[Pdns-users] dnssec records not available in mysql database of supermaster but are available on the slaves
Florus Both
florus at yeetta.com
Wed Jan 30 14:49:37 UTC 2013
Hi,
just converted to dnssec, updated pdns.conf etc.
ns1 is a supermaster, ns2 & ns3 are slaves.
Replication works fine.
But when I create a domain and insert some records on ns1 and then run:
[fb at ns1 ~]$ pdnssec check-zone selfinsert.com
Following record is auth=0, run pdnssec rectify-zone?: selfinsert.com IN MX
25 mail.test.com
[fb at ns1 ~]$ pdnssec rectify-zone selfinsert.com
Adding NSEC ordering information
[fb at ns1 ~]$ pdnssec check-zone selfinsert.com
Checked 8 records of 'selfinsert.com', 0 errors
[fb at ns1 ~]$ pdnssec secure-zone selfinsert.com
Zone selfinsert.com secured
Mysql output on ns1:
mysql> select * from records where domain_id=29;
+-----+-----------+--------------------------+------+------------------------------------------------------------------------+-------+------+-------------+-----------+------+
| id | domain_id | name | type | content
| ttl | prio |
change_date | ordername | auth |
+-----+-----------+--------------------------+------+------------------------------------------------------------------------+-------+------+-------------+-----------+------+
| 209 | 29 | selfinsert.com | SOA | ns1.yeetta.net
hostmaster.yeetta.net 2013013002 86400 86400 604800 300 | 86400 | NULL |
NULL | | 1 |
| 210 | 29 | selfinsert.com | NS | ns1.yeetta.net
| 600 | NULL |
NULL | | 1 |
| 211 | 29 | selfinsert.com | NS | ns2.yeetta.net
| 600 | NULL |
NULL | | 1 |
| 212 | 29 | selfinsert.com | NS | ns3.yeetta.net
| 600 | NULL |
NULL | | 1 |
| 213 | 29 | www.selfinsert.com | A | 1.2.3.4
| 120 | NULL |
NULL | www | 1 |
| 214 | 29 | mail.selfinsert.com | A | 2.3.4.5
| 120 | NULL |
NULL | mail | 1 |
| 215 | 29 | localhost.selfinsert.com | A | 127.0.0.1
| 120 | NULL |
NULL | localhost | 1 |
| 216 | 29 | selfinsert.com | MX | mail.test.com
| 120 | 25 |
NULL | | 1 |
+-----+-----------+--------------------------+------+------------------------------------------------------------------------+-------+------+-------------+-----------+------+
8 rows in set (0.00 sec)
but on a slaves (after updating the serial):
mysql> select * from records where domain_id=19;
+-----+-----------+--------------------------+--------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------+------+-------------+-----------+------+
| id | domain_id | name | type | content
| ttl | prio | change_date | ordername | auth |
+-----+-----------+--------------------------+--------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------+------+-------------+-----------+------+
| 730 | 19 | selfinsert.com | SOA | ns1.yeetta.net.
hostmaster.yeetta.net. 2013013002 86400 86400 604800 300
| 86400 | 0 | NULL | | 1 |
| 731 | 19 | selfinsert.com | RRSIG | SOA 8 2 86400
20130207000000 20130124000000 38950 selfinsert.com.
Sw2simr+zbZLaRhhlSGi5uT0FNr0hDFQxio6JhocuGnTpAlhFZaw/lFwWAhU0rt84zM4fSU3YkGARbMbLPcbC9Pld82xvjmAHUsEEZjQnpaeNs63xoJAMsgOOrKt47ika0Cdb8kuBMmYmvx/DTbTAnN3FcIp3/17fs4hFNs9sdw=
| 86400 | 0 | NULL | | 1 |
| 732 | 19 | selfinsert.com | RRSIG | NSEC 8 2 86400
20130207000000 20130124000000 38950 selfinsert.com.
Jcdgyvs4/uiDzhqG/4c1bcYAbY2+OS+7Y4ARXRrb3gb0uBeBQ3TexEze14glLyUIEGZLtba/TXum08oqw34vtO1yqoyO3hC282iqJ0ZYMmimDuAdrTANcQUgntvlEDenI8RXyrSWIPqy9D2OYAwEzF9FMHEx//67Wz/BxA8nDBg=
| 86400 | 0 | NULL | | 1 |
| 733 | 19 | localhost.selfinsert.com | A | 127.0.0.1
| 120 | 0 | NULL | localhost | 1 |
| 734 | 19 | localhost.selfinsert.com | RRSIG | A 8 3 120
20130207000000 20130124000000 38950 selfinsert.com.
