Hello, bind-dyndb-ldap 10.0 alpha 1 is available for testing (finally).
AFAIK it implements all the critical functionality for FreeIPA 4.4, namely RecordGenerator & default TTL support necessary for FreeIPA DNS locations. Limitations =========== BIND has to be reloaded ("rndc reload" at least) after each change in server's config or zone's default TTL. In case of FreeIPA it means that server-mod command which touches server's DNS location has to be followed by "rndc reload" on the affected replica. Outlook ======= I'm looking for a solution for quite a while now but it is an asynchronous parallel event hell. We will probably end up with big hammer like "reconnect to LDAP and re-parse everything". Most likely it will be error prone and racy (think about DNS updates in the middle of re-synchronization) but any fine-grained approaches seem to be even more fragile and even racier. Yuck. Implemented designs =================== - https://fedorahosted.org/bind-dyndb-ldap/wiki/Design/RecordGenerator - https://fedorahosted.org/bind-dyndb-ldap/wiki/Design/PerServerConfigInLDAP Fixed tickets ============= - https://fedorahosted.org/bind-dyndb-ldap/ticket/126 - https://fedorahosted.org/bind-dyndb-ldap/ticket/162 - https://fedorahosted.org/bind-dyndb-ldap/ticket/70 - https://fedorahosted.org/bind-dyndb-ldap/ticket/164 - https://fedorahosted.org/bind-dyndb-ldap/ticket/165 - https://fedorahosted.org/bind-dyndb-ldap/ticket/146 COPR packages ============= https://copr.fedorainfracloud.org/coprs/pspacek/bind-dyndb-ldap/build/339004/ SRPM ==== https://pspacek.fedorapeople.org/bind-dyndb-ldap/bind-dyndb-ldap-10.0-0.1alpha.fc23.src.rpm Git branch ========== https://github.com/pspacek/bind-dyndb-ldap/tree/server_config_in_ldap4 Git commit ========== 6722382b2344fd5acd6ba9fa858c139c16e3de99 Enjoy. -- Petr^2 Spacek -- Manage your subscription for the Freeipa-devel mailing list: https://www.redhat.com/mailman/listinfo/freeipa-devel Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code