[Freeipa-users] FreeIPA DNS Module (named.conf)
Petr Spacek
pspacek at redhat.com
Mon May 16 14:21:17 UTC 2016
On 16.5.2016 15:33, Martin Kosek wrote:
> On 05/16/2016 02:03 PM, Günther J. Niederwimmer wrote:
>> Hello,
>>
>> I have a question about the named.conf, is it possible to change the
>> named.conf, to mace ACL or views, or is named.conf overwritten from freeipa-
>> module ?
>>
>
> Hello,
>
> FreeIPA indeed replaces default named.conf during installation and then later
> extends it when updates are needed. So it may not be too safe adding your own
> changes there and turning it into shared DNS with FreeIPA (though it should
> work if done after installation, Petr Spacek will know better).
>
> As for DNS Views, see
> https://fedorahosted.org/freeipa/ticket/2802
> for information.
I will add few details:
You can define views manually in named.conf. Then the DNS zones defined in IPA
will show up in the view which contains "dynamic-db" definition created by IPA.
In other words, you can use IPA to manage single view and do everything else
manually in named.conf.
named.conf can be overwritten by IPA from time to time, so make backups often :-)
We would like to get rid of this behavior but
https://fedorahosted.org/freeipa/ticket/5858
suggests that it is not a priority for the next release.
Of course, helping hands are more than welcome! :-)
--
Petr^2 Spacek
More information about the Freeipa-users
mailing list