[Pdns-users] Some question about DNSDist
Thao Nguyen
devilsmile86 at gmail.com
Fri Nov 25 16:50:29 UTC 2016
Hi Oli,
Thank you for the quick reply.
*With Issue 1:*
I'm using Redhat 7.2. Here is my result from DNSDist version:
[root at my001 ~]# dnsdist --version
dnsdist 1.0.0
[root at my001 ~]# cat /proc/version
Linux version 3.10.0-327.36.3.el7.x86_64 (mockbuild at x86-037.build.eng.
bos.redhat.com) (gcc version 4.8.5 20150623 (Red Hat 4.8.5-4) (GCC) )
I don't know exactly problem. I had used DNSDist rpm from CentOS in Redhat
7 machine before.
Then I tried download another DNSDist from other website:
http://dev.racf.bnl.gov/yum/snapshots/rhel7/epel7-x86_64/d/. New rpm worked
with makeKey(). It return encypt result.
I find in website: https://repo.powerdns.com/centos/x86_64/6Server/ only
have rpms for el6. Can you send me a website for download manually DNSDist
rpm official for Redhat 7?
* Before I got issue:*
dnsdist-1.0.0-1pdns.el7.x86_64.rpm
* All rpms in my current machince:*
dnsdist-1.0.0-1.el7.x86_64.rpm
libsodium-1.0.5-1.el7.x86_64.rpm
luajit-2.0.4-3.el7.x86_64.rpm
protobuf-2.5.0-7.el7.x86_64.rpm
libedit-3.0-12.20121213cvs.el7.x86_64.rpm
*With Issue 2:*
With do not force setUp(). My downstream is always down. setAuto() make
downstream down too.
*Here is my systemctl status dnsdist:*
systemd: Starting DNS Loadbalancer...
dnsdist: Read configuration from '/etc/dnsdist/dnsdist.conf'
dnsdist: Added downstream server 192.168.3.3:5353
dnsdist: Added downstream server 192.168.3.4:53
dnsdist: Listening on 0.0.0.0:53
dnsdist: dnsdist 1.0.0 comes with ABSOLUTELY NO WARRANTY. This is free
software, and you are welcome to redistribute it according to the terms of
the GPL version 2
dnsdist: ACL allowing queries from: 127.0.0.0/8, 10.0.0.0/8, 100.64.0.0/10,
169.254.0.0/16, 192.168.0.0/16, 172.16.0.0/12, ::1/128, fc00::/7, fe80::/10
dnsdist: Accepting control connections on 0.0.0.0:5199
dnsdist: Backend 192.168.3.3:5353 responded to health check with ServFail
dnsdist: Marking downstream 192.168.3.3:5353 as 'down'
dnsdist: Backend 192.168.3.4:53 responded to health check with ServFail
dnsdist: Marking downstream 192.168.3.4:53 as 'down'
systemd: Started DNS Loadbalancer.
dnsdist: Backend 192.168.3.3:5353 responded to health check with ServFail
dnsdist: Backend 192.168.3.4:53 responded to health check with ServFail
*My "/etc/dnsdist/dnsdist.conf":*
setKey("TS1F3DSNUTehZBv8bpLD/oph9TkwJw+MOwgQEePT4io=")
controlSocket("0.0.0.0")
setLocal('0.0.0.0')
newServer{address="192.168.3.3:5353", qps=10, order=1}
newServer{address="192.168.3.4", qps=10, order=2}
setServerPolicy(firstAvailable)
setVerboseHealthChecks(true)
*I opened port 53 in two machine. Here is my port in "192.168.3.3":*
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:53
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:53
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5353
ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:5353
Am I missing anything else, Oli? Such as: rpms, port, config... . How can I
make it "up" as example?
Beside that, I tried used log file: addAction(AllRule(),
LogAction("dnsdist.log", false)) but it return an error:
dnsdist[17049]: Fatal error: Exception thrown by a callback function called
by Lua
Do you know this error?
Best regards,
Thao Nguyen
2016-11-25 1:18 GMT+07:00 Oli Schacher <oli.schacher at switch.ch>:
> Hi
>
>
> Am 24.11.16 um 18:20 schrieb nguyen van:
>
> > I'm using Redhat 7. I'm a newbie with DNSDist. I tried to config as
> > README.md but I got some issue. Can you help me?
> > Issue 1. I tried to makeKey but it always return plaintext:
> >> makeKey()
> > setKey("plaintext")
> >
> > Here is list rpm in my system:
> > dnsdist-1.0.0-1pdns.el7.x86_64.rpm
> > libedit-3.0-12.20121213cvs.el7.x86_64.rpm
> > libsodium-1.0.5-1.el7.x86_64.rpm
> > And I also added "bind "^R" em-inc-search-prev" by command: echo "bind
> > "^R" em-inc-search-prev" > ~/.editrc. But It still return "plaintext".
>
> Does 'dnsdist --version' tell you if libsodium is found at all? For me
> it shows:
> dnsdist --version
> dnsdist 0.0.1306g98883b8 (Lua 5.1)
> Enabled features: dnscrypt libsodium protobuf re2 systemd
>
> Apart from a different dnsdist version I have the same versions, and it
> works on centos 7.1:
> rpm -qa libsodium libedit
> libedit-3.0-12.20121213cvs.el7.x86_64
> libsodium-1.0.5-1.el7.x86_64
>
> >
> > Issue 2: My "dnsdist" server have both "dnsdist" and "named" so I open
> > and use another port for named.
> > My /etc/dnsdist/dnsdist.conf
> > setLocal('0.0.0.0')
> > newServer{address="192.168.3.3:5353 <http://192.168.3.3:5353/>", qps=10,
> > order=1}
> > newServer{address="192.168.3.4", qps=10, order=2}
> > setServerPolicy(firstAvailable)
> > getServer(0):setUp()
> > getServer(1):setUp()
> > I used DNSDist via systemd service. When named in first server go to
> > down and I run a "dig @192.168.3.3 <http://192.168.3.3/> myzone.com
> > <http://myzone.com/>". Query zone has been failed.I hope it can return a
> > successful query by get it in second server: "192.168.3.4".
> > How could I config in this case without set first server to "down"?
>
> don't use "setUp()", this will force dnsdist to treat this server as UP,
> even if it isn't. Instead, use setAuto() or just remove these lines,
> auto is the default. This will probe the server and automatically switch
> to the next server when the first one goes down.
>
>
> > A minor question: Could I add comments to /etc/dnsdist/dnsdist.conf file?
>
> yes, just start them with a double hyphen. The dnsdist.conf file is lua
> code.
>
> -- example comment
>
> Best regards
> Oli
> _______________________________________________
> Pdns-users mailing list
> Pdns-users at mailman.powerdns.com
> https://mailman.powerdns.com/mailman/listinfo/pdns-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20161125/58b8896f/attachment.html>
More information about the Pdns-users
mailing list