[prev in list] [next in list] [prev in thread] [next in thread]
List: pdns-users
Subject: Re: [Pdns-users] Internal DNS for .LAN Domain
From: Daniel Miller via Pdns-users <pdns-users () mailman ! powerdns ! com>
Date: 2020-03-02 0:22:40
Message-ID: AMFES.0330574414.emfea35d17-8fc7-442a-b8e5-b7cf9a9dfa01 () blackdragon
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
No disrespect intended - but based on your post I'm inferring you're
very new to PowerDNS.
There's a separation between the authoritative server and the recursor.
These are totally separate processes. You *must* understand that before
proceeding. Read the PowerDNS docs for these servers until you grasp
that.
I'm assuming you haven't setup a recursor - at least not properly for
this application. What you need is to configure either "forward-zones"
or "forward-zones-file" appropriately in recursor.conf, and then have
your system use the configured recursor.
Read up on those sections a bit - post back if you still need help.
---
Daniel
------ Original Message ------
From: "David Jones via Pdns-users" <pdns-users@mailman.powerdns.com>
To: "Steven Christensen" <sdchristen@gmail.com>;
"pdns-users@mailman.powerdns.com" <pdns-users@mailman.powerdns.com>
Sent: 2/23/2020 6:40:07 PM
Subject: Re: [Pdns-users] Internal DNS for .LAN Domain
> The "name" field must be the full hostname that ends with the domain
> name to be valid.
>
>
>
> Here's an example from a working zone:
>
>
>
> MariaDB [powerdns]> select * from domains limit 1;
>
> +----+------------+--------+------------+--------+-----------------+---------+-----+
>
> > id | name | master | last_check | type | notified_serial |
> account | cas |
>
> +----+------------+--------+------------+--------+-----------------+---------+-----+
>
> > 1 | ha.ena.net | NULL | NULL | MASTER | 2019121901 |
> 2169 | |
>
> +----+------------+--------+------------+--------+-----------------+---------+-----+
>
> 1 rows in set (0.00 sec)
>
>
>
> MariaDB [powerdns]> select * from records where domain_id = 1 limit 5;
>
> +----+-----------+--------------------+------+-------------+-------+------+-------------+-----------+------+----------+
>
> > id | domain_id | name | type | content | ttl |
> prio | change_date | ordername | auth | disabled |
>
> +----+-----------+--------------------+------+-------------+-------+------+-------------+-----------+------+----------+
>
> > 2 | 1 | test.ha.ena.net | A | 1.2.3.4 | 300 |
> 0 | 1539287429 | NULL | 0 | 0 |
>
> > 7 | 1 | ha.ena.net | NS | ns1.ena.net | 86400 |
> 0 | 1572025749 | NULL | 0 | 0 |
>
> > 8 | 1 | ha.ena.net | NS | ns2.ena.net | 86400 |
> 0 | 1572025749 | NULL | 0 | 0 |
>
> > 9 | 1 | tickets.ha.ena.net | A | 96.5.2.23 | 300 |
> 0 | 1539287429 | NULL | 0 | 0 |
>
> > 10 | 1 | ldap.ha.ena.net | A | 96.4.2.38 | 300 |
> 0 | 1572025750 | NULL | 0 | 0 |
>
> +----+-----------+--------------------+------+-------------+-------+------+-------------+-----------+------+----------+
>
> 5 rows in set (0.00 sec)
>
>
>
> From: Pdns-users <pdns-users-bounces@mailman.powerdns.com> on behalf of
> Steven Christensen via Pdns-users <pdns-users@mailman.powerdns.com>
> Reply-To: Steven Christensen <sdchristen@gmail.com>
> Date: Sunday, February 23, 2020 at 5:42 PM
> To: "pdns-users@mailman.powerdns.com" <pdns-users@mailman.powerdns.com>
> Subject: [Pdns-users] Internal DNS for .LAN Domain
>
>
>
> This isn't working... any ideas?
>
>
>
> Added to database fine...
