[Pdns-users] Powerdns Problem with Delegation to Isilon.

ktm at rice.edu ktm at rice.edu
Wed Mar 23 14:03:30 UTC 2016 

On Wed, Mar 23, 2016 at 05:44:56AM -0700, syaginf wrote:
> Greetings.
> We are in the process of migrating from Bind to Powerdns on one of our
> compute cluster.
> Issue we are having is related to DNS Delegation for Isilon (Related to
> Isilon Smart Connect feature.)
> 
> Server is Master for .hpc 
> we need to delegate for isilon.hpc
> 
> In order to achive that we have 
> 
> isilon.hpc -> NS isilon-dns.hpc
> isilon-dns.hpc -> A record with Ip address.
> 
> This works like a Charm in Bind on one of the old servers and doesn't work
> in PowerDNS.
> 
> Any suggestion on what we might be missing and what might have to be
> enabled, or troubleshooting steps would be appreciated.
> 

Hi,

The results of the dig command against the old server includes the A
record for the isilon.hpc. This must come from your isilon-dns.hpc
server so your bind must be performing recursion to present that value
back. The PDNS server is only an authoritative server. For recursion,
we use pdns-recursor here and use the forward-zone feature to route
Isilon lookups to the correct server.

> This is result of DIG command on the old server.
> 
> ; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.23.rc1.el6_5.1 <<>> @127.0.0.1 isilon.hpc
> ; (1 server found)
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 45472
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
> 
> ;; QUESTION SECTION:
> ;isilon.hpc.                    IN      A
> 
> ;; ANSWER SECTION:
> isilon.hpc.             0       IN      A       192.168.3.121
> 
> ;; AUTHORITY SECTION:
> isilon.hpc.             259200  IN      NS      isilon-dns.hpc.
> 
> ;; ADDITIONAL SECTION:
> isilon-dns.hpc.         259200  IN      A       192.168.3.0
> 
> ;; Query time: 1 msec
> ;; SERVER: 127.0.0.1#53(127.0.0.1)
> ;; WHEN: Wed Mar 23 09:38:53 2016
> ;; MSG SIZE  rcvd: 85
> 

These results are correct for an authoritative server w/o recursion. Bind
has both functions integrated into the same product:

> Here are result for the PowerDNS server
> 
> ; <<>> DiG 9.9.4-RedHat-9.9.4-29.el7_2.3 <<>> @127.0.0.1 isilon.hpc
> ; (1 server found)
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 18138
> ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 2
> 
> ;; OPT PSEUDOSECTION:
> ; EDNS: version: 0, flags:; udp: 1680
> ;; QUESTION SECTION:
> ;isilon.hpc.                    IN      A
> 
> ;; AUTHORITY SECTION:
> isilon.hpc.             259200  IN      NS      isilon-dns.hpc.
> 
> ;; ADDITIONAL SECTION:
> isilon-dns.hpc.         259200  IN      A       192.168.3.0
> 
> ;; Query time: 4 msec
> ;; SERVER: 127.0.0.1#53(127.0.0.1)
> ;; WHEN: Tue Mar 22 20:51:20 EDT 2016
> ;; MSG SIZE  rcvd: 80
> 

Good luck.

Regards,
Ken

More information about the Pdns-users mailing list