Re: [Pdns-users] database backends without replication?
Mark: We actually faced a similar problem (as far as inability to replicate to a single machine - for other reasons than the arch). It's kind of a hokey work-around, but it does work quite well, as long as you don't need it to be "instant". ** This would never be recommended for high-traffic servers, or servers where updates to the db are taking place consistently. On the primary nameserver, we dump the database to a SQL file which is made available in a directory only readable by the IP address of the slave machine. The file is pulled down from the master via HTTPS, and then re-imported into the database on the slave - all done with a script. We currently have our set up pulling the file every 7 minutes, which works for us - but you may want to shorten or lengthen that timeframe. Just out of curiosity - any reason you're using postgres instead of MySQL for the pdns servers? MySQL replication works flawlessly cross-arch. Chris Hesselrode | Principal / President Phoenix Knowledge Ventures, LLC PO Box 342 Maricopa, AZ 85139 -Original Message- From: pdns-users-boun...@mailman.powerdns.com [mailto:pdns-users-boun...@mailman.powerdns.com] On Behalf Of Mark Felder Sent: Thursday, December 02, 2010 11:42 AM To: pdns-users@mailman.powerdns.com Subject: [Pdns-users] database backends without replication? OK, well I have a small personal DNS infrastructure for some friends of mine and myself and I wanted to use PowerDNS going forward. I have a few questions though because I've never found clear information on this: The servers are not the same arch; one is 32bit the other is 64bit. I want to run a database backend (postgres) on at least one server so I can have poweradmin. There's another server whichb can't receive the data by streaming replication because of the arch difference and I'm not going to screw with Slony or Londiste as a workaround. In our BIND setup at work, if you have ns1 ns2 and ns3 and you add a domain, you have to actually modify the config file on the ns2 and ns3 slaves before they will pick up the new domain and records via AXFR. This is terribly tedious, and we actually rsync ns2 to ns3 and trigger a reload as a workaround, but still it's lame. If I use a database backend on each side without database replication, can I use an AXFR to have it automatically add a domain to the database of the slave, or is this still an issue with AXFR as a whole? Simply put, I don't want to have to touch the slaves when a new domain is added to the master. How does this work without database replication? Thanks, Mark ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] PDNS and external CNAME
Pascal: What backend are you using? We experienced the same issue, and unfortunately were told to submit our own patch (except we don't write this kind of software). I am also wondering if this related to subdomain delegation to alternate nameservers. That fails as well with NXDOMAIN. Thanks, Chris From: pdns-users-boun...@mailman.powerdns.com [mailto:pdns-users-boun...@mailman.powerdns.com] On Behalf Of Pascal R. Sent: Thursday, December 16, 2010 10:13 AM To: pdns-users@mailman.powerdns.com Subject: [Pdns-users] PDNS and external CNAME Hi, we are currently switching from mydns-ng to powerdns. now we got an issue with external cname entries. example: help.example.com CNAMEwww.help.com reply from pdns: ** server can't find help.example.com: NXDOMAIN our pdns.conf: config-dir=/etc/powerdns daemon=yes disable-axfr=yes guardian=yes launch=gmysql lazy-recursion=yes local-address=1.1.1.1 local-ipv6=2a02:xx:xx:x::x local-port=53 module-dir=/usr/lib/powerdns recursor=8.8.8.8 setgid=pdns setuid=pdns socket-dir=/var/run use-logfile=yes version-string=powerdns include=/etc/powerdns/pdns.d any hint, how i can get external cnames running ? ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users
