m_ has joined #openstack-dns14:44
*** Leo_m has quit IRC14:47
*** briner has quit IRC15:11
*** openstack has quit IRC15:22
*** openstack has joined #openstack-dns15:23
*** ChanServ sets mode: +o openstack15:23
*** rpittau has quit IRC15:23
beekneemechAnother incoming DNS newbie question...15:32
beekneemechI'm trying to test my authoritative Designate server locally.15:32
beekneemechI set up a standalone BIND with an NS record pointing at the Designate BIND.15:33
beekneemechIt's not working, and I read something that suggested maybe it's not possible to fake NS records this way.15:33
rfreirebeekneemech,  o/15:33
beekneemechDo I need to register a test domain globally or is there some way I can get this working in isolation?15:34
rfreirebeekneemech, so let me see if I have understood:15:34
beekneemechrfreire: o/15:34
rfreireYou have:15:34
rfreireclient -> Your default DNS server -> Designate BIND server15:34
rfreirebeekneemech, is my understanding correcT?15:35
* rfreire fires up his test environment15:35
beekneemechrfreire: Right, although the "default" server is actually a standalone local BIND that I stood up for this testing, so I have complete control over it.15:37
rfreirebeekneemech, sweet.15:37
rfreirebeekneemech, so have you delegated the subzone at your standalone to your Designate server?15:37
rfreirelike:15:38
beekneemechrfreire: I have tried to. :-)15:38
rfreire$ dig NS @standalone designate.sub.zone15:38
rfreirewhats the result?15:38
beekneemechhttp://paste.openstack.org/show/724602/15:39
* rfreire mira15:39
beekneemech(I tried a made up tld this morning to see if it made any difference, but it didn't)15:39
rfreirebeekneemech, nice. Now try.15:40
beekneemechI also made the local server authoritative for ns1-1.example.org since I had deployed designate with the example pool file.15:40
rfreirebeekneemech, use dig NS15:40
rfreireplease15:40
rfreiredig NS @11.2.2.3 cloud.foo.fooxample15:40
rfreirebeekneemech, example:15:41
rfreire--15:41
rfreire[root@aa10-cont1 ~(keystone_admin)]# dig +short NS @172.25.250.128 openstack.rf01.co15:41
rfreiredns02.interna.rf01.co.15:41
rfreiredns01.interna.rf01.co.15:41
rfreire--15:41
rfreirebeekneemech, next step, in order to it be able to work, it should also resolve the NS for the zone.15:42
rfreireSee:15:42
rfreire--15:42
rfreire[root@aa10-cont1 ~(keystone_admin)]# dig +short A dns02.interna.rf01.co.15:42
rfreire172.25.250.13015:42
rfreire--15:42
beekneemechrfreire: Yeah, I get nothing from that.15:42
rfreirebeekneemech, so your delegation is not correctly done15:43
rfreirebeekneemech, can you share a paste of your zone config?15:43
rfreirethe db file15:43
rfreire(where the delegation would be done)15:43
beekneemechhttp://paste.openstack.org/show/724603/15:44
* rfreire mira15:44
rfreirebeekneemech, I'm assuming foo.fooxample is the designate subzone?15:45
beekneemechrfreire: Yeah15:45
rfreirebeekneemech, well, then you will have to set a forwarder instead. No need to create a zone.15:46
rfreireUNLESS if you wanted to create, for instance; mycloudzone.foo.fooxample.com15:46
rfreireTHEN you would have:15:46
rfreiremycloudzone IN NS ns1-1.example.org.15:46
rfreire--15:47
rfreireEdit your named.conf and move it to:15:47
rfreire--15:47
rfreirezone "foo.fooxample" {15:47
rfreire        type forward;15:47
rfreire        forwarders { <designate bind ip address>; };15:47
rfreire        };15:47
rfreire--15:47
rfreireGo for it15:47
beekneemechrfreire: I'm trying to replicate a production deployment in my local environment.  Is that a how a typical user would set things up?15:51
beekneemechI want to have something that looks and acts like production.15:51
