Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add datasource of SOA type records #274

Open
1 task done
uanid opened this issue Mar 12, 2023 · 1 comment
Open
1 task done

Add datasource of SOA type records #274

uanid opened this issue Mar 12, 2023 · 1 comment
Labels
enhancement

Comments

@uanid
Copy link

uanid commented Mar 12, 2023

Terraform CLI and Provider Versions

Terraform v1.2.9
on darwin_amd64
+ provider registry.terraform.io/hashicorp/dns v3.2.4

Use Cases or Problem Statement

The TTL of SOA record means NX_DOMAIN and NO_DATA's cache time.

Let's tell about one scenario, that register or delete domains dynamically,
A bunch of servers lookup domains in rapidly and periodically.

If the TTL of SOA is high like below picture, the servers are failed long times cause NX_DOMAINS time is too high.

image

The record means when NX_DOMAIN respond, cache it 30 hours

Proposal

I'm manage 110 hosted zones, among them 80 zones are dynamically managed.

I want read and update SOA record by dns soa record datasource.

This proposal add new datasource dns_soa_record_set

Input

data "dns_soa_record_set" "amazon" {
  host = "amazon.com"
}

Output

mname: dns-external-master.amazon.com. 
rname: root.amazon.com.
serial: 2010167466
refresh: 180
retry: 60
expire: 3024000
ttl: 60
raw: dns-external-master.amazon.com. root.amazon.com. 2010167466 180 60 3024000 60

How much impact is this issue causing?

Low

Additional Information

No response

Code of Conduct

  • I agree to follow this project's Code of Conduct
@cunneen
Copy link

cunneen commented Dec 5, 2024

The module I just published will let you do exactly this (i.e. get the SOA record for amazon.com). It doesn't support normal dns-wire-format messages though, so you need to query a DNS server that provides a DNS-over-HTTPS JSON API (e.g. like that provided by Google, Cloudflare, Alibaba, NextDNS etc)

Example:

  • Use Cloudflare to lookup Amazon's SOA record

    module "http-json" {
  source             = "cunneen/http-json/dns"
  name               = "amazon.com"
  type               = "SOA"
  endpoint           = "https://cloudflare-dns.com/dns-query"
  headers = {
    accept = "application/dns-json"
  }
}

    Response:

    amazon_SOA_records = {
  "dns_response" = {
    "AD" = false
    "Answer" = [
      {
        "TTL" = 900
        "data" = "dns-external-master.amazon.com. hostmaster.amazon.com. 2010192157 180 60 604800 900"
        "name" = "amazon.com"
        "type" = 6
      },
    ]
    "CD" = false
    "Question" = [
      {
        "name" = "amazon.com"
        "type" = 6
      },
    ]
    "RA" = true
    "RD" = true
    "Status" = 0
    "TC" = false
  }
}

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@cunneen @uanid