Page MenuHomePhabricator
Create Task
Maniphest T64887

No reverse DNS entries for public IPs
Closed, DuplicatePublic
Actions

Description

Host names added with [[wikitech:Special:NovaAddress]] generate forward DNS entries that resolve for example tools-login.wmflabs.org to 208.80.155.130, but the reverse DNS entry for 208.80.155.130 = 130.155.80.208.in-addr.arpa doesn't exist.

Apparently, at the moment forward DNS is handled by labs-ns0 (virt0) and labs-ns1 (virt1000) that run pdns backed by LDAP. http://www.linuxnetworks.de/doc/index.php/PowerDNS_LDAP_Backend/Example#Reverse_lookups has some documentation for that use case.

Version: unspecified
Severity: enhancement

Details

Reference
bz62887

Event Timeline

bzimport raised the priority of this task from to Low.Nov 22 2014, 3:06 AM
bzimport added a project: Cloud-VPS.
bzimport set Reference to bz62887.
bzimport added a subscriber: Unknown Object (MLST).
scfc created this task.Mar 20 2014, 7:18 PM
gerritbot added a comment.Mar 27 2014, 5:55 PM

Change 121416 had a related patch set uploaded by Tim Landscheidt:
Add temporary PTR record for mail.tools.wmflabs.org

https://gerrit.wikimedia.org/r/121416

gerritbot added a comment.Mar 28 2014, 4:25 PM

Change 121416 merged by coren:
Add temporary PTR record for mail.tools.wmflabs.org

https://gerrit.wikimedia.org/r/121416

scfc added a comment.Mar 31 2014, 9:06 PM

RFC 2317 (cf. http://www.rfc-editor.org/rfc/rfc2317.txt) describes a procedure to delegate less than a class C by using CNAMEs:

[...]
129 CNAME 129.128/26.2.0.192.in-addr.arpa.
130 CNAME 130.128/26.2.0.192.in-addr.arpa.
131 CNAME 131.128/26.2.0.192.in-addr.arpa.
[...]

This looks promising; put CNAMEs for 208.80.155.128/25 in templates/155.80.208.in-addr.arpa that point to labs-ns0, and generate the PTR records on labs-ns0 in Extension:OpenStackManager. I had feared that we would need a more fragile approach (if Labs wouldn't get a complete /24 of public IPs :-)).

scfc added a comment.Apr 8 2014, 8:51 PM
  • Bug 48539 has been marked as a duplicate of this bug. ***
Aklapper added a project: Cloud-Services.Apr 29 2015, 12:18 PM
scfc closed this task as a duplicate of T104521: Support reverse dns for public labs IPs.Jul 2 2015, 1:38 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL