[Pdns-users] setting up pdn with ldap backend

n-other at artel.kz n-other at artel.kz
Sat Mar 12 16:15:15 UTC 2005 

On Sun, 27 Feb 2005 13:02:08 +0600, n-other at artel.kz wrote

Hello again,
after all i've solved one problem and encountered another. my first problem
was a strange bug in my ldap server implementation which caused resulting null
answers to queries if an attribute was specified, but slapindex was not run.
but after all it still doesn't work. I traced ldap queries and they look
little strange. pdns does search and receive right record, but after that
continuing to do queries. here is cut off from my syslog.

Mar 12 21:54:35 forever pdns[4943]: [LdapBackend] Ldap connection succeeded
Mar 12 21:54:36 forever pdns[22485]: Done launching threads, ready to
distribute questions
Mar 12 21:54:40 forever slapd[3684]: conn=1 op=1 SRCH base="" scope=2
filter="(associatedDomain=tinybloom.net)" 
Mar 12 21:54:40 forever slapd[3684]: conn=1 op=1 RESULT tag=101 err=32 text= 
Mar 12 21:54:40 forever slapd[3684]: conn=1 op=2 SRCH base="" scope=2
filter="(&(associatedDomain=tinybloom.net)(sOARecord=*))" 
Mar 12 21:54:40 forever slapd[3684]: conn=1 op=2 RESULT tag=101 err=32 text= 
Mar 12 21:54:40 forever slapd[3684]: conn=1 op=3 SRCH base="" scope=2
filter="(&(associatedDomain=net)(sOARecord=*))" 
Mar 12 21:54:40 forever slapd[3684]: conn=1 op=3 RESULT tag=101 err=32 text= 
Mar 12 21:54:40 forever slapd[3684]: conn=1 op=4 SRCH base="" scope=2
filter="(&(badfilter)(sOARecord=*))" 
Mar 12 21:54:40 forever slapd[3684]: conn=1 op=4 RESULT tag=101 err=32 text= 
Mar 12 21:54:40 forever pdns[22059]: Not authoritative for 'tinybloom.net',
sending servfail to 213.211.75.197 (recursion was desired)

first 2 queries do return real results.

> 
> i'm trying to setup powerdns 2.9.17 with ldap backend instead of 
> bind9. i nave loaded zones from bind files to ldap. when trying to 
> request any domain using nslookup from server i get errors 
> concerning non authoritative data for any domain. here is sample 
> message and data from ldap.
> 
> Not authoritative for 'tinybloom.net', sending servfail to 127.0.0.1
> (recursion was desired)
> 
> # tinybloom.net, dns, root
> dn: dc=tinybloom.net,ou=dns, dc=root
> objectClass: dnsdomain2
> objectClass: domainrelatedobject
> dc: tinybloom.net
> associatedDomain: tinybloom.net
> sOARecord: ns01.forever.kz n-other.forever.kz 2005020101 604800 
> 86400 2419200 604800 nSRecord: ns01.forever.kz nSRecord: ns02.forever.kz
> mXRecord: 5 mail.forever.kz
> aRecord: 213.211.75.197
> 
> so, what can be wrong?
> 

---
With Best Regards, 
 Roman Hlynovskiy

More information about the Pdns-users mailing list