Wednesday, 2019-03-13

« Tuesday, 2019-03-12 Index Thursday, 2019-03-14 »
*** goldyfruit has quit IRC00:57
*** goldyfruit has joined #openstack-dns00:57
*** goldyfruit has quit IRC00:57
*** abaindur has quit IRC01:10
*** abaindur has joined #openstack-dns01:11
*** abaindur has quit IRC01:17
*** abaindur has joined #openstack-dns05:36
*** pcaruana has joined #openstack-dns06:19
*** ivve has joined #openstack-dns06:53
*** ginopc has joined #openstack-dns08:08
*** awalende has joined #openstack-dns08:09
*** abaindur has quit IRC08:31
*** FlorianFa has joined #openstack-dns09:23
*** Emine has joined #openstack-dns09:53
*** awalende has quit IRC12:43
*** awalende has joined #openstack-dns12:45
*** goldyfruit has joined #openstack-dns13:50
goldyfruitHi guys13:55
goldyfruitSince few days now I'm in a fight with Designate ^^13:56
goldyfruitI got this error: While checking domain freshness: Query to '10.121.135.11:5354' for SOA of 'pouet5.com.' produced no results (RCode: Query Refused) from PowerDNS13:56
goldyfruitBut I got the same issue with Bind13:56
*** Emine has quit IRC13:59
goldyfruitIn MDNS logs I got this:14:00
goldyfruit2019-03-13 13:57:58.449 31 WARNING designate.mdns.handler [req-72f06c25-8aa0-4999-b3f0-158cb90e3512 - - - - -] ZoneNotFound while handling query request. Question was pouet5.com. IN SOA: ZoneNotFound: Could not find Zone14:00
*** Emine has joined #openstack-dns14:08
*** irclogbot_0 has quit IRC14:09
*** irclogbot_0 has joined #openstack-dns14:13
*** faridda has joined #openstack-dns14:16
*** bnemec has quit IRC14:22
*** Emine has quit IRC14:24
*** Emine has joined #openstack-dns14:24
*** irclogbot_0 has quit IRC14:25
*** bnemec has joined #openstack-dns14:27
*** irclogbot_0 has joined #openstack-dns14:28
openstackgerritJens Harbott (frickler) proposed openstack/designate-tempest-plugin master: Properly quote TXT/SPF sample data  https://review.openstack.org/61780914:40
goldyfruitIt's seems to be related to pool-manager and the pool_id value15:17
gmannfrickler: thanks for looking into designate failure for legacy job on bionic.15:19
gmanntoday is deadline so last step i will do is to make those failed jobs as n-v before we merge the base job patches.15:19
fricklergmann: I hope we should be able to fix these soon, no need to add additional stuff on the designate side15:24
gmannfrickler: perfect.15:24
fricklergmann: also we really should move these away from legacy15:24
gmannyeah that is best way.15:25
*** awalende has quit IRC15:28
goldyfruitIs there any documentation about pool_target section ?15:29
*** ginopc has quit IRC15:33
*** ginopc has joined #openstack-dns15:35
goldyfruitHow the pools.yaml file and this https://github.com/openstack/designate/blob/056ceb7f4ba4a4b86fe212aa31a7506ac1b27f20/designate/pool_manager/__init__.py#L29 interact when you have multiple pools ?15:36
*** irclogbot_0 has quit IRC15:36
mugsiegoldyfruit: if you are running pool manger (and not designate-producer and -worker) you need a pool manager instance per pool15:37
goldyfruit:o !!15:38
mugsieso 2 pools, 2 instances of pool manager, and each one will have a different pool-id in its config15:38
mugsieit was part of the re-arch that we did when we went to designate-worker and producer - we broke the direct link between pool-managers and pools15:38
*** irclogbot_0 has joined #openstack-dns15:40
goldyfruitmugsie: Thanks !!!!15:40
mugsiefrickler: is it pdns install issues, or something elese?15:40
*** irclogbot_0 has quit IRC15:49
*** irclogbot_0 has joined #openstack-dns15:51
*** irclogbot_0 has quit IRC15:52
*** irclogbot_0 has joined #openstack-dns15:57
*** Emine has quit IRC16:20
goldyfruitmugsie: we enabled the producer but still no working with multi pools16:23
mugsiecan I see logs from producer and worker?16:24
goldyfruitmugsie: there is not logs related to the zone creation in the producer16:24
mugsiethere wont be - the worker is where that will be16:25
goldyfruitLet me give you that16:26
mugsieand a copy of pools.yaml would hel16:27
mugsieand a copy of pools.yaml would help*16:27
