[Pdns-users] PowerDNS Dynamic Record Generation with LUA script

Frank @ kiwazo.be frank+pdns at tembo.be
Thu May 23 15:23:27 UTC 2024 

Hi Ankit,

Just a few recommendations to start with. First up, PowerDNS server version 4.5.4 is old. Very very very old and no longer supported. I am not saying a particular bug which caused your issue is fixed by now, but I am saying that should upgrade. Really.

Please see https://doc.powerdns.com/authoritative/appendices/EOL.html and upgrade to a recent version (unless you have a good reason not to, I recommend upgrading to the latest, which is 4.9.0.

Second, it seems you're mixing both PDNS Auth and PDNS Recursor? Please don't do this, it's not the correct way of doing things.

We might want to take a step back here and look at the bigger picture. What is it you're trying to accomplish? Provide PTR records for the /48 ipv6 block? Then that should be served on (at least 2) pdns auth servers, without any pdns rec being involved. Because whatever we might suggest to make this work, would most likely not the result you want to achieve. I am not that familiar with APNIC's requirements for *.ipv6.arpa zones, but if they are akin to RIPE's tests, you need a proper setup and not a "hack" which happens to work.

Regards,

Frank




Frank Louwers
PowerDNS Certified Consultant @ Kiwazo.be





> On 23 May 2024, at 07:50, Ankit Rathod via Pdns-users <pdns-users at mailman.powerdns.com> wrote:
> 
> Dear Team,
> 
> I am working on powerdns project.
> I have set up PowerDNS Server and recursor @ one of ISP, the Issue I am facing in Generating IPV6 Reverse records.
> 
> I need your Valuable help to pinpoint my mistake.
> 
> I am using Pdns Server version 4.5.4 with gsqlite3 backend and Recursor version is 4.5.11
> 
> I can successfully get a Static Reverse entry made in a zone file but unable to get a Dynamic entry Answer (LUA ).
> 
> following are zone file for your ready reference,
> IPv6 pool: 2001:df1:cbc0::/48
> ========================================
> 
> root at ns1-RTEL-in:~# pdnsutil list-zone 0.c.b.c.1.f.d.0.1.0.0.2.ip6.arpa
> Apr 20 13:57:49 gsqlite3: connection to '/var/lib/powerdns/pdns.sqlite3' successful
> Apr 20 13:57:49 gsqlite3: connection to '/var/lib/powerdns/pdns.sqlite3' successful
> Apr 20 13:57:49 [bindbackend] Parsing 0 domain(s), will report when done
> Apr 20 13:57:49 [bindbackend] Done parsing domains, 0 rejected, 0 new, 0 removed
> $ORIGIN .
> *       3600    IN      LUA     PTR "createReverse6('%33%.static6.rtel.in <http://static6.rtel.in/>')"
> 0.c.b.c.1.f.d.0.1.0.0.2.ip6.arpa        3600    IN      NS      ns1.rtel.in <http://ns1.rtel.in/>.
> 0.c.b.c.1.f.d.0.1.0.0.2.ip6.arpa        3600    IN      NS      ns2.rtel.in <http://ns2.rtel.in/>.
> 0.c.b.c.1.f.d.0.1.0.0.2.ip6.arpa        3600    IN      SOA     ns1.rtel.in <http://ns1.rtel.in/> info.rtel.in <http://info.rtel.in/> 2023062314 10800 3600 604800 3600
> 1.1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.4.0.0.0.c.b.c.1.f.d.0.1.0.0.2.ip6.arpa        3600    IN      PTR     ns1.rtel.in <http://ns1.rtel.in/>
> 1.1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.4.0.0.0.c.b.c.1.f.d.0.1.0.0.2.ip6.arpa        3600    IN      PTR     ns2.rtel.in <http://ns2.rtel.in/>
> 8.8.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.4.0.0.0.c.b.c.1.f.d.0.1.0.0.2.ip6.arpa        3600    IN      PTR     ankit.rtel.in <http://ankit.rtel.in/>
> ===============================================================================
> NSLookUP results
> ===============================================================================
> root at ns1-RTEL-in:~# nslookup 2001:df1:cbc0:40::11  ::1
> 1.1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.4.0.0.0.c.b.c.1.f.d.0.1.0.0.2.ip6.arpa        name = ns1.rtel.in <http://ns1.rtel.in/>.
> 
> Authoritative answers can be found from:
> 
> root at ns1-RTEL-in:~# nslookup 2001:df1:cbc0:40::8  ::1
> ** server can't find 8.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.4.0.0.0.c.b.c.1.f.d.0.1.0.0.2.ip6.arpa: NXDOMAIN
> 
> ================================================================
> recursor.conf  file data
> 
> forward-zones+=0.c.b.c.1.f.d.0.1.0.0.2.ip6.arpa=127.0.0.1:5300 <http://127.0.0.1:5300/>
> forward-zones-recurse+=0.c.b.c.1.f.d.0.1.0.0.2.ip6.arpa=127.0.0.1:5300 <http://127.0.0.1:5300/>
> 
> 
> Kindly help me with this. I have also attached the whole pdns.conf and recursor.conf file for your reference.
> 
> Thanks in Advance.
> <pdns.conf><recursor.conf>_______________________________________________
> Pdns-users mailing list
> Pdns-users at mailman.powerdns.com
> https://mailman.powerdns.com/mailman/listinfo/pdns-users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/pdns-users/attachments/20240523/61054019/attachment.htm>

More information about the Pdns-users mailing list