Hello,
My FreeIPA server have two IP addresses. It registers itself with the internal and the external addresses. There’s a way to only register the IPs from the internal interfaces?
usually those ip addresses are tied to specific network interfaces (eth0, ens192, tun0, whatever). You can tell sssd to use only those interfaces to register its dyndns (details in man sssd-ipa, look for dyndns_iface directive)
dyndns_iface (string)
Optional. Applicable only when dyndns_update is true. Choose the
interface or a list of interfaces whose IP addresses should be used
for dynamic DNS updates. Special value “*” implies that IPs from
all interfaces should be used.
NOTE: While it is still possible to use the old ipa_dyndns_iface
option, users should migrate to using dyndns_iface in their config
file.
Default: Use the IP addresses of the interface which is used for
IPA LDAP connection
Example: dyndns_iface = em1, vnet1, vnet2
Regards,
Natxo