PVim4SCcfArWV1BT1kGEukTp6QYn9p84LCaJhmOhvDDZ8Q0Zc82jZ3LqWdmmxoKGQDsbMxTxQNLXDp7DRmDxskXev6aScklvN4KwbhfEiVlCO065eVeQ/NFOKB/ZmrrMgAOvVR5pW4EgsnU2HVC9HuDDKJYdgMi548IWQLHH+w4=
| 120 | 0 | NULL | localhost | 1 |
| 735 | 19 | mail.selfinsert.com | RRSIG | NSEC 8 3 120
20130207000000 20130124000000 38950 selfinsert.com.
eu4HWIToICLCrlOSytRgvynwvzJcsNc/9liqqQkGe2LqoDlPAyqX18XzBPK9QM+2g+a+Dqt/eqVCAR7b8fOfCyTc5d2mkDVo4/2jqniS2rSdEiIFY+GXzQw+o23wZ83xKesi9LyyyqeK2r2CS7aYfwD5ANSwjwqxJwGMFRic0e4=
| 120 | 0 | NULL | mail | 1 |
| 736 | 19 | selfinsert.com | NS | ns1.yeetta.net
| 600 | 0 | NULL | | 1 |
| 737 | 19 | selfinsert.com | NS | ns2.yeetta.net
| 600 | 0 | NULL | | 1 |
| 738 | 19 | selfinsert.com | NS | ns3.yeetta.net
| 600 | 0 | NULL | | 1 |
| 739 | 19 | selfinsert.com | RRSIG | NS 8 2 600
20130207000000 20130124000000 38950 selfinsert.com.
JllWyR8OOIPyminKQBgOuFA+vxJGiKugwzBxYAIojlqlVfkLqPe+xIQMYQ8kjYEiKiPGQhoxqdW5tr8fbBToyCWhJlIXJ1YO7QqfThdsuLuG3g7RNOjsxE+PQJ3ue/bSvh1X1Etmn4FuVE4SRm94dXHy0KtuJLYQiDR2NQ0WjZE=
| 600 | 0 | NULL | | 1 |
| 740 | 19 | www.selfinsert.com | RRSIG | NSEC 8 3 120
20130207000000 20130124000000 38950 selfinsert.com.
B3fEO7XuVTbAbaeUEAKwiBGMdmWmHuuyfwQYuEdTye0K5MF/CfFBBj7u3MVlNuo9PFzU7I9zETy854P5BZhvvhZosBlJAljJXYPPf553oiW6LuWV9Wf6BN3rMJHjG8RSHp0GgJIahHs6G4uUves4spOIEJW2mxjsv82qrsbohUA=
| 120 | 0 | NULL | www | 1 |
| 741 | 19 | localhost.selfinsert.com | RRSIG | NSEC 8 3 120
20130207000000 20130124000000 38950 selfinsert.com.
XxfbOZ15f8p7FyMyPhTAxk5CE7WwaY6dxWS6Qcoq86FmPVS9C8zuPRi1dMdoHRSNVyzbY1kOkMOa/xG0456Y5dN0nO3OixscFMQLnC78WtZAHHw6w92B7SxvtFIFVQrSzVPnq0hKdwmqYvQqEFBOeXAgbZVVpUcMmUbUeTYOFk0=
| 120 | 0 | NULL | localhost | 1 |
| 742 | 19 | selfinsert.com | DNSKEY | 257 3 8
AwEAAbMR1NCg4TKD9edP0BcjOlv3hpKqzfy3eUKG9Qt92j3mooXkb3PwY7Mh51OszfcbE3QPmWrg0TwkQpzVO6EuMBRfELKuW4oOLkq50UXQsMJUmPxZS6GX4S+2VkA/Cx5rYYRSnBM+VmDEOEMwYwGZVhJvbnNsnSsytUf5/FBnqIJ5NJ3g5qSMf/OwY6QvdzK389908l+DLYXuu5CZvjyFPBfBkE64peL0VseEK7cPSOVphCAwgRzaeiErvYH4U4fLPzMXRQrfz1OjlnokHBPLMrsNpyOxftUYIyg14guK3IHIeyWaBw7ENUEOe/WSbw8+bZO+vg8uvtuMrvdDCaJVo7k=
| 300 | 0 |
NULL | | 1 |
| 743 | 19 | selfinsert.com | DNSKEY | 256 3 8
AwEAAcALi0XK55R0lJaVUf7Yd/xbbJd/iId7E5bpwsIe+mbje3i/ppB8SKq9ku2vWAl4FrKgCP1pIE2v3ZwFd3kyk2glAac1G+o293orGzZFxeipeYO+ueCcCgsYN4J9JkuyhEzObf2kJWBjfRq1FP6/lNFuPkYdkd1X5ZA5gbiAw06f
| 300 | 0 | NULL | | 1 |
| 744 | 19 | selfinsert.com | DNSKEY | 256 3 8
AwEAAfYSZaxqJTm3s3m+f6G3dr+hqZGlMmq4yUevDceckUqJQaZdqlGDvtbWUDea24s26E362rVSTENCb8OpdN6bteQ+5DmZIBWUs6bRxfXvGy1otRUDCVEVfIN3d2ipH+KUOxuHVMHzu3OR+IJUyUcnbYMwftO3S9gjzkleV7e3/cpZ
| 300 | 0 | NULL | | 1 |
| 745 | 19 | selfinsert.com | RRSIG | DNSKEY 8 2 300
20130207000000 20130124000000 30422 selfinsert.com.
