| *** trungnv has joined #openstack-dns | 05:47 | |
| trungnv | I hit a msg "TCP Timeout from" mdns.service received msg from bind9 DNS. thus I cannt create zone success. | 05:48 |
|---|---|---|
| trungnv | I am using train version. | 05:48 |
| trungnv | How I can check this issue? | 05:48 |
| eandersson | trungnv is this a new installation? | 05:49 |
| trungnv | yes eandersson | 05:49 |
| eandersson | I don't think I have seen a TCP timeout, but most likely either a iptables rule blocking, or maybe something missing on the bind side | 05:50 |
| eandersson | What guide did you follow to set Designate up? | 05:50 |
| trungnv | eandersson: https://docs.openstack.org/designate/stein/install/install-ubuntu.html | 05:51 |
| eandersson | trungnv did you configure RabbitMQ? | 05:53 |
| trungnv | when I try telnet to 5354 then got an msg : "Connection closed by foreign host" | 05:53 |
| eandersson | https://docs.openstack.org/designate/train/install/install-ubuntu.html | 05:53 |
| eandersson | The Stein guide is missing the RabbitMQ configuration | 05:53 |
| eandersson | Also use dig to test | 05:55 |
| trungnv | eandersson: sure. I can get zone list | 05:55 |
| eandersson | dig @localhost -p 5354 your-domain.com | 05:55 |
| eandersson | Actually you might need to use the server ip, depending on how mdns is configured. | 05:58 |
| eandersson | e.g. > dig @192.168.88.241 -p 5354 internal.eandersson.net. AXFR | 05:59 |
| eandersson | Maybe make sure you don't have any zombie mdns processes as well using ps aux | grep mdns | 06:02 |
| eandersson | I was running into this myself on master https://bugs.launchpad.net/designate/+bug/1857476 | 06:02 |
| openstack | Launchpad bug 1857476 in Designate "Process not terminating properly after restart" [Undecided,In progress] - Assigned to Erik Olof Gunnar Andersson (eandersson) | 06:02 |
| trungnv | I got " Transfer failed" with dig command | 06:05 |
| eandersson | Interest - any other error message in designate-mdns? | 06:05 |
| trungnv | And I also have a mdns service on system | 06:05 |
| eandersson | Could you maybe paste some logs into http://paste.openstack.org/ | 06:05 |
| trungnv | http://paste.ubuntu.com/p/7CFqrFgpg3/ | 06:07 |
| eandersson | Ah so tcp timeouts are fine | 06:10 |
| eandersson | It's just telnet causing that | 06:10 |
| eandersson | > dig @localhost -p 5354 trungnv-example-3.com. AXFR | 06:11 |
| eandersson | What about this? | 06:11 |
| eandersson | Also, any logs from bind / named? | 06:13 |
| trungnv | eandersson: Bind9 and designate in difference location | 06:16 |
| trungnv | Connection to 127.0.0.1#5354(127.0.0.1) for trungnv-example-3.com. failed: connection refused. | 06:16 |
| trungnv | this is log on mdns | 06:16 |
| eandersson | log from bind to mdns? | 06:16 |
| eandersson | does your pools.yaml reflect that? | 06:17 |
| trungnv | received control channel command 'addzone trungnv-example-7.com { type slave; masters { 192.168.10.20 port 5354;}; file "slave.trungnv-example-7.com.329e75a4-9994-44d7-832b-97e94a0afc11"; };' | 06:17 |
| trungnv | bind9 still received notify from mdns | 06:17 |
| eandersson | Can you paste your pools.yaml ? | 06:18 |
| eandersson | Also, is 192.168.10.20 the ip of designate-mdns ? | 06:18 |
| trungnv | http://paste.ubuntu.com/p/fmtSDVs77c/ | 06:19 |
| trungnv | yes | 06:19 |
| eandersson | Run this designate-manage pool update --delete | 06:20 |
| eandersson | and then restart all of designate | 06:20 |
| eandersson | Oh maybe one issue is that you are using a non standard pool_id | 06:24 |
| eandersson | This requires you to use a tsigkey | 06:24 |
| eandersson | If you remove pool_id: 2a6c66f0-cbfd-4424-97ee-ffd8b3abebfe | 06:24 |
| eandersson | and then re-run designate-manage pool update --delete | 06:24 |
| eandersson | It will probably work | 06:24 |
| eandersson | https://github.com/openstack/designate/blob/master/designate/mdns/handler.py#L192 | 06:25 |
