Jochen Hein via FreeIPA-users <freeipa-users@lists.fedorahosted.org> writes:
> Randy Morgan via FreeIPA-users <freeipa-users@lists.fedorahosted.org> > writes: > > [BIND as slave on IPA DNS masters] > >> Has anyone set this up before and if so, do you have a sample config >> that I could look at to gain a better understanding of what is needed >> here? > > I'm running a pair of IPA servers with a single DNS slave. There's one > catch: you must select one IPA master where you get your zone from. > Each IPA master has it's own SOA record in the zone - otherwise you > would get errors due to lower SOA... You'll miss another thing as well: you clients using the BIND slave can't update their DNS records dynamically. You could probably run bind-dyndb-ldap on your slave and replicate with LDAP or access IPA's LDAP. But then it seems easier to just run a replica... Jochen -- This space is intentionally left blank. _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
