[archy@web01 ~]$ dig +short a katello.archyslife.lan @172.31.10.5
[archy@web01 ~]$
The clients are being denied as can be seen by checking the logs in /var/named/data/named.run:
30-Nov-2020 06:36:49.508 client @0x7f0ca41539f0 172.31.10.111#46891 (web01.archyslife.lan): query (cache) 'web01.archyslife.lan/A/IN' denied
This can be resolved by adding a query-policy to the end of the file /etc/named/ipa-options-ext.conf.
[archy@ipa01 ~]$ sudo vim /etc/named/ipa-options-ext.conf
allow-query { any; };
Check your config with named-checkconf to make sure there are no syntax errors.
[archy@ipa01 ~]$ sudo named-checkconf; if [ $? -eq 0 ]; then echo 'all good'; else echo 'mistakes have been made'; fi
If everything is okay, go ahead and restart the services.
[archy@ipa01 ~]$ sudo ipactl restart
Let's try again to check if it's working as expected.
[archy@web01 ~]$ dig +short a katello.archyslife.lan @172.31.10.5
172.31.10.10
The DNS-Queries appear to be working again and the problem should be fixed.
Feel free to comment and / or suggest a topic.
Comments
Post a Comment