Nikolay Sukhno via FreeIPA-users wrote: > FreeIPA 4.9.6 One Server. > I made a big mistake - accidentally deleted NS record from my dns zone and > reload named. > Zone configured via dyndb > > Now the dns server is not starting - zone company.local/IN: has no NS records > If I try to add ns record from command line > ipa dnsrecord-add gisw.ru @ --ns-hostname=vm-it-ipa1.company.local. > ipa: ERROR: All nameservers failed to answer the query > vm-it-ipa1.company.local.ru. IN A: Server 127.0.0.1 UDP port 53 answered > SERVFAIL > > I'm stumped....
I'd try adding --force to the dnsrecord-add command. If that fails below is what the NS record on my vanilla, standalone test deployment looks like. You could try customizing this and using ldapadd to add the entry to see if that will bring the server back up. rob dn: idnsname=example.test.,cn=dns,dc=example,dc=test idnsname: @ nsrecord: ipa.example.test. idnsAllowDynUpdate: TRUE idnsAllowQuery: any; idnsAllowTransfer: none; idnsSOAexpire: 1209600 idnsSOAmName: ipa.example.test. idnsSOAminimum: 3600 idnsSOArName: hostmaster.example.test. idnsSOArefresh: 3600 idnsSOAretry: 900 idnsSOAserial: 1643518803 idnsUpdatePolicy: grant EXAMPLE.TEST krb5-self * A; grant EXAMPLE.TEST krb5-self * AAAA; grant EXAMPLE.TEST krb5-self * SSHFP; idnsZoneActive: TRUE objectClass: top objectClass: idnsrecord objectClass: idnszone _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
