Hypothetical settings:
All hosts are set up as: hostname.domain.com All hosts have an alias: hostname.realm.domain.comI do not administer the authoritative DNS but I can add and delete records for the areas I manage. We currently run a few dnsmasq servers on our subnets with manually managed /etc/hosts on each. I want to utilize the ipa-dns to take over for our dnsmasq servers.
I've done the ipa-dns-install, pointed forwarders to our authoritative DNS servers. What I can't quite wrap my head around is the best way to proceed from that point? Should I add the zone for the realm version hostnames and a separate zone for the domain level hostnames?
Or add one zone and then add a CNAME for the other hostname? Should the zone I setup be the hostname.realm.domain version or the hostname.domain version. Or does it really matter much?
I do have quite a few hostnames that do not have a realm hostname setup. They are mostly service ports and won't ever be bound to IPA. After starting to add some of those I seem to be unable to resolve them to an IP.
-- Stephen Berg, IT Specialist, Ocean Sciences Division, Code 7309 Naval Research Laboratory W: (228) 688-5738 DSN: (312) 823-5738 C: (228) 365-0162 Email: stephen.b...@nrlssc.navy.mil <- (Preferred contact) Flank Speed: stephen.p.berg....@us.navy.mil
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