>
> -------------------------------------------------
>
> INSERT INTO domains (name, type) values ('1.168.192.in-addr.arpa',
> 'MASTER');
>
> INSERT INTO domains (name, type) values ('lan', 'MASTER');
>
> INSERT INTO records (domain_id, name, content, type,ttl,prio)
> VALUES (1,'lan','localhost admin.example.com 1 10380 3600 604800
> 3600','SOA',86400,NULL);
>
> INSERT INTO records (domain_id, name, content, type,ttl,prio)
> VALUES (2,'1.168.192.in-addr.arpa','localhost admin.example.com
> <http://admin.example.com> 1 10380 3600 604800 3600','SOA',86400,NULL);
>
> INSERT INTO records (domain_id, name, content, type,ttl,prio)
> VALUES (1,'lan','localhost','NS',86400,NULL);
>
> INSERT INTO records (domain_id, name, content, type,ttl,prio)
> VALUES (2,'1.168.192.in-addr.arpa','localhost','NS',86400,NULL);
>
> INSERT INTO records (domain_id, name, content, type,ttl,prio)
> VALUES (1,'dns1','192.168.86.254','A',3600,NULL);
>
> INSERT INTO records (domain_id, name, content, type,ttl,prio)
> VALUES (2,'192.168.1.254','dns1','PTR',3600,NULL);
>
> -----------------------------------------------------------------------------
>
> [root@dns1 pdns]# nslookup
> > server
> Default server: 192.168.1.254
> Address: 192.168.1.254#53
> > 192.168.1.254
> ** server can't find 254.1.168.192.in-addr.arpa: NXDOMAIN
> > dns1
> Server: 192.168.1.254
> Address: 192.168.1.254#53
>
> ** server can't find dns1: REFUSED
> > dns1.lan
> Server: 192.168.1.254
> Address: 192.168.1.254#53
>
> ** server can't find dns1.lan: NXDOMAIN
> > .lan
> nslookup: '.lan' is not a legal name (empty label)
> ----------------------------------------------------------------------------------
>
> /etc/hosts only has 127.0.0.1 localhost
>
> /etc/resolv.conf only has server 192.168.1.254
>
> ----------------------------------------------------------------------------------
>
> sort of works?
>
> [root@dns1 pdns]# ping dns1.lan
> PING dns1.lan(dns1.lan (fe80::4637:e6ff:fec4:a391%eno1)) 56 data bytes
> 64 bytes from dns1.lan (fe80::4637:e6ff:fec4:a391%eno1): icmp_seq=1
> ttl=64 time=0.043 ms
> 64 bytes from dns1.lan (fe80::4637:e6ff:fec4:a391%eno1): icmp_seq=2
> ttl=64 time=0.049 ms
> 64 bytes from dns1.lan (fe80::4637:e6ff:fec4:a391%eno1): icmp_seq=3
> ttl=64 time=0.061 ms
>
>
>
> -----------------------------------------------------------------
>
> etc/pdns/pdns.conf
>
> launch=gmysql
> gmysql-host=localhost
> gmysql-user=pdns
> gmysql-password=XXXXX
> gmysql-dbname=powerdns
> master=yes
>
> ---------------------------------------------
>
> firewall-cmd --add-service=dns --permanent
> firewall-cmd --reload
> -----------------------------------------------------------------
>
> Anything else I can post that would help?
>
> ---------------------------------------------------------------
>
>
>
>
>
>
>
>
>
> Thanks,
>
>
>
> Steve
>
>
>
>
>
[Attachment #5 (text/html)]
<html><head>
<style type="text/css">#x821c36bc5dc240e p.MsoNormal
{margin: 0in 0in 0.0001pt; font-size: 11pt; font-family: Calibri, sans-serif;}
#x821c36bc5dc240e a:link
{color: blue; text-decoration: underline;}
#x821c36bc5dc240e code
{font-family: "Courier New";}
#x821c36bc5dc240e pre
{margin: 0in 0in 0.0001pt; font-size: 10pt; font-family: "Courier New";}
#x821c36bc5dc240e div.WordSection1
{page: WordSection1;}
</style><style id="css_styles" type="text/css">blockquote.cite { margin-left: 5px; \
margin-right: 0px; padding-left: 10px; padding-right:0px; border-left: 1px solid \
#cccccc } blockquote.cite2 {margin-left: 5px; margin-right: 0px; padding-left: 10px; \
padding-right:0px; border-left: 1px solid #cccccc; margin-top: 3px; padding-top: 0px; \
} a img { border: 0px; }
li[style='text-align: center;'], li[style='text-align: right;'] { \
list-style-position: inside;} body { font-family: Segoe UI; font-size: 12pt; \
}</style> </head>
