Hi all,
I have a running FreeIPA server with DNS and a configured Foreman Smart
Proxy which is able to update my zones.
Now when I create a new host, Foreman create a new PTR record but no A
record. I tried this
https://groups.google.com/forum/#!topic/foreman-users/D9Gh4pz0yiY but
without success.
In the logs from the smart proxy I can see the update of the PTR:
I, [2014-09-14T16:25:19.844605 #25272] INFO – : Requesting credentials
for Kerberos principal FOREMANPROXY/foreman.int@INT using keytab
/etc/foreman-proxy/dns.keytab
D, [2014-09-14T16:25:19.856513 #25272] DEBUG – : Kerberos credential cache
initialised with principal: FOREMANPROXY/foreman.int@INT
D, [2014-09-14T16:25:19.856758 #25272] DEBUG – : running
/usr/bin/nsupdate -g
D, [2014-09-14T16:25:19.859846 #25272] DEBUG – : nsupdate: executed -
server 192.168.0.1
D, [2014-09-14T16:25:19.865914 #25272] DEBUG – : nsupdate: executed -
update add 102.0.16.172.in-addr.arpa. 86400 IN PTR test.int
and in the web ui from freeipa I can see the record but there is no A
record in the "int" zone.
Can anyone help me with this issue?
Thx,
Martin
This definitely looks like an association issue as mentioned in the
post referenced – does your domain really have the 'DNS Proxy' set?
···
On Sun, Sep 14, 2014 at 07:57:13AM -0700, Martin S. wrote:
> Hi all,
>
> I have a running FreeIPA server with DNS and a configured Foreman Smart
> Proxy which is able to update my zones.
> Now when I create a new host, Foreman create a new PTR record but no A
> record. I tried this
> https://groups.google.com/forum/#!topic/foreman-users/D9Gh4pz0yiY but
> without success.
>
> In the logs from the smart proxy I can see the update of the PTR:
>
> I, [2014-09-14T16:25:19.844605 #25272] INFO -- : Requesting credentials
> for Kerberos principal FOREMANPROXY/foreman.int@INT using keytab
> /etc/foreman-proxy/dns.keytab
> D, [2014-09-14T16:25:19.856513 #25272] DEBUG -- : Kerberos credential cache
> initialised with principal: FOREMANPROXY/foreman.int@INT
> D, [2014-09-14T16:25:19.856758 #25272] DEBUG -- : running
> /usr/bin/nsupdate -g
> D, [2014-09-14T16:25:19.859846 #25272] DEBUG -- : nsupdate: executed -
> server 192.168.0.1
> D, [2014-09-14T16:25:19.865914 #25272] DEBUG -- : nsupdate: executed -
> update add 102.0.16.172.in-addr.arpa. 86400 IN PTR test.int
>
> and in the web ui from freeipa I can see the record but there is no A
> record in the "int" zone.
>
> Can anyone help me with this issue?
–
Stephen Benjamin
Red Hat GmbH | http://de.redhat.com/ | Sitz: Grasbrunn
Handelsregister: Amtsgericht München, HRB 153243
Geschäftsführer: Charles Cachera, Michael Cunningham,
Michael O’Neill, Charles Peters
Hi Stephen,
you're right. Shame on me.
I was total sure that I had set the DNS Proxy.
Thx for the hint.
/Martin
···
Am Montag, 15. September 2014 10:35:14 UTC+2 schrieb Stephen Benjamin:
>
> On Sun, Sep 14, 2014 at 07:57:13AM -0700, Martin S. wrote:
> > Hi all,
> >
> > I have a running FreeIPA server with DNS and a configured Foreman Smart
> > Proxy which is able to update my zones.
> > Now when I create a new host, Foreman create a new PTR record but no A
> > record. I tried this
> > https://groups.google.com/forum/#!topic/foreman-users/D9Gh4pz0yiY but
> > without success.
> >
> > In the logs from the smart proxy I can see the update of the PTR:
> >
> > I, [2014-09-14T16:25:19.844605 #25272] INFO -- : Requesting credentials
> > for Kerberos principal FOREMANPROXY/foreman.int@INT using keytab
> > /etc/foreman-proxy/dns.keytab
> > D, [2014-09-14T16:25:19.856513 #25272] DEBUG -- : Kerberos credential
> cache
> > initialised with principal: FOREMANPROXY/foreman.int@INT
> > D, [2014-09-14T16:25:19.856758 #25272] DEBUG -- : running
> > /usr/bin/nsupdate -g
> > D, [2014-09-14T16:25:19.859846 #25272] DEBUG -- : nsupdate: executed -
> > server 192.168.0.1
> > D, [2014-09-14T16:25:19.865914 #25272] DEBUG -- : nsupdate: executed -
> > update add 102.0.16.172.in-addr.arpa. 86400 IN PTR test.int
> >
> > and in the web ui from freeipa I can see the record but there is no A
> > record in the "int" zone.
> >
> > Can anyone help me with this issue?
>
> This definitely looks like an association issue as mentioned in the
> post referenced -- does your domain really have the 'DNS Proxy' set?
>
>
> --
> Stephen Benjamin
>
> ______________________________________________________
> Red Hat GmbH | http://de.redhat.com/ | Sitz: Grasbrunn
> Handelsregister: Amtsgericht München, HRB 153243
> Geschäftsführer: Charles Cachera, Michael Cunningham,
> Michael O'Neill, Charles Peters
>
>
>