fricklermugsie: looks like pnds might not be running, but it also looks like we don't have logs for that, so hopefully the held node will tell more. if it gets more complicated, I'll look into moving away from legacy instead16:33
mugsiefrickler: cool. if you need anything - shout. I have some free time today16:33
goldyfruitmugsie: I sent you the logs in DM16:35
*** abaindur has joined #openstack-dns16:36
mugsiegoldyfruit: looking16:36
goldyfruitWe are using attributes to create zone: openstack zone create --attributes service_tier:pdns --email pouet@toto.com pouet16.com.16:37
mugsiegoldyfruit: and both pdns servers have a different database behind them?16:39
goldyfruityepo16:39
goldyfruityep*16:39
*** ivve has quit IRC16:40
goldyfruitmugsie: If I set the pool_id in [service:pool_manager] section with the PDNS pool I'm able to have a zone working16:41
*** FlorianFa has quit IRC16:41
mugsieweird16:42
mugsieSuccessful CREATE zone pouet16.com. on <PoolTarget id:' ...16:42
mugsieand in the powerdns DB, is there any rows in the domains table/16:43
mugsie?*16:43
goldyfruitYep it's in the database16:44
*** faridda has quit IRC16:44
goldyfruitpdnsutils list-all-zones16:44
goldyfruitpouet16.com16:44
goldyfruitAll zonecount: 116:45
goldyfruitBut pdnsutil list-zone pouet16.com. said no serial16:45
goldyfruitMar 13 16:45:16 No serial for 'pouet16.com' found - zone is missing?16:45
mugsieyeah - those masters are different - do you have different mdns servers for each pool?16:46
*** faridda has joined #openstack-dns16:46
goldyfruitmugsie: nop, just public and private IPS but they are the same16:47
goldyfruitPDNS pool are DNS outside the platform16:47
mugsieand can you dig @<public IP> -p 5354 pouet16.com SOA16:48
goldyfruitPasted in DM16:49
goldyfruitSame, I got REFUSED16:49
*** eandersson_ is now known as eandersson16:54
*** faridda has quit IRC16:54
*** FlorianFa has joined #openstack-dns16:54
*** faridda has joined #openstack-dns17:14
*** faridda has quit IRC17:39
fricklermugsie: seems there is a new or missing filter on the pdns api webserver, adding "webserver-allow-from=$HOSTIP" fixed the node. maybe you can come up with a patch for that, otherwise I'll continue tomorrow17:40
fricklermugsie: this was repeting itself in the log before: pdns_server[25355]: Webserver closing socket: remote (162.209.77.54) does not match 'webserver-allow-from'17:41
*** faridda has joined #openstack-dns17:43
*** goldyfruit has quit IRC17:46
mugsiefrickler: Oh, OK, I can look at that now17:47
*** ginopc has quit IRC17:47
mugsiefrickler: https://doc.powerdns.com/authoritative/settings.html#setting-webserver-allow-from17:49
mugsie> Changed in version 4.1.0: Default is now 127.0.0.1,::1, was 0.0.0.0/0,::/0 before.17:50
*** goldyfruit has joined #openstack-dns17:50
*** ianychoi has quit IRC17:55
openstackgerritGraham Hayes proposed openstack/designate master: Allow non localhost connections to pdns api  https://review.openstack.org/64311918:03
openstackgerritGraham Hayes proposed openstack/designate master: DNM: Testing PDNS Fix  https://review.openstack.org/64312718:11
*** abaindur has quit IRC18:18
*** faridda has quit IRC18:18
*** abaindur has joined #openstack-dns18:19
*** abaindur has quit IRC18:20
*** rektide has joined #openstack-dns18:20
*** abaindur has joined #openstack-dns18:26
*** pcaruana has quit IRC18:29
*** abaindur has quit IRC18:31
*** Emine has joined #openstack-dns18:33
*** faridda has joined #openstack-dns18:36
*** gmann is now known as gmann_afk18:48
*** faridda has quit IRC18:58
*** emine__ has joined #openstack-dns19:12
*** Emine has quit IRC19:13
*** faridda has joined #openstack-dns19:22
*** salmankhan has joined #openstack-dns19:27
*** faridda has quit IRC19:30
*** abaindur has joined #openstack-dns19:36
*** faridda has joined #openstack-dns19:37
*** faridda has quit IRC19:50
mugsiefrickler: eandersson: can we get https://review.openstack.org/#/c/643119/ merged asap? If fails on grenade (because grenade takes HEAD^1 and runs tempest against it before upgrading - and when we move to bionic in a few hours we will be blocked - see https://review.openstack.org/643119 )19:51