| eandersson | Unless you have default_pool_id set to 2a6c66f0-cbfd-4424-97ee-ffd8b3abebfe in your configuration (designate.conf) of course. | 06:26 |
| trungnv | default_pool_id = 87c9cefb-aa6d-4079-8ffe-d3b0e8dced58 | 06:26 |
| trungnv | in my config | 06:26 |
| eandersson | Yea - try to change that to 2a6c66f0-cbfd-4424-97ee-ffd8b3abebfe | 06:26 |
| eandersson | If you want to use multiple pools (e.g. gold and silver) with different pools you'll need to setup tsigkeys | 06:27 |
| eandersson | https://docs.openstack.org/designate/2.1.0/rest/v2/tsigkeys.html | 06:27 |
| trungnv | eandersson: I want to run designate with multi-tenants, thus this change should be well? | 06:27 |
| trungnv | cool | 06:28 |
| trungnv | thanks | 06:28 |
| trungnv | If this is correct, should we have a update for docs | 06:28 |
| eandersson | Yep | 06:28 |
| eandersson | I don't think many people are using multiple pools | 06:28 |
| trungnv | I want to us desigante for public cloud, thus multiple pools must have. is right? | 06:29 |
| trungnv | each customer with have a pool | 06:29 |
| eandersson | I wouldn't say a must have, but recommended at least. Like if you want internal and external DNS | 06:29 |
| eandersson | I don't think they need their own pool. | 06:30 |
| eandersson | but I guess it's the easiest way | 06:30 |
| trungnv | yes. How many pools is maximum in designate? | 06:31 |
| eandersson | I don't think there is a limit, at least no hard limit. | 06:31 |
| eandersson | mugsie might have some insight since they ran designate in HPE | 06:32 |
| eandersson | I only run designate in a private cloud myself | 06:32 |
| trungnv | should we provide them under public cloud for customer? | 06:32 |
| eandersson | You mean pools? | 06:32 |
| trungnv | yep | 06:32 |
| eandersson | or Designate in general? | 06:32 |
| eandersson | I would probably just have one pool | 06:32 |
| eandersson | and then maybe limit admins to only create domains | 06:33 |
| eandersson | or maybe just allow users to create their own domains | 06:33 |
| trungnv | many customers don't use same pool in their situation | 06:33 |
| eandersson | I see | 06:33 |
| eandersson | Might be worth sending an email to the OpenStack mailing list | 06:34 |
| eandersson | I think mnaser is using Designate to provide DNS | 06:34 |
| eandersson | in their public cloud | 06:34 |
| trungnv | openstack zone create --email dnsmaster@example.com trungnv-example-3.com. --attributes pool_id:87c9cefb-aa6d-4079-8ffe-d3b0e8dced58 | 06:34 |
| trungnv | is this mean attributes don't work correct at the moment? | 06:35 |
| trungnv | Should we use Tsigkey instead of attributes. is right? | 06:35 |
| trungnv | in this command, I want to specific zone for pool_id via attributes --> but still get issue TCP timeout. | 06:36 |
| eandersson | The above should be fine, but you'll need to create a tsigkey for the pool | 06:41 |
| trungnv | yep. I will try righ now | 06:42 |
| trungnv | thank you | 06:42 |
| *** trungnv has quit IRC | 07:27 | |
| *** goldyfruit has quit IRC | 13:37 | |
| *** goldyfruit has joined #openstack-dns | 13:50 | |
| *** frippe75 has joined #openstack-dns | 21:00 | |
| frippe75 | Trying to get designate working on Rocky release. Have mDNS working by doing zonetransfers to my BIND instance. But not figuring out how to create a zone either as slave or master against godaddy. Tried without tsigkeys but not sure how this is done. Any documentation on this topic? | 21:02 |
| frippe75 | Not fully understanding the concept primary/secondary... Configured two set of masters... pointing against godaddy's zone transfer servers via the --masters option to "openstack zone create" | 21:05 |
| frippe75 | Or would I create a separate entry in the pools.yaml?? No wouldn't be multitenant ... | 21:07 |
| *** frippe75 has quit IRC | 21:31 | |
Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!