<body><div>No disrespect intended - but based on your post I'm inferring you're very \
new to PowerDNS.</div><div><br /></div><div>There's a separation between the \
authoritative server and the recursor. These are totally separate processes. You \
*must* understand that before proceeding. Read the PowerDNS docs for these servers \
until you grasp that.</div><div><br /></div><div>I'm assuming you haven't setup a \
recursor - at least not properly for this application. What you need is to configure \
either "forward-zones" or "forward-zones-file" appropriately in recursor.conf, and \
then have your system use the configured recursor.</div> <div><br /></div><div>Read \
up on those sections a bit - post back if you still need help.</div><div \
id="signature_old">---<br />Daniel </div><div id="signature_old"><br /></div><div \
id="signature_old"><br /></div> <div>------ Original Message ------</div>
<div>From: "David Jones via Pdns-users" <<a \
href="mailto:pdns-users@mailman.powerdns.com">pdns-users@mailman.powerdns.com</a>></div>
<div>To: "Steven Christensen" <<a \
href="mailto:sdchristen@gmail.com">sdchristen@gmail.com</a>>; "<a \
href="mailto:pdns-users@mailman.powerdns.com">pdns-users@mailman.powerdns.com</a>" \
<<a href="mailto:pdns-users@mailman.powerdns.com">pdns-users@mailman.powerdns.com</a>></div>
<div>Sent: 2/23/2020 6:40:07 PM</div>
<div>Subject: Re: [Pdns-users] Internal DNS for .LAN Domain</div><div><br /></div>
<div id="x821c36bc5dc240e"><blockquote \
cite="50FA7A89-5D2E-4CEC-90BC-BF3738DF2176@ena.com" type="cite" class="cite2">
<div class="WordSection1">
<p class="MsoNormal">The "name" field must be the full hostname that ends with the \
domain name to be valid.<o:p xmlns:o="#unknown"></o:p></p> <p class="MsoNormal"><o:p \
xmlns:o="#unknown"> </o:p></p> <p class="MsoNormal">Here's an example from a working \
zone:<o:p xmlns:o="#unknown"></o:p></p> <p class="MsoNormal"><o:p xmlns:o="#unknown"> \
</o:p></p> <p class="MsoNormal">MariaDB [powerdns]> select * from domains limit \
1;<o:p xmlns:o="#unknown"></o:p></p> <p \
class="MsoNormal">+----+------------+--------+------------+--------+-----------------+---------+-----+<o:p \
xmlns:o="#unknown"></o:p></p> <p class="MsoNormal">| id | name | master | \
last_check | type | notified_serial | account | cas |<o:p \
xmlns:o="#unknown"></o:p></p> <p \
class="MsoNormal">+----+------------+--------+------------+--------+-----------------+---------+-----+<o:p \
xmlns:o="#unknown"></o:p></p> <p class="MsoNormal">| 1 | ha.ena.net | NULL | \
NULL | MASTER | 2019121901 | 2169 | |<o:p \
xmlns:o="#unknown"></o:p></p> <p \
class="MsoNormal">+----+------------+--------+------------+--------+-----------------+---------+-----+<o:p \
xmlns:o="#unknown"></o:p></p> <p class="MsoNormal">1 rows in set (0.00 sec)<o:p \
xmlns:o="#unknown"></o:p></p> <p class="MsoNormal"><o:p xmlns:o="#unknown"> \
</o:p></p> <p class="MsoNormal">MariaDB [powerdns]> select * from records where \
domain_id = 1 limit 5;<o:p xmlns:o="#unknown"></o:p></p> <p \
class="MsoNormal">+----+-----------+--------------------+------+-------------+-------+------+-------------+-----------+------+----------+<o:p \
xmlns:o="#unknown"></o:p></p> <p class="MsoNormal">| id | domain_id | name \
| type | content | ttl | prio | change_date | ordername | auth | disabled \
|<o:p xmlns:o="#unknown"></o:p></p> <p \
class="MsoNormal">+----+-----------+--------------------+------+-------------+-------+------+-------------+-----------+------+----------+<o:p \
xmlns:o="#unknown"></o:p></p> <p class="MsoNormal">| 2 | 1 | \
test.ha.ena.net | A | 1.2.3.4 | 300 | 0 | 1539287429 \
| NULL | 0 | 0 |<o:p xmlns:o="#unknown"></o:p></p> <p \
class="MsoNormal">| 7 | 1 | ha.ena.net | NS | \
ns1.ena.net | 86400 | 0 | 1572025749 | NULL | 0 | \