*** salmankhan has quit IRC19:59
*** faridda has joined #openstack-dns20:06
*** ivve has joined #openstack-dns20:15
goldyfruitmugsie: does the pool manager is disable when producer is running ?20:16
goldyfruithow could we disable pool-manager ?20:16
goldyfruitwe don't have services running as designate-pool-manager20:16
mugsiewhat services do you have running?20:16
goldyfruitdesignate_backend_bind9 designate_sink designate_worker designate_mdns designate_producer designate_central designate_api20:18
goldyfruitbind9 backend is for the first pool20:18
mugsiethat looks right20:20
goldyfruitso having TSIG is a requirement when you have external dns servers ?20:21
mugsiewhen you have 2 pools20:21
mugsieit is how minidns knows how pool it should look for results from20:22
mugsies/how/what/20:22
goldyfruitso mdns is running tsigkey list command et get the id of resource_id ?20:23
mugsiekind of, there is an internal API it uses20:23
goldyfruitso mdns doens't need any configuration about tsig ?20:24
mugsieno, it should get if from the DB each time it gets a request20:30
goldyfruitSo which component is using attributes ?20:36
goldyfruitWe are already using attributes like "service_tier:pdns" to request a zone creation on a specific pool20:37
mugsiejust the API and the scheduler20:39
goldyfruitOk20:40
goldyfruitscheduler is part of which component ?20:40
*** gmann_afk is now known as gmann20:41
goldyfruitWith producer and worker do need to have the information in designate.conf about pool_manager_cache:sqlalchemy, pool_manager_cache:memcache, service:pool_manager ?20:42
mugsienope20:43
mugsiescheduler is in the central service I think20:43
goldyfruitWith multipool, is it ok to have default_pool_id = 6799d8f3-3064-4213-8aa5-d2295b8f4c29 in service:central section ?20:44
goldyfruit(I'm asking a lot of questions, thanks for your help !!!)20:45
mugsieyeh, we load that fro when there is no attributes20:45
mugsiehttps://opendev.org/openstack/designate/src/branch/master/designate/central/service.py#L85620:45
mugsiewe use thee two by default - https://opendev.org/openstack/designate/src/branch/master/designate/scheduler/filters/default_pool_filter.py20:45
mugsiehttps://opendev.org/openstack/designate/src/branch/master/designate/scheduler/filters/attribute_filter.py20:46
goldyfruitI running out of idea ^^20:48
goldyfruitThanks for your help mugsie20:48
goldyfruitI'll continue to check20:48
mugsiegoldyfruit: can you try to add an extra log line in this function- https://opendev.org/openstack/designate/src/branch/master/designate/mdns/handler.py#L176 ?20:50
mugsiesee if it is being called20:50
goldyfruitDoing that20:51
mugsiehttps://opendev.org/openstack/designate/src/branch/master/designate/dnsutils.py#L146 is a good candidate as well20:51
mugsiesorry, it has been so long since I looked at some of this code20:52
mugsieand kiall made spread out all over the place -_-20:52
mugsiemade it*20:52
mugsiegoldyfruit: I am leaving the office, so leave a comment here, of on the mailing list, and I will look at it when I get online lter20:54
mugsielater*20:54
goldyfruitmugsie: thanks again :)20:54
mugsienp20:54
*** faridda has quit IRC21:08
*** ivve has quit IRC21:20
*** faridda has joined #openstack-dns21:25
*** faridda has quit IRC21:38
openstackgerritMerged openstack/designate master: Allow non localhost connections to pdns api  https://review.openstack.org/64311922:16
*** goldyfruit has quit IRC22:36
*** salmankhan has joined #openstack-dns22:55
*** goldyfruit has joined #openstack-dns22:56
*** faridda has joined #openstack-dns23:02
*** ianychoi has joined #openstack-dns23:06
*** faridda has quit IRC23:17
*** abaindur has quit IRC23:41
*** abaindur has joined #openstack-dns23:42
*** abaindur has quit IRC23:47
*** faridda has joined #openstack-dns23:55
*** faridda has quit IRC23:56
« Tuesday, 2019-03-12 Index Thursday, 2019-03-14 »

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!