![(please configure the [header_logo] section in trac.ini)](/chrome/site/your_project_logo.png){kind=logo}
Opened 3 weeks ago
Last modified 3 weeks ago
#705 accepted enhancement
Set up a backup recursive DNS externally
| Reported by: | maia | Owned by: | maia |
|---|---|---|---|
| Priority: | critical | Milestone: | |
| Component: | Diplomacy | Keywords: | |
| Cc: |
Description
Within the space, we run a weird combined authoritative-recursive DNS off of FreeIPA, where clients registered via DHCP resolves under {core,int}.devhack.net and the DNS server is also used by the rest of the space as its recursive resolver. When FreeIPA is down, we don't get DNS anymore, which in turn makes fixing FreeIPA harder (e.g., during the Juniper switch cutover).
We should probably set up a machine elsewhere to 1) make available as a recursive resolver and 2) is able to zone transfer from FreeIPA so that it actually knows what the internal names resolve to. Ideally everything needed to spin up that machine goes into https://git.devhack.net/devhack/core-infra.
Change History (2)
comment:1 by , 3 weeks ago
| Owner: | changed from to |
|---|---|
| Status: | new → accepted |
comment:2 by , 3 weeks ago
Note:
See TracTickets
for help on using tickets.
I know blue was talking about picking this up