maas-devel team mailing list archive

Thread
Date

Re: MAAS managed DNS

To: Raphaël Badin <raphael.badin@xxxxxxxxxxxxx>
From: Gavin Panella <gavin.panella@xxxxxxxxxxxxx>
Date: Thu, 19 Jul 2012 14:29:37 +0100
Cc: maas-devel@xxxxxxxxxxxxxxxxxxx, Robert Collins <robert.collins@xxxxxxxxxxxxx>
In-reply-to: <5007BA88.8080804@canonical.com>
Sender: gavinpanella@xxxxxxxxx

On 19 July 2012 08:43, Raphaël Badin <raphael.badin@xxxxxxxxxxxxx> wrote:
...
> And that also doesn't solve the fact that the DNS server managed by MAAS
> will be authoritative for more than what's strictly necessary but I confess
> I don't see how this particular problem can be solved.  (In the example
> mentioned above, the ISP's DNS server is still authoritative for the entire
> 206.126.7.0/24 network.)

It's not a problem unless those DNS servers are also used as
forwarding/resolving servers for the MAAS nodes too. For a
non-forwarding server, only those zones (or part-zones) for which it
is authoritative will be delegated to it; it simply won't be asked for
things for which it hasn't been granted authority.

However, if it's used as a forwarding/resolving server (i.e. referred
to in resolv.conf on nodes), then it'll freely answer as authoritative
for anything that it believes it is authoritative for, even for TLDs
if you configure it thus.

References

MAAS managed DNS
From: Raphaël Badin, 2012-07-18
Re: MAAS managed DNS
From: Robert Collins, 2012-07-19
Re: MAAS managed DNS
From: Julian Edwards, 2012-07-19
Re: MAAS managed DNS
From: Raphaël Badin, 2012-07-19