Hi Oli, Thank you for the quick reply.
*With Issue 1:* I'm using Redhat 7.2. Here is my result from DNSDist version: [root@my001 ~]# dnsdist --version dnsdist 1.0.0 [root@my001 ~]# cat /proc/version Linux version 3.10.0-327.36.3.el7.x86_64 (mockbu...@x86-037.build.eng. bos.redhat.com) (gcc version 4.8.5 20150623 (Red Hat 4.8.5-4) (GCC) ) I don't know exactly problem. I had used DNSDist rpm from CentOS in Redhat 7 machine before. Then I tried download another DNSDist from other website: http://dev.racf.bnl.gov/yum/snapshots/rhel7/epel7-x86_64/d/. New rpm worked with makeKey(). It return encypt result. I find in website: https://repo.powerdns.com/centos/x86_64/6Server/ only have rpms for el6. Can you send me a website for download manually DNSDist rpm official for Redhat 7? * Before I got issue:* dnsdist-1.0.0-1pdns.el7.x86_64.rpm * All rpms in my current machince:* dnsdist-1.0.0-1.el7.x86_64.rpm libsodium-1.0.5-1.el7.x86_64.rpm luajit-2.0.4-3.el7.x86_64.rpm protobuf-2.5.0-7.el7.x86_64.rpm libedit-3.0-12.20121213cvs.el7.x86_64.rpm *With Issue 2:* With do not force setUp(). My downstream is always down. setAuto() make downstream down too. *Here is my systemctl status dnsdist:* systemd: Starting DNS Loadbalancer... dnsdist: Read configuration from '/etc/dnsdist/dnsdist.conf' dnsdist: Added downstream server 192.168.3.3:5353 dnsdist: Added downstream server 192.168.3.4:53 dnsdist: Listening on 0.0.0.0:53 dnsdist: dnsdist 1.0.0 comes with ABSOLUTELY NO WARRANTY. This is free software, and you are welcome to redistribute it according to the terms of the GPL version 2 dnsdist: ACL allowing queries from: 127.0.0.0/8, 10.0.0.0/8, 100.64.0.0/10, 169.254.0.0/16, 192.168.0.0/16, 172.16.0.0/12, ::1/128, fc00::/7, fe80::/10 dnsdist: Accepting control connections on 0.0.0.0:5199 dnsdist: Backend 192.168.3.3:5353 responded to health check with ServFail dnsdist: Marking downstream 192.168.3.3:5353 as 'down' dnsdist: Backend 192.168.3.4:53 responded to health check with ServFail dnsdist: Marking downstream 192.168.3.4:53 as 'down' systemd: Started DNS Loadbalancer. dnsdist: Backend 192.168.3.3:5353 responded to health check with ServFail dnsdist: Backend 192.168.3.4:53 responded to health check with ServFail *My "/etc/dnsdist/dnsdist.conf":* setKey("TS1F3DSNUTehZBv8bpLD/oph9TkwJw+MOwgQEePT4io=") controlSocket("0.0.0.0") setLocal('0.0.0.0') newServer{address="192.168.3.3:5353", qps=10, order=1} newServer{address="192.168.3.4", qps=10, order=2} setServerPolicy(firstAvailable) setVerboseHealthChecks(true) *I opened port 53 in two machine. Here is my port in "192.168.3.3":* ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:53 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5353 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:5353 Am I missing anything else, Oli? Such as: rpms, port, config... . How can I make it "up" as example? Beside that, I tried used log file: addAction(AllRule(), LogAction("dnsdist.log", false)) but it return an error: dnsdist[17049]: Fatal error: Exception thrown by a callback function called by Lua Do you know this error? Best regards, Thao Nguyen 2016-11-25 1:18 GMT+07:00 Oli Schacher <oli.schac...@switch.ch>: > Hi > > > Am 24.11.16 um 18:20 schrieb nguyen van: > > > I'm using Redhat 7. I'm a newbie with DNSDist. I tried to config as > > README.md but I got some issue. Can you help me? > > Issue 1. I tried to makeKey but it always return plaintext: > >> makeKey() > > setKey("plaintext") > > > > Here is list rpm in my system: > > dnsdist-1.0.0-1pdns.el7.x86_64.rpm > > libedit-3.0-12.20121213cvs.el7.x86_64.rpm > > libsodium-1.0.5-1.el7.x86_64.rpm > > And I also added "bind "^R" em-inc-search-prev" by command: echo "bind > > "^R" em-inc-search-prev" > ~/.editrc. But It still return "plaintext". > > Does 'dnsdist --version' tell you if libsodium is found at all? For me > it shows: > dnsdist --version > dnsdist 0.0.1306g98883b8 (Lua 5.1) > Enabled features: dnscrypt libsodium protobuf re2 systemd > > Apart from a different dnsdist version I have the same versions, and it > works on centos 7.1: > rpm -qa libsodium libedit > libedit-3.0-12.20121213cvs.el7.x86_64 > libsodium-1.0.5-1.el7.x86_64 > > > > > Issue 2: My "dnsdist" server have both "dnsdist" and "named" so I open > > and use another port for named. > > My /etc/dnsdist/dnsdist.conf > > setLocal('0.0.0.0') > > newServer{address="192.168.3.3:5353 <http://192.168.3.3:5353/>", qps=10, > > order=1} > > newServer{address="192.168.3.4", qps=10, order=2} > > setServerPolicy(firstAvailable) > > getServer(0):setUp() > > getServer(1):setUp() > > I used DNSDist via systemd service. When named in first server go to > > down and I run a "dig @192.168.3.3 <http://192.168.3.3/> myzone.com > > <http://myzone.com/>". Query zone has been failed.I hope it can return a > > successful query by get it in second server: "192.168.3.4". > > How could I config in this case without set first server to "down"? > > don't use "setUp()", this will force dnsdist to treat this server as UP, > even if it isn't. Instead, use setAuto() or just remove these lines, > auto is the default. This will probe the server and automatically switch > to the next server when the first one goes down. > > > > A minor question: Could I add comments to /etc/dnsdist/dnsdist.conf file? > > yes, just start them with a double hyphen. The dnsdist.conf file is lua > code. > > -- example comment > > Best regards > Oli > _______________________________________________ > Pdns-users mailing list > Pdns-users@mailman.powerdns.com > https://mailman.powerdns.com/mailman/listinfo/pdns-users >
_______________________________________________ Pdns-users mailing list Pdns-users@mailman.powerdns.com https://mailman.powerdns.com/mailman/listinfo/pdns-users
