On 13.04.2016 10:59, Ben .T.George wrote:
Hi LIst,
getting below error while adding conditional forwarder for AD domain
on IPA
[root@ipa ~]# ipa dnsforwardzone-add ad.example.com
<http://ad.example.com> --forwarder=192.168.37.131 --forward-policy=only
Server will check DNS forwarder(s).
This may take some time, please wait ...
ipa: ERROR: DNS check for domain ad.example.com
<http://ad.example.com>. failed: All nameservers failed to answer the
query ad.example.com <http://ad.example.com>. IN SOA: Server 127.0.0.1
UDP port 53 anwered The DNS operation timed out.; Server 127.0.0.1 UDP
port 53 anwered The DNS operation timed out.; Server 127.0.0.1 UDP
port 53 anwered The DNS operation timed out.; Server 127.0.0.1 UDP
port 53 anwered The DNS operation timed out.; Server 127.0.0.1 UDP
port 53 anwered SERVFAIL.
how to fix this issue.
Operating system : CentOs 7.2
IPA VERSION: 4.3.1, API_VERSION: 2.164
Thanks & Regards
Ben
Hello,
that timeout error is suspicious, are all IPA DNS working?
can you try
dig @youripaserveraddress ad.example.com SOA
and post result?
Martin
--
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go to http://freeipa.org for more info on the project