Menu
▾
▴
ldapdns-users
|
From: Alejandro M. <am...@ge...> - 2005-03-29 16:31:40
Attachments:
dnsq_ns_conosur.0.txt
|
Hi,
i'm using the following data to start using ldapdns/LDAPDNS-2 as
corporate DNS but i can't get it working:
exporting SCHEMA=ldapdns
i see the grant on slapd log, but:
$ dnsq soa conosur.0 192.168.1.2
6 conosur.0:
27 bytes, 1+0+0+0 records, response, authoritative, nxdomain
query: 6 conosur.0
$ dnsq a jaguar.conosur.0 192.168.1.2
1 jaguar.conosur.0:
34 bytes, 1+0+0+0 records, response, authoritative, nxdomain
query: 1 jaguar.conosur.0
the only access rules i have are:
access to attrs=userPassword,sambaLMPassword,sambaNTPassword
by self write
by anonymous auth
by * none
access to *
by * read
# grep . env/*
env/HOSTMASTER:am...@ge...
env/IP:192.168.1.2
env/LDAP_AUTH_NAME:cn=Manager, dc=conosurseguros, dc=cl
env/LDAP_HOST:127.0.0.1
env/ROOT:/etc/opt/ldapdns/ldapdns/root
env/SCHEMA:ldapdns
and env/LDAP_SUFFIX is empty
what am i doing wrong?
slapd log for dnsq ns conosur.0 192.168.5.2 attached
relevant ldif pasted on bottom
Please
Alejandro Mery
---
version: 1
# LDIF Export for: dc=Internal,ou=Services,dc=conosurseguros,dc=cl
# Generated by phpLDAPadmin ( http://phpldapadmin.sourceforge.net/ ) on
March 29, 2005 12:14 pm
# Server: CONOSUR Server (ldap://127.0.0.1)
# Search Scope: sub
# Search Filter: (objectClass=*)
# Total Entries: 3
# Entry 1: dc=Internal,ou=Services,dc=conosurseguros,dc=cl
dn: dc=Internal,ou=Services,dc=conosurseguros,dc=cl
associatedDomain: conosur.0
objectClass: top
objectClass: dNSDomain
objectClass: domainRelatedObject
dc: Internal
aRecord: 192.168.1.2
nSRecord: ns.conosur.0
mXRecord: mail.conosur.0
# Entry 2: dc=ns,dc=Internal,ou=Services,dc=conosurseguros,dc=cl
dn: dc=ns,dc=Internal,ou=Services,dc=conosurseguros,dc=cl
associatedDomain: ns.conosur.0
objectClass: top
objectClass: dNSDomain
objectClass: domainRelatedObject
dc: ns
aRecord: 192.168.1.2
# Entry 3: dc=mail,dc=Internal,ou=Services,dc=conosurseguros,dc=cl
dn: dc=mail,dc=Internal,ou=Services,dc=conosurseguros,dc=cl
associatedDomain: mail.conosur.0
objectClass: top
objectClass: dNSDomain
objectClass: domainRelatedObject
dc: mail
aRecord: 192.168.1.3
# Entry 1: ou=Machines,dc=conosurseguros,dc=cl
dn: ou=Machines,dc=conosurseguros,dc=cl
ou: Machines
objectClass: top
objectClass: organizationalUnit
# Entry 2: dc=ferrari,ou=Machines,dc=conosurseguros,dc=cl
dn: dc=ferrari,ou=Machines,dc=conosurseguros,dc=cl
associatedDomain: ferrari.conosur.0
objectClass: top
objectClass: dNSDomain
objectClass: domainRelatedObject
dc: ferrari
aRecord: 192.168.1.1
# Entry 3: dc=jaguar,ou=Machines,dc=conosurseguros,dc=cl
dn: dc=jaguar,ou=Machines,dc=conosurseguros,dc=cl
associatedDomain: jaguar.conosur.0
objectClass: top
objectClass: dNSDomain
objectClass: domainRelatedObject
dc: jaguar
aRecord: 192.168.1.2
|
|
From: Alejandro M. <am...@ge...> - 2005-03-29 18:25:27
|
Alejandro Mery wrote: > Hi, > i'm using the following data to start using ldapdns/LDAPDNS-2 as > corporate DNS but i can't get it working with LDAP_SUFFIX defined as one of my naming contexts dn it works, how can i make it work for all of them? Alejandro Mery |
|
From: Mrs. B. <mrs...@ni...> - 2005-04-01 01:16:11
|
On Tue, 2005-03-29 at 14:25 -0400, Alejandro Mery wrote: > Alejandro Mery wrote: > > Hi, > > i'm using the following data to start using ldapdns/LDAPDNS-2 as > > corporate DNS but i can't get it working > > with LDAP_SUFFIX defined as one of my naming contexts dn it works, how > can i make it work for all of them? If you can search recursively with ldapsearch then this will work. |
|
From: Alejandro M. <am...@ge...> - 2005-04-01 02:20:56
|
> If you can search recursively with ldapsearch then this will work. ldapsearch with base='' doesn't swim through all namingContexts available. but it does if i specify one namingContext as base. what am i doing wrong? Thanks, Alejandro Mery |
|
From: Mrs. B. <mrs...@ni...> - 2005-04-02 00:22:24
|
On Thu, 2005-03-31 at 22:21 -0400, Alejandro Mery wrote: > > If you can search recursively with ldapsearch then this will work. > > ldapsearch with base='' doesn't swim through all namingContexts > available. but it does if i specify one namingContext as base. > > what am i doing wrong? Consult the LDAP server documentation. if the ldapsearch doesn't work, then there isn't anything LDAPDNS can do to help. |
|
From: Alejandro M. <am...@ge...> - 2005-03-29 19:32:39
|