geESBjcLv2zHzc+4SAWc3h/+HySb+WtiNvI7UsS8WGuE2O9oBneW6SUERkM2kEj20K60sX4/AJnXpB6L+pYcuO/6N+V81i5LAOvvwB9Jy2TP3cFTfB3HZ3lJRc8UeUH94YLhPrxgw3ZeKhfUx4lKQ1U4UBqwC29KDIYBYGntNGXNepmaYNatrgUmHI9Fc6/0IhqwDB09t+klDV+tp/YepQGDgg3WZQ5dqVdK1vFAy8SId3l0ZEM6SQNLjiA6DqJKyULlHFcsKUx2EI1+UBjt1rU6+chpt6H9NFxeyNnJzQtPWAL9ICO7unvaWMLvJJMo+Q9eCAkX8kI0pDhpj+Xpag==
| 300 | 0 | NULL | | 1 |
| 746 | 19 | mail.selfinsert.com | A | 2.3.4.5
| 120 | 0 | NULL | mail | 1 |
| 747 | 19 | mail.selfinsert.com | RRSIG | A 8 3 120
20130207000000 20130124000000 38950 selfinsert.com.
Q+FN9FdrekMzYz1lBJwCRojwxV33wVGhotDwXcmtelk5noLJtU65zWcJASi7DYhLalSAEiviXb3CP8EPQg/E7AXAHnva22vMH6jWqtbrkHxnausgjLOIoxiMFbxFUISKG9DYQVyBH5r8BLcv29QeXQ+ibny8fGWdIkYddbMENdc=
| 120 | 0 | NULL | mail | 1 |
| 748 | 19 | selfinsert.com | MX | mail.test.com
| 120 | 25 | NULL | | 1 |
| 749 | 19 | selfinsert.com | RRSIG | MX 8 2 120
20130207000000 20130124000000 38950 selfinsert.com.
mdYWN4t3EUcPen6HmIC2deJIUThs2eCd7VT75ELwlOmWOGPEhYGmG8DZHYhdCfiwkTuV34RTHHIOZduuRBodoMIXtRUojjLqp15MDb+RpnU4Spb25z2Vys8GQRlXcSecsi1QitsrRqNignmp2mtMZsVf4ZYR8cGTUC0396zc26s=
| 120 | 0 | NULL | | 1 |
| 750 | 19 | www.selfinsert.com | A | 1.2.3.4
| 120 | 0 | NULL | www | 1 |
| 751 | 19 | www.selfinsert.com | RRSIG | A 8 3 120
20130207000000 20130124000000 38950 selfinsert.com.
amsPExoth9ukG6zUQHZytIO6y5EpROydFw9ltynxLAChcE+XnAl9PAy12seOIlWnqaF3Wm4sWdFIe9G+Vwswojm7yh6CD27mFQuj3jvWySXP8BhxeZiqxna1tdO4gvUxGb+0bg1y1yP2WD0POJLlS8OU+SlLuvv4e6yGx6QHFAQ=
| 120 | 0 | NULL | www | 1 |
+-----+-----------+--------------------------+--------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+-------+------+-------------+-----------+------+
22 rows in set (0.00 sec)
Anyone any ideas why this happens????
Thanks
/florus
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20130130/54c3d117/attachment.html>
More information about the Pdns-users
mailing list