beekneemechOr as much like production as possible anyway.15:52
rfreirebeekneemech, hold on a sec16:04
rfreirephone call16:04
*** beekneemech has quit IRC16:09
*** mugsie has quit IRC16:09
*** zigo has quit IRC16:09
*** baffle has quit IRC16:09
*** Shadowphax has joined #openstack-dns16:12
*** beekneemech has joined #openstack-dns16:14
*** mugsie has joined #openstack-dns16:14
*** zigo has joined #openstack-dns16:14
*** baffle has joined #openstack-dns16:14
*** keithmnemonic[m] has quit IRC16:17
*** vinhags[m] has quit IRC16:17
rfreirebeekneemech, so network is put back again16:26
rfreirebeekneemech, what do I see around16:26
rfreireLet example.com <---- The root zone of the company16:26
rfreireExample.com has several subdomains, including some that they want to be managed by designate.16:27
rfreireSo, in example.com we would have:16:27
rfreirecloudsubdomain.example.com IN NS designate-bind.servers.example.com.16:27
rfreireSo see what we have here up to this moment three entirely different zones:16:28
rfreire1. the root example.com16:28
rfreire2. The servers.example.com where the BIND server resides16:28
rfreire3. And then finally, the cloudsubdomain.example.com which is going to be managed by Designate.16:28
*** Shadowphax has quit IRC16:32
beekneemechrfreire: So maybe my problem is thinking that Designate should manage the root domain, when I should just be giving it a subdomain?16:33
rfreirebeekneemech, THERE!16:33
rfreirebeekneemech, unless some other higher root can point the queries toward your Designate server16:34
*** Shadowphax has joined #openstack-dns16:34
rfreireLike, a public domain from godaddy for example?16:35
beekneemechrfreire: Okay, thanks.  I'll mess around with this for a while then.16:35
rfreireThen godaddy is the higher root and will point toward your BIND server16:35
beekneemechrfreire: Yeah, I was trying to avoid that and basically set up my own little private registrar, but I'll try the simpler method first.16:36
rfreirehope I have helped beekneemech o/16:36
*** pcaruana has quit IRC16:40
*** Shadowphax has quit IRC16:51
*** Shadowphax has joined #openstack-dns16:53
*** keithmnemonic[m] has joined #openstack-dns17:00
*** openstack has quit IRC17:11
*** openstack has joined #openstack-dns17:12
*** ChanServ sets mode: +o openstack17:12
*** kbyrne has quit IRC18:14
beekneemechrfreire: Using a subdomain did the trick.  Thanks!18:32
rfreirebeekneemech, YAY18:32
rfreireo/18:32
rfreirebeekneemech, oh wow Ben, that is you :-P18:33
* rfreire bothered to run the /whois just like now18:33
rfreirehaha18:33
beekneemechrfreire: Casual nick friday. ;-)18:33
rfreireNICE18:34
rfreire;-D18:34
*** idlemind has joined #openstack-dns18:37
*** peereb has quit IRC19:07
*** Shadowphax has quit IRC19:29
*** renmak has joined #openstack-dns20:53
*** renmak_ has joined #openstack-dns20:53
*** openstackgerrit has joined #openstack-dns21:11
*** ChanServ sets mode: +v openstackgerrit21:11
openstackgerritBen Nemec proposed openstack/python-designateclient master: Fix copy-pasta in quota command descriptions  https://review.openstack.org/57928521:11
openstackgerritBen Nemec proposed openstack/python-designateclient master: Fix copy-pasta in quota command descriptions  https://review.openstack.org/57928521:13
*** rfreire has quit IRC21:28
*** beekneemech has quit IRC22:34
*** renmak has quit IRC23:08
*** renmak_ has quit IRC23:08
*** Leo_m_ has quit IRC23:21
*** Leo_m has joined #openstack-dns23:21
*** renmak has joined #openstack-dns23:42
*** renmak_ has joined #openstack-dns23:42
*** renmak has quit IRC23:50
*** renmak_ has quit IRC23:50
« Thursday, 2018-06-28 Index Saturday, 2018-06-30 »

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!