[Pdns-users] PDNS repos request
Alex Pavlov
admin at livas.lv
Thu Oct 5 18:36:19 UTC 2023
Thanks Peter,
As the ready for deployment DEB files all deleted, I have now only one way of recompiling binaries from sources.
I'm not telling that it is not doable, but 10 seconds install process with "dpkg -i..." now turns in to much longer process for me.
As the compiling already thrown some dependency libraries errors of mismatching versions... one of them h2o with libssl for enabling DoH and DoT in DNSDIST (in the builder.sh that you described below, as I need to add DoH & DoT). I don't know why those errors there and why libraries were replaced some years ago.
In genera need to say that the idea is not to have old Ubuntu and old PDNS releases in production, but rather use it as step-by-step version updating DNSDIST 1.4->1.5->1.6->1.7->1.8 and same with PDNS from 4.2.3->4.3.2->up to latest stable.
Every version jump requires sometimes adjust the conf file or MySQL tables (backend for PDNS-AUTH), as per Documented guides (version upgrade guides).
And here is one update I already moved to DNSDIST 1.5.2 with DoH and DoT enabled.
Noted one strange behavior.
After generated certs and keys with CertBot , added the line in dnsdist.conf like this:
addDOHLocal('IPaddress x.x.x.x, {'/etc/ssl/certs/site1.com.pem', '/etc/ssl/certs/site2.com.pem'}, {'/etc/ssl/private/site1.com.key', '/etc/ssl/private/site2.com.key'})
As seen on config I have more than one domains on one DNS server IP: site1.com and site2.com
So generated pairs of cert+key for ns.site1.com and for ns.site2.com.
All seems working and answering on https requests, but sometimes wrong...
So when checking for example https://ns.site1.com it gives me cert with ns.site2.com name.
But sometimes gives a correct cert for ns.site1 or ns.site2...
Is it fixed on newer DNSDIST versions after 1.5.2 ? Or maybe my config is wrong ?
Regards,
Alex.
-----Original Message-----
From: Pdns-users <pdns-users-bounces at mailman.powerdns.com> On Behalf Of Peter van Dijk via Pdns-users
Sent: Thursday, October 05, 2023 6:46 PM
To: All about using and deploying powerdns <pdns-users at mailman.powerdns.com>
Cc: Peter van Dijk <peter.van.dijk at powerdns.com>
Subject: Re: [Pdns-users] PDNS repos request
On Tue, 2023-10-03 at 20:38 +0300, Alex Pavlov via Pdns-users wrote:
> Hello To all PDNS admins,
>
> Recently the older PDNS repos were deleted from official PDNS Repo
> website.
> The distros for Ubuntu 16.x (Xenial) and 18.x (Bionic) were wiped out
> without any link to “archives” or “old releases”.
As indicated by another reply in this thread, yes, those releases are EOL, and thus we do not publish packages for them.
It's easy to rebuild these packages for yourself if you really need them:
1. clone our git repo (https://github.com/PowerDNS/pdns)
2. check out the version you want
3. update submodules (git submodule update --init --recursive) 4. run builder/build.sh to see what arguments it supports 5. then run builder/build.sh with the arguments you want (for example, builder/build.sh -m recursor ubuntu-bionic)
Kind regards,
--
Peter van Dijk
PowerDNS.com B.V. - https://www.powerdns.com/ _______________________________________________
Pdns-users mailing list
Pdns-users at mailman.powerdns.com
https://mailman.powerdns.com/mailman/listinfo/pdns-users
More information about the Pdns-users
mailing list