[Freeipa-users] ipaserver.ipa.1017.abc can not serve DNS for 1017.abc

Alan Latteri via FreeIPA-users Tue, 01 Aug 2023 14:25:15 -0700

Hello,

If I setup FreeIPA with hostname ipaserver.ipa.1017.abc, in domain 
ipa.example.com and realm IPA.1017.ABC.  Adding zone example.com and adding 
hosts, DNS will not be served for that domain.   But any other sub domain works 
fine.


[root@ipa01 ~]# dig wiki.1017.abc 10.55.2.2

; <<>> DiG 9.16.23-RH <<>> wiki.1017.abc 10.55.2.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 65453
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 98ad25b62ae02fbf0100000064c976f98f0bb284cff55564 (good)
;; QUESTION SECTION:
;wiki.1017.abc.                 IN      A

;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Tue Aug 01 14:19:53 PDT 2023
;; MSG SIZE  rcvd: 70

;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17316
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 98ad25b62ae02fbf0100000064c976f98f0bb284cff55564 (good)
;; QUESTION SECTION:
;10.55.2.2.                     IN      A

;; AUTHORITY SECTION:
.                       10383   IN      SOA     a.root-servers.net. 
nstld.verisign-grs.com. 2023080101 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Tue Aug 01 14:19:53 PDT 2023
;; MSG SIZE  rcvd: 141


SUBDOMAIN:
[root@ipa01 ~]# dig wiki.subdomain.1017.abc 10.55.2.2

; <<>> DiG 9.16.23-RH <<>> wiki.subdomain.1017.abc 10.55.2.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5330
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 9899110f224ed1b50100000064c977e5b4a104105f8ddb27 (good)
;; QUESTION SECTION:
;wiki.subdomain.1017.abc.       IN      A

;; ANSWER SECTION:
wiki.subdomain.1017.abc. 86400  IN      A       10.55.253.2

;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Tue Aug 01 14:23:49 PDT 2023
;; MSG SIZE  rcvd: 96

;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45756
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 9899110f224ed1b50100000064c977e5b4a104105f8ddb27 (good)
;; QUESTION SECTION:
;10.55.2.2.                     IN      A

;; AUTHORITY SECTION:
.                       10786   IN      SOA     a.root-servers.net. 
nstld.verisign-grs.com. 2023080101 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Tue Aug 01 14:23:49 PDT 2023
;; MSG SIZE  rcvd: 141
_______________________________________________
FreeIPA-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: 
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedorahosted.org/archives/list/[email protected]
Do not reply to spam, report it: 
https://pagure.io/fedora-infrastructure/new_issue

[Freeipa-users] ipaserver.ipa.1017.abc can not serve DNS for 1017.abc

Reply via email to