[Pdns-users] PDNS Log Messages - malformed qdomain
Hello, We have a new PowerDNS implementation and we are seeing the following in the Operational Monitor: Received a malformed qdomain from 208.67.219.14, 'fwgw1.fmt.phoen . phoenixkv.net': sending servfail Not too sure if there is any other information needed, so please let me know. Any help with this would be appreciated! Google searches show things from a few years ago, but nothing nearly recently. PDNS Version Info: $ sudo apt-cache show pdns-server Package: pdns-server Priority: extra Section: universe/net Installed-Size: 2052 Maintainer: Ubuntu Developers Original-Maintainer: Matthijs Mohlmann Architecture: i386 Source: pdns Version: 2.9.22-8 Replaces: pdns Depends: libc6 (>= 2.4), libgcc1 (>= 1:4.1.1), libstdc++6 (>= 4.5), zlib1g (>= 1:1.1.4), debconf (>= 0.5) | debconf-2.0, ucf (>= 0.28), adduser Recommends: pdns-doc Suggests: pdns-backend, pdns-recursor Filename: pool/universe/p/pdns/pdns-server_2.9.22-8_i386.deb Size: 823224 MD5sum: 000b71fb3dd430006e4831c65e3a3e04 SHA1: 5d1034771f0830795ec7f47bb992eb5645cda950 SHA256: 6d8f7cac39f5304a683f0800b647ab7755e3713534141a3520e99f5130ae5665 ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] 4th level names and SOA records
Grant, Where are you doing your dig's from? One of your nameservers? When doing a dig for an SOA record we get (using OpenDNS as our resolver): # dig SOA gimpelevich.san-francisco.ca.us ; <<>> DiG 9.7.0-P1 <<>> SOA gimpelevich.san-francisco.ca.us ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 65487 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;gimpelevich.san-francisco.ca.us. INSOA ;; ANSWER SECTION: gimpelevich.san-francisco.ca.us. 86396 IN SOA ns1.he.net. hostmaster.gimpelevich.san-francisco.ca.us. 2011070500 10800 3600 604800 86400 ;; Query time: 1 msec ;; SERVER: 208.67.222.222#53(208.67.222.222) ;; WHEN: Thu Jul 14 13:15:46 2011 ;; MSG SIZE rcvd: 106 -- (using HE.net's serveras our resolver): # dig SOA gimpelevich.san-francisco.ca.us @ns1.he.net ; <<>> DiG 9.7.0-P1 <<>> SOA gimpelevich.san-francisco.ca.us @ns1.he.net ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 29195 ;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; WARNING: recursion requested but not available ;; QUESTION SECTION: ;gimpelevich.san-francisco.ca.us. INSOA ;; ANSWER SECTION: gimpelevich.san-francisco.ca.us. 86400 IN SOA ns1.he.net. hostmaster.gimpelevich.san-francisco.ca.us. 2011070500 10800 3600 604800 86400 ;; Query time: 2 msec ;; SERVER: 216.218.130.2#53(216.218.130.2) ;; WHEN: Thu Jul 14 13:17:55 2011 ;; MSG SIZE rcvd: 137 Chris Hesselrode | Principal / President Phoenix Knowledge Ventures, LLC PO Box 342 Maricopa, AZ 85139 P. 602.635.2355 M. 480.212.6232 F. 480.248.2769 E. chris.hesselr...@phoenixkv.com W. http://www.phoenixkv.com Follow us on Twitter : @phoenixkv, @hosthaus, @fluidns, @urbandesignhaus -Original Message- From: pdns-users-boun...@mailman.powerdns.com [mailto:pdns-users-boun...@mailman.powerdns.com] On Behalf Of Grant Keller Sent: Thursday, July 14, 2011 11:49 AM To: pdns-users@mailman.powerdns.com Subject: [Pdns-users] 4th level names and SOA records Hello all, So we provide delegation for san-francisco.ca.us. We have one users domain (gimpelevich.san-francisco.ca.us) with a zone file consisting of: gimpelevich.san-francisco.ca.us.IN NS ns1.he.net. gimpelevich.san-francisco.ca.us.IN NS ns2.he.net. gimpelevich.san-francisco.ca.us.IN NS ns3.he.net. gimpelevich.san-francisco.ca.us.IN NS ns4.he.net. gimpelevich.san-francisco.ca.us.IN NS ns5.he.net. At the HE servers, they have ns1.he.net. set as the soa, however, soa queries to anything other than one of the HE servers report the soa