0 |<o:p xmlns:o="#unknown"></o:p></p> <p class="MsoNormal">| 8 | 1 \
| ha.ena.net | NS | ns2.ena.net | 86400 | 0 | 1572025749 \
| NULL | 0 | 0 |<o:p xmlns:o="#unknown"></o:p></p> <p \
class="MsoNormal">| 9 | 1 | tickets.ha.ena.net | A | \
96.5.2.23 | 300 | 0 | 1539287429 | NULL | 0 | \
0 |<o:p xmlns:o="#unknown"></o:p></p> <p class="MsoNormal">| 10 | 1 | \
ldap.ha.ena.net | A | 96.4.2.38 | 300 | 0 | 1572025750 | \
NULL | 0 | 0 |<o:p xmlns:o="#unknown"></o:p></p> <p \
class="MsoNormal">+----+-----------+--------------------+------+-------------+-------+------+-------------+-----------+------+----------+<o:p \
xmlns:o="#unknown"></o:p></p> <p class="MsoNormal">5 rows in set (0.00 sec)<o:p \
xmlns:o="#unknown"></o:p></p> <p class="MsoNormal"><o:p xmlns:o="#unknown"> \
</o:p></p> <div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in \
0in 0in"> <p class="MsoNormal"><b><span style="font-size:12.0pt;color:black">From: \
</span></b><span style="font-size:12.0pt;color:black">Pdns-users <<a \
href="mailto:pdns-users-bounces@mailman.powerdns.com">pdns-users-bounces@mailman.powerdns.com</a>> \
on behalf of Steven Christensen via Pdns-users <<a \
href="mailto:pdns-users@mailman.powerdns.com">pdns-users@mailman.powerdns.com</a>><br \
/> <b>Reply-To: </b>Steven Christensen <<a \
href="mailto:sdchristen@gmail.com">sdchristen@gmail.com</a>><br /> <b>Date: \
</b>Sunday, February 23, 2020 at 5:42 PM<br /> <b>To: </b>"<a \
href="mailto:pdns-users@mailman.powerdns.com">pdns-users@mailman.powerdns.com</a>" \
<<a href="mailto:pdns-users@mailman.powerdns.com">pdns-users@mailman.powerdns.com</a>><br \
/> <b>Subject: </b>[Pdns-users] Internal DNS for .LAN Domain<o:p \
xmlns:o="#unknown"></o:p></span></p> </div>
<div>
<p class="MsoNormal"><o:p xmlns:o="#unknown"> </o:p></p>
</div>
<div>
<p class="MsoNormal">This isn't working... any ideas? <o:p \
xmlns:o="#unknown"></o:p></p> <div>
<p class="MsoNormal"><o:p xmlns:o="#unknown"> </o:p></p>
</div>
<div>
<p class="MsoNormal">Added to database fine...<o:p xmlns:o="#unknown"></o:p></p>
</div>
<div>
<p class="MsoNormal">-------------------------------------------------<o:p \
xmlns:o="#unknown"></o:p></p> </div>
<div>
<p class="MsoNormal">INSERT INTO domains (name, type) values \
('1.168.192.in-addr.arpa', 'MASTER');<o:p xmlns:o="#unknown"></o:p></p> </div>
<div>
<p class="MsoNormal">INSERT INTO domains (name, type) values ('lan', 'MASTER');<br />
<br />
INSERT INTO records (domain_id, name, content, type,ttl,prio)<br />
VALUES (1,'lan','localhost <a href="http://admin.example.com">admin.example.com</a> 1 \
10380 3600 604800 3600','SOA',86400,NULL);<br /> <br />
INSERT INTO records (domain_id, name, content, type,ttl,prio)<br />
VALUES (2,'1.168.192.in-addr.arpa','localhost <a href="http://admin.example.com">
admin.example.com</a> 1 10380 3600 604800 3600','SOA',86400,NULL);<br />
<br />
INSERT INTO records (domain_id, name, content, type,ttl,prio)<br />
VALUES (1,'lan','localhost','NS',86400,NULL);<br />
<br />
INSERT INTO records (domain_id, name, content, type,ttl,prio)<br />
VALUES (2,'1.168.192.in-addr.arpa','localhost','NS',86400,NULL);<br />
<br />
INSERT INTO records (domain_id, name, content, type,ttl,prio)<br />
VALUES (1,'dns1','192.168.86.254','A',3600,NULL);<br />
<br />
INSERT INTO records (domain_id, name, content, type,ttl,prio)<br />
VALUES (2,'192.168.1.254','dns1','PTR',3600,NULL);<o:p xmlns:o="#unknown"></o:p></p>
</div>
<div>
<p class="MsoNormal">-----------------------------------------------------------------------------<o:p \
xmlns:o="#unknown"></o:p></p> </div>
<div>
<p class="MsoNormal">[root@dns1 pdns]# nslookup<br />
> server<br />
Default server: 192.168.1.254<br />
Address: 192.168.1.254#53<br />
> 192.168.1.254<br />
** server can't find 254.1.168.192.in-addr.arpa: NXDOMAIN<br />
> dns1<br />
Server: 192.168.1.254<br />
