Hi,
I have completed setup of FreeIPA on 2 nodes: master + replica Both servers are configured in network 192.168.100.0/24.
For both nodes I have defined a DNS forwarder to 192.168.1.101; this is my main DNS server running Pi-hole (Linux network-level advertisement and internet tracker blocking application).
Now I try to add a Linux client with this IP 192.168.1.47 in the WebUI and I get this error message: The host was added but the DNS update failed with: DNS reverse zone 168.192.in-addr.arpa. for IP address 192.168.1.47 is not managed by this server
How can I solve this issue w/o shutting down Pi-hole? Is the concept of using Pi-hole as a DNS forwarder suboptimal?
Please advise.
THX
Have you created a reverse zone that encompasses that IP range?
No, I didn't create a reverse zone.
I'm not sure if the definition of DNS forwarding in FreeIPA makes sense. Actually I consider to use Pi-hole as single DNS for specific network 192.168.1.0/24 only and forward any requests to FreeIPA.
Would this make sense? And how could I create this reverse zone?
THX
74cmonty via FreeIPA-users wrote:
No, I didn't create a reverse zone.
I'm not sure if the definition of DNS forwarding in FreeIPA makes sense. Actually I consider to use Pi-hole as single DNS for specific network 192.168.1.0/24 only and forward any requests to FreeIPA.
Would this make sense? And how could I create this reverse zone?
I'm assuming here that you have the IPA DNS component installed and configured, you didn't make that part clear. In the UI you can add the reverse zone as 1.168.192.in-addr.arpa.
The forwarder isn't the issue. bind will forward anything that it can't resolve itself to the forwarder(s) to be resolved.
rob
OK.
I created 2 reverse zones: 1.168.192.in-addr.arpa 100.168.192.in-addr.arpa
Then I continued and created a host via WebUI. The host is displayed with correct hostname, however there's an error displayed: The host was added but the DNS update failed with: All nameservers failed to answer the query for DNS reverse zone 47.1.168.192.in-addr.arpa.
What is causing this error?
freeipa-users@lists.fedorahosted.org