On 11.7.2016 15:40, Anthony Clark wrote:
> Thanks for the answer,
>
> I just wanted to confirm: Various "DNS health checks" complain about SOA
> serials not being the same. Are those safe to ignore?
Yes, unless you are doing incremental zone transfers.
> I have 2 FreeIPA servers for basic
Thanks for the answer,
I just wanted to confirm: Various "DNS health checks" complain about SOA
serials not being the same. Are those safe to ignore?
I have 2 FreeIPA servers for basic redundancy. Should I not be pointing my
hosts at both FreeIPA hosts for DNS?
Thanks,
Anthony
On Mon, Jul
On 8.7.2016 19:13, Anthony Clark wrote:
> Hello All,
>
> I have two FreeIPA servers set up as follows:
>
> ns01: ipa-server-install --realm=DEV.REDACTED.NET --mkhomedir --setup-dns
> --ssh-trust-dns --forwarder=1.2.3.4
>
> ns02: ipa-replica-install
>
Hello All,
I have two FreeIPA servers set up as follows:
ns01: ipa-server-install --realm=DEV.REDACTED.NET --mkhomedir --setup-dns
--ssh-trust-dns --forwarder=1.2.3.4
ns02: ipa-replica-install
/var/lib/ipa/replica-info-ns02.dev.redacted.net.gpg --setup-ca --mkhomedir
--ssh-trust-dns
