Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Updated esdc-dns appliance and first compute node installer to configure recursion forwarders #60

Merged
merged 10 commits into from
Jul 10, 2017
Merged

Updated esdc-dns appliance and first compute node installer to configure recursion forwarders #60

merged 10 commits into from
Jul 10, 2017

Conversation

dn0
Copy link
Member

@dn0 dn0 commented Jul 5, 2017

The recursion forwarders will be configured according to DNS resolvers, which were set during installation.
Added new esdc-mon mdata: org.erigones:recursor_forwarders.

@dn0
Updated esdc-dns appliance and first compute node installer to config…
f3777bd 
…ure recursion forwarders

The recursion forwarders will be configured according to DNS resolvers, which were set during installation.
Added new esdc-mon mdata: `org.erigones:recursor_forwarders`.
@dn0 dn0 added this to the 2.6.0 milestone Jul 5, 2017
@dn0 dn0 self-assigned this Jul 5, 2017
@dn0 dn0 requested a review from YanChii July 5, 2017 13:55
YanChii
YanChii requested changes Jul 9, 2017
View reviewed changes
ansible/roles/pdns-recursor/templates/recursor.conf.j2
@@ -88,6 +88,7 @@ config-dir={{ recursor_config_dir }}
# forward-zones Zones for which we forward queries, comma separated domain=ip pairs
#
# forward-zones=
{% if recursor_forward_zones %}forward-zones={{ recursor_forward_zones | join(',') }}{% endif %}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this line is not needed.
https://doc.powerdns.com/md/recursor/settings/#forward-zones

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yep. Not needed, but does not hurt - just a feature for the pdns ansible role.

ansible/templates/usb/scripts/headnode.sh.j2 Outdated
@@ -191,6 +191,7 @@ function _build_vmmanifest() {
-e "s|@MON_IP@|${MON_IP}|" \
-e "s|@ROOT_AUTHORIZED_KEYS@|${ROOT_AUTHORIZED_KEYS}|" \
-e "s|@PGSQL_PDNS_PASSWORD@|${PGSQL_PDNS_PASSWORD}|" \
-e "s|@PDNS_RECURSOR_FORWARDERS@|.=${DNS_RESOLVERS/,/;}|" \
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We really should set this mdata conditionally. We don't want to flood (default) Google DNS servers by every recursive query in the cloud. By default, our pdns server should take care of all recursive queries by itself (opposite to asking a "smarthost").
Please add (in pseudo code):
if recursors != 8.8.[48].[48]; then set metadata...

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done.

@dn0 dn0 merged commit bc71a91 into v2.6 Jul 10, 2017
@dn0 dn0 deleted the dns_recursion_forwarders branch July 10, 2017 09:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@YanChii YanChii YanChii approved these changes

Assignees

@dn0 dn0

Labels
DNS enhancement INSTALLER SmartOS
Milestone
2.6.0
Development

Successfully merging this pull request may close these issues.
2 participants
@dn0 @YanChii