for san-francisco.ca.us. i.e.: dig soa gimpelevich.san-francisco.ca.us. ;; AUTHORITY SECTION: san-francisco.ca.us.259200 IN SOA ns1.sonic.net. hostmaster.sonic.net. 2011061002 3600 300 1209600 3600 and dig soa gimpelevich.san-francisco.ca.us. @ns5.he.net ;; ANSWER SECTION: gimpelevich.san-francisco.ca.us. 86400 IN SOA ns1.he.net. hostmaster.gimpelevich.san-francisco.ca.us. 2011070500 10800 3600 604800 86400 It appears that we since we are responding with the aa bit for san-francisco.ca.us. We end up responding as Authority, and the soa query stops at us, rather then moving on to the nameservers for the domain in question. I was hoping there is a way we can fix this and have the query continue to the authoritative name server. Thank you in advance for any advice. -- Grant Keller ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users
[Pdns-users] PDNS recursor Dual Stack
When setting pdns recursor to use an IPv4 and IPv6 address (comma separated in local-ip) the server doesn't respond to queries over IPv6. Any quick tips to look at? Thanks Sent via Wireless ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users
Re: [Pdns-users] PDNS recursor Dual Stack
Hi Chris,
I've disabled iptables and ip6tables, and get the same result.
The allow_from = 127.0.0.0/8, 10.247.2.0/24, ::1/128, fe80::/10,
2001:470:{}:fa2::/64
local_address = 10.247.2.2,2001:470:{}:fa2::2
(Partially removed the IPv6 address for security reasons)
Thanks!
Chris Hesselrode
From: Chris Russell [mailto:chris.russ...@knowledgeit.co.uk]
Sent: Friday, July 22, 2011 12:24 AM
To: Chris Hesselrode
Cc: pdns-users@mailman.powerdns.com
Subject: RE: [Pdns-users] PDNS recursor Dual Stack
Hi Chris,
Is the firewall disabled ?
What are the contents of your allow_from and local_address lines ?
Thanks
Chris
From: pdns-users-boun...@mailman.powerdns.com
[mailto:pdns-users-boun...@mailman.powerdns.com] On Behalf Of Chris
Hesselrode
Sent: 22 July 2011 06:11
To: pdns-users@mailman.powerdns.com
Subject: [Pdns-users] PDNS recursor Dual Stack
When setting pdns recursor to use an IPv4 and IPv6 address (comma separated
in local-ip) the server doesn't respond to queries over IPv6.
Any quick tips to look at?
Thanks
Sent via Wireless
_
Knowledge I.T.
'Unifying Business Technology'
www.knowledgeit.co.uk
_
Knowledge Limited, Company Registration: 1554385
Registered Office: New Century House, Crowther Road, Washington, Tyne &
Wear. NE38 0AQ
Leeds Office: Viscount Court, Leeds Road, Rothwell, Leeds. LS26 0GR
Tel: 0845 142 0020. Fax: 0845 142 0021
E-Mail Disclaimer: This e-mail message is intended to be received only by
persons entitled to receive the confidential information it may contain.
E-mail messages to clients of Knowledge IT may contain information that is
confidential and legally privileged. Please do not read, copy, forward, or
store this message unless you are an intended recipient of it. If you have
received this message in error, please forward it to the sender and delete
it completely from your computer system.
Please consider the environment before printing this email.
___
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
http://mailman.powerdns.com/mailman/listinfo/pdns-users
[Pdns-users] rDNS Set up with PowerDNS and PowerAdmin
Hello, I was curious if anyone could provide us with some tips on adding a delegated rDNS zone to our powerdns set up (2 servers, mysql backend, replicated dbs). We are awaiting confirmation from our colo as to the method of delegation they use (RFC2317 or DeGroot), but would like to get started to understanding this process. I appreciate any information you could pass along. We weren't able to find much via Google that works. Chris ___ Pdns-users mailing list Pdns-users@mailman.powerdns.com http://mailman.powerdns.com/mailman/listinfo/pdns-users
