What am I missing with DNS config?

Support
1

Hi all,

I've been hung up on the DNS portion of creating a VM with oVIRT. I get ERF12-2357
[ProxyAPI::ProxyException]: Unable to set DNS entry
([RestClient::BadRequest]: 400 Bad Request)

I've tried manipulating the settings file to set DNS to false based on a
bug report I found, linking to the RNDC key (permissions readable), making
a custom foreman key in place of the RNDC key and allowing it under
named.conf. I disabled DNS on the proxy but it seems I can't disable DNS
management all together.

Is there something basic I'm not doing? From the proxy log:

D, [2014-07-01T15:35:36.903507 #20098] DEBUG – : nsupdate: executed -
server 127.0.0.1

D, [2014-07-01T15:35:36.921490 #20098] DEBUG – : nsupdate: executed -
update add 144.2.16.172.in-addr.arpa. 86400 IN PTR testing123.sjc.abc.com

D, [2014-07-01T15:35:36.923707 #20098] DEBUG – : nsupdate: errors

Answer:

;; ->>HEADER<<- opcode: UPDATE, status: NOTAUTH, id: 51894

;; flags: qr ra; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0

;; ZONE SECTION:

;16.172.in-addr.arpa. IN SOA

E, [2014-07-01T15:35:36.924075 #20098] ERROR – : Update errors: Answer:

;; ->>HEADER<<- opcode: UPDATE, status: NOTAUTH, id: 51894

;; flags: qr ra; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0

;; ZONE SECTION:

;16.172.in-addr.arpa. IN SOA

D, [2014-07-01T15:35:36.924198 #20098] DEBUG – :
/usr/share/foreman-proxy/bin/…/lib/proxy/dns/nsupdate.rb:81:in `nsupdate'

Thanks,

Morgan

2

> Hi all,
>
> I've been hung up on the DNS portion of creating a VM with oVIRT. I get ERF12-2357
> [ProxyAPI::ProxyException]: Unable to set DNS entry
> ([RestClient::BadRequest]: 400 Bad Request)
>
> I've tried manipulating the settings file to set DNS to false based on a
> bug report I found, linking to the RNDC key (permissions readable), making
> a custom foreman key in place of the RNDC key and allowing it under
> named.conf. I disabled DNS on the proxy but it seems I can't disable DNS
> management all together.
>
sure you can, just double check you removed it from both domain (A records)
and subnets (PTR records).

>
> Is there something basic I'm not doing? From the proxy log:
>
> D, [2014-07-01T15:35:36.903507 #20098] DEBUG – : nsupdate: executed -
> server 127.0.0.1
>
> D, [2014-07-01T15:35:36.921490 #20098] DEBUG – : nsupdate: executed -
> update add 144.2.16.172.in-addr.arpa. 86400 IN PTR testing123.sjc.abc.com
>
> D, [2014-07-01T15:35:36.923707 #20098] DEBUG – : nsupdate: errors
>

look in bind log, you should probably find the reason there.

Ohad

··· On Wed, Jul 2, 2014 at 1:44 AM, Morgan McLean wrote:

Answer:

;; ->>HEADER<<- opcode: UPDATE, status: NOTAUTH, id: 51894

;; flags: qr ra; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0

;; ZONE SECTION:

;16.172.in-addr.arpa. IN SOA

E, [2014-07-01T15:35:36.924075 #20098] ERROR – : Update errors: Answer:

;; ->>HEADER<<- opcode: UPDATE, status: NOTAUTH, id: 51894

;; flags: qr ra; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0

;; ZONE SECTION:

;16.172.in-addr.arpa. IN SOA

D, [2014-07-01T15:35:36.924198 #20098] DEBUG – :
/usr/share/foreman-proxy/bin/…/lib/proxy/dns/nsupdate.rb:81:in `nsupdate’

Thanks,

Morgan


You received this message because you are subscribed to the Google Groups
"Foreman users" group.
To unsubscribe from this group and stop receiving emails from it, send an
email to foreman-users+unsubscribe@googlegroups.com.
To post to this group, send email to foreman-users@googlegroups.com.
Visit this group at http://groups.google.com/group/foreman-users.
For more options, visit https://groups.google.com/d/optout.