me again (this time with a decent subject) i have defined conosur.0 zone on dc=Internal,ou=Services,dc=conosurseguros,dc=cl which also house services entries, www, ldap, mail, smtp, etc... but i have the machines on ou=Machines,dc=conosurseguros,dc=cl which belong to conosur.0 zone too. my problem is that Machines are considered zones instead of entries :( dn: dc=jaguar,ou=Machines,dc=conosurseguros,dc=cl associatedDomain: jaguar.conosur.0 dc: jaguar aRecord: 192.168.1.2 objectClass: dNSDomain objectClass: domainRelatedObject objectClass: top dn: dc=Internal,ou=Services,dc=conosurseguros,dc=cl associatedDomain: conosur.0 objectClass: top objectClass: dNSDomain objectClass: domainRelatedObject dc: Internal nSRecord: ns.conosur.0 mXRecord: 10 mail.conosur.0 dn: dc=ldap,dc=Internal,ou=Services,dc=conosurseguros,dc=cl associatedDomain: ldap.conosur.0 objectClass: top objectClass: dNSDomain objectClass: domainRelatedObject dc: ldap aRecord: 192.168.1.2 $ dnsq a jaguar.conosur.0 192.168.1.2 1 jaguar.conosur.0: 117 bytes, 1+1+1+1 records, response, authoritative, noerror query: 1 jaguar.conosur.0 answer: jaguar.conosur.0 86400 SOA ns.conosur.0 amery.geeks.cl 1112117795 10800 7200 604800 86400 authority: jaguar.conosur.0 86400 NS ns.conosur.0 additional: ns.conosur.0 86400 A 192.168.1.2 $ dnsq a ldap.conosur.0 192.168.1.2 1 ldap.conosur.0: 81 bytes, 1+1+1+1 records, response, authoritative, noerror query: 1 ldap.conosur.0 answer: ldap.conosur.0 86400 A 192.168.1.2 authority: ldap.conosur.0 86400 NS ns.conosur.0 additional: ns.conosur.0 86400 A 192.168.1.2 as i understood SCHEMA=ldapdns and SCHEMA=ldapdns-2 the are not recursive, they query a single match for associatedDomain. why is jaguar.conosur.0 a zone instead of just an entry? how can i solve this? Thanks in advance, Alejandro Mery |
|
From: Mrs. B. <mrs...@ni...> - 2005-04-01 01:17:05
|
On Tue, 2005-03-29 at 15:33 -0400, Alejandro Mery wrote: > me again (this time with a decent subject) > > i have defined conosur.0 zone on > dc=Internal,ou=Services,dc=conosurseguros,dc=cl > which also house services entries, www, ldap, mail, smtp, etc... > but i have the machines on ou=Machines,dc=conosurseguros,dc=cl which > belong to conosur.0 zone too. > > my problem is that Machines are considered zones instead of entries :( Don't put associatedDomains for them then. Is there a particular reason you need the BIND-think of zones? |
|
From: Alejandro M. <am...@ge...> - 2005-04-01 02:18:45
|
> Don't put associatedDomains for them then. > > Is there a particular reason you need the BIND-think of zones? i just needed a name for the things that have a SOA :) if i don't use associatedDomains how do i set the name? i have entries which belong to "the thing that have a SOA" below it, and on a totally different branch of the directory. (see the ldif on my first mail) ou=Machines,dc=foo,dc=cl has lot of machines (dc=$machine) which names are $machine.foo.0 foo.0 "thing that needs a SOA" is definied on dc=Internal,ou=Services,dc=foo,dc=cl, with a nSRecord and a mXRecord. and below dc=Interntal,ou=Services,dc=foo,dc=cl there are lot of services (dc=$service) which names are $service.foo.0 i'm highly confused Thanks, Alejandro Mery |
|
From: Mrs. B. <mrs...@ni...> - 2005-04-02 00:21:30
|
On Thu, 2005-03-31 at 22:19 -0400, Alejandro Mery wrote: > > Don't put associatedDomains for them then. > > > > Is there a particular reason you need the BIND-think of zones? > > i just needed a name for the things that have a SOA :) > > if i don't use associatedDomains how do i set the name? you use associatedDomains to the SOA. immediate children don't need it. if you skip a level, LDAPDNS can't search everywhere. > i have entries which belong to "the thing that have a SOA" below it, and > on a totally different branch of the directory. (see the ldif on my > first mail) > > ou=Machines,dc=foo,dc=cl has lot of machines (dc=$machine) which names > are $machine.foo.0 > > foo.0 "thing that needs a SOA" is definied on > dc=Internal,ou=Services,dc=foo,dc=cl, with a nSRecord and a mXRecord. > > and below dc=Interntal,ou=Services,dc=foo,dc=cl there are lot of > services (dc=$service) which names are $service.foo.0 > > i'm highly confused > > Thanks, > Alejandro Mery > > > ------------------------------------------------------- > This SF.net email is sponsored by Demarc: > A global provider of Threat Management Solutions. > Download our HomeAdmin security software for free today! > http://www.demarc.com/info/Sentarus/hamr30 > _______________________________________________ > Ldapdns-users mailing list > Lda...@li... > https://lists.sourceforge.net/lists/listinfo/ldapdns-users |
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X