Address: 192.168.1.254#53<br />
<br />
** server can't find dns1: REFUSED<br />
> dns1.lan<br />
Server: 192.168.1.254<br />
Address: 192.168.1.254#53<br />
<br />
** server can't find dns1.lan: NXDOMAIN<br />
> .lan<br />
nslookup: '.lan' is not a legal name (empty label)<br />
----------------------------------------------------------------------------------<o:p \
xmlns:o="#unknown"></o:p></p> </div>
<div>
<p class="MsoNormal">/etc/hosts only has 127.0.0.1 localhost<o:p \
xmlns:o="#unknown"></o:p></p> </div>
<div>
<p class="MsoNormal">/etc/resolv.conf only has server 192.168.1.254<o:p \
xmlns:o="#unknown"></o:p></p> </div>
<div>
<p class="MsoNormal">----------------------------------------------------------------------------------<o:p \
xmlns:o="#unknown"></o:p></p> </div>
<div>
<p class="MsoNormal">sort of works?<o:p xmlns:o="#unknown"></o:p></p>
</div>
<div>
<p class="MsoNormal">[root@dns1 pdns]# ping dns1.lan<br />
PING dns1.lan(dns1.lan (fe80::4637:e6ff:fec4:a391%eno1)) 56 data bytes<br />
64 bytes from dns1.lan (fe80::4637:e6ff:fec4:a391%eno1): icmp_seq=1 ttl=64 time=0.043 \
ms<br /> 64 bytes from dns1.lan (fe80::4637:e6ff:fec4:a391%eno1): icmp_seq=2 ttl=64 \
time=0.049 ms<br /> 64 bytes from dns1.lan (fe80::4637:e6ff:fec4:a391%eno1): \
icmp_seq=3 ttl=64 time=0.061 ms<o:p xmlns:o="#unknown"></o:p></p> </div>
<div>
<p class="MsoNormal"><o:p xmlns:o="#unknown"> </o:p></p>
</div>
<div>
<p class="MsoNormal">-----------------------------------------------------------------<o:p \
xmlns:o="#unknown"></o:p></p> </div>
<div>
<p class="MsoNormal">etc/pdns/pdns.conf<o:p xmlns:o="#unknown"></o:p></p>
</div>
<div>
<p class="MsoNormal">launch=gmysql<br />
gmysql-host=localhost<br />
gmysql-user=pdns<br />
gmysql-password=XXXXX<br />
gmysql-dbname=powerdns<br />
master=yes<o:p xmlns:o="#unknown"></o:p></p>
</div>
<div>
<p class="MsoNormal">---------------------------------------------<o:p \
xmlns:o="#unknown"></o:p></p> </div>
<div>
<div style="mso-element:para-border-div;border:dashed #2F6FAB 1.0pt;padding:12.0pt \
12.0pt 12.0pt 12.0pt;background:#F9F9F9"> <pre \
style="line-height:13.2pt;background:#F9F9F9;word-break:break-all;border:none;padding: \
0in;border-radius:4px;box-sizing:border-box;white-space:pre-wrap;overflow:auto"><code><i><span \
style="color:black">firewall-cmd --add-service=dns \
--permanent</span></i></code><i><span style="color:black"><br /><code> firewall-cmd \
--reload</code></span></i><i><span style="font-size:12.0pt;color:black"><o:p \
xmlns:o="#unknown"></o:p></span></i></pre> </div>
</div>
<div>
<p class="MsoNormal">-----------------------------------------------------------------<o:p \
xmlns:o="#unknown"></o:p></p> </div>
<div>
<p class="MsoNormal">Anything else I can post that would help?<o:p \
xmlns:o="#unknown"></o:p></p> </div>
<div>
<p class="MsoNormal">---------------------------------------------------------------<o:p \
xmlns:o="#unknown"></o:p></p> </div>
<div>
<p class="MsoNormal"><o:p xmlns:o="#unknown"> </o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p xmlns:o="#unknown"> </o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p xmlns:o="#unknown"> </o:p></p>
<div>
<p class="MsoNormal"><o:p xmlns:o="#unknown"> </o:p></p>
</div>
<div>
<p class="MsoNormal">Thanks,<o:p xmlns:o="#unknown"></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p xmlns:o="#unknown"> </o:p></p>
</div>
<div>
<p class="MsoNormal">Steve<o:p xmlns:o="#unknown"></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p xmlns:o="#unknown"> </o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p xmlns:o="#unknown"> </o:p></p>
</div>
</div>
</div>
</div>
</blockquote></div>
</body></html>
_______________________________________________
Pdns-users mailing list
Pdns-users@mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic