Bug #20618
closednameserver role can't coexist with nsupdate
0%
Description
When adding records to the ansible inventory, and thus, adding DNS records to the BIND master, nsupdate is still able to add records and somehow overwrites changes made by the ansible playbook.
The current solution is to pause the OVH queue, wait until no dynamic records need to be updated, then run the nameserver role.
I haven't completely debugged why but it takes about 2 minutes for the zone files to be populated. So the front.sepia.ceph.com zone file is done first, then while the rest of the zone files are populated and uploaded, nsupdate is making changes to the front.sepia.ceph.com zone file. Then when named is reloaded at the end, the A records we want added are missing.
PTR records do get created, however, because nsupdate doesn't touch reverse zone files.
Files
Updated by David Galloway almost 7 years ago
I think an elegant solution might be to populate the zone files locally (on the machine running the nameserver role), then ship them all at once and quickly reload named in hopes of beating nsupdate.
Updated by David Galloway almost 7 years ago
- File named_output.log named_output.log added
Updated by David Galloway about 6 years ago
- Status changed from 12 to Resolved