Re: [xcat-user] makedns-generated zones and their NS record

2017-11-06 Thread Yuan Y Bai 
Thanks Kevin, I got it, have a fun of xCAT .
 
 
Best Regards--Yuan Bai (白媛)CSTL HPC System Management DevelopmentTel:86-10-82451401E-mail: by...@cn.ibm.comAddress: IBM ZGC Campus. Ring Building 28,ZhongGuanCun Software Park,No.8 Dong Bei Wang West Road, Haidian District,Beijing P.R.China 100193IBM环宇大厦北京市海淀区东北旺西路8号,中关村软件园28号楼邮编:100193
 
 
- Original message -From: Kevin Keane To: xCAT Users Mailing list Cc:Subject: Re: [xcat-user] makedns-generated zones and their NS recordDate: Tue, Nov 7, 2017 3:45 AM 
Thank you, Yuan. Yes, I know about the name mismatch on eth1. I just didn't get around to fixing that. And your configuration would work, but it has public and private reversed. As I said - I'll simply have the DNS server listen on my eth1 interface as well; that should take care of my issues, although it feels like a hack. Thanks for all your help! 
 
On Mon, Nov 6, 2017 at 2:15 AM, Yuan Y Bai  wrote:

 
Hi Kevin,
I noticed your hpcmn-test eth1 hostname domain is "kkeane.sandiego.edu", and "hpcpublic" in networks table domain attribute is "sabre.kkeane.sandiego.edu", is there sub-domain or mis-spelling?
 
Although it works somewhat, I still feel curious about "But makedns doesn’t use the name that corresponds to eth2, but rather the hostname (from hostname -f) in the NS records". 
 
The following configurations can work in my env, could you give me your differences? So that I can compare with them, Thanks.
 
In the host:
private eth1: hpcmn-test.kkeane.sandiego.edu
public eth2: hpcmn-test.imm.sabre.kkeane.sandiego.edu
the "hostname -f" return hpcmn-test.kkeane.sandiego.edu
 
1, Make sure /etc/resolv.conf is persistent. And private domain "imm.sabre.kkeane.sandiego.edu" is before public domain "sabre.kkeane.sandiego.edu".
In case /etc/resolv.conf is updated/synced up automatically, add "PEERDNS=NO" in ifcfg-eth* file.
 
2, In xcat, "DNS server should only be listening on eth2", so eth2 is the primary interface. "define its primary interface (the one whose domain matches site.domain value) in hosts.node/hosts.ip (this should also be what was deinfed in nodelist above)", assume all nodes belong to node group testgroup, the site table has the following configurations:
domain=imm.sabre.kkeane.sandiego.edu
nameservers=192.168.101.2
master=192.168.101.2
dnsinterfaces=testgroup|eth2 # if needed
forwarders=
 
3, In my previous example, we can use "makehosts -n" to get the following /etc/hosts:
192.168.101.2 hpcmn-test hpcmn-test.imm.sabre.kkeane.sandiego.edu
192.168.20.2 hpcmn-test-eth1 hpcmn-test.kkeane.sandiego.edu
 
4, Execute "makedns -n", xcat DNS server should be 192.168.101.2, all the following nslookup command give corresponding ip.
nslookup hpcmn-test
nslookup hpcmn-test.imm.sabre.kkeane.sandiego.edu
nslookup hpcmn-test.kkeane.sandiego.edu
 
 
Best Regards--Yuan Bai (白媛)CSTL HPC System Management DevelopmentTel:86-10-82451401E-mail: by...@cn.ibm.comAddress: IBM ZGC Campus. Ring Building 28,ZhongGuanCun Software Park,No.8 Dong Bei Wang West Road, Haidian District,Beijing P.R.China 100193IBM环宇大厦北京市海淀区东北旺西路8号,中关村软件园28号楼邮编:100193
 
 
- Original message -From: "Kevin Keane (USD)" To: xCAT Users Mailing list Cc: "xcat-user@lists.sourceforge.net" Subject: Re: [xcat-user] makedns-generated zones and their NS recordDate: Mon, Nov 6, 2017 2:53 PM 
Yes, I used the dnsinterfaces attribute in the site table. But makedns doesn’t use the name that corresponds to eth2, but rather the hostname (from hostname -f) in the NS records – which corresponds to eth1 in my case.
 
Maybe I’ll simply have the DNS server listen on eth1 as well. I was hoping to avoid that, but it may be my easiest solution here.
 
Sent from Mail for Windows 10
 
From: Yuan Y BaiSent: Sunday, November 5, 2017 10:35 PM
To: xcat-user@lists.sourceforge.netCc: xcat-user@lists.sourceforge.netSubject: Re: [xcat-user] makedns-generated zones and their NS record
 
 
Hi Kevin,
 
In your playgroud, " the DNS server should only be listening on eth2".
 
So "dnsinterfaces" attribute in site table can control which the network interfaces DNS should listen on.
 
dnsinterfaces:  The network interfaces DNS should listen on.  If it is the same for all nodes, use a simple comma-separated list of NICs.  To specify different NICs for different nodes, use the format: "xcatmn|eth1,eth2;service|bond0", where xcatmn is the name of the management node, and DNS should listen on the eth1 and eth2 interfaces.  All the nods in group 'service' should listen on the 'bond0' interface.
 NOTE: If using this attribute to block certain interfaces, make sure the IP maps to your hostname of xCAT MN is not blocked

Re: [xcat-user] makedns-generated zones and their NS record

2017-11-06 Thread Kevin Keane 
Thank you, Yuan. Yes, I know about the name mismatch on eth1. I just didn't
get around to fixing that.

And your configuration would work, but it has public and private reversed.

As I said - I'll simply have the DNS server listen on my eth1 interface as
well; that should take care of my issues, although it feels like a hack.

Thanks for all your help!


On Mon, Nov 6, 2017 at 2:15 AM, Yuan Y Bai  wrote:

>
> Hi Kevin,
> I noticed your hpcmn-test eth1 hostname domain is "kkeane.sandiego.edu",
> and "hpcpublic" in networks table domain attribute is "
> sabre.kkeane.sandiego.edu
> ",
> is there sub-domain or mis-spelling?
>
> Although it works somewhat, I still feel curious about "But makedns
> doesn’t use the name that corresponds to eth2, but rather the hostname
> (from hostname -f) in the NS records".
>
> The following configurations can work in my env, could you give me your
> differences? So that I can compare with them, Thanks.
>
> In the host:
> private eth1: hpcmn-test.kkeane.sandiego.edu
> 
> public eth2: hpcmn-test.imm.sabre.kkeane.sandiego.edu
> 
> the "hostname -f" return hpcmn-test.kkeane.sandiego.edu
> 
>
> 1, Make sure /etc/resolv.conf is persistent. And private domain "
> imm.sabre.kkeane.sandiego.edu
> "
> is before public domain "sabre.kkeane.sandiego.edu".
> In case /etc/resolv.conf is updated/synced up automatically, add
> "PEERDNS=NO" in ifcfg-eth* file.
>
> 2, In xcat, "DNS server should only be listening on eth2", so eth2 is the
> primary interface. "define its primary interface (the one whose domain
> matches site.domain value) in hosts.node/hosts.ip (this should also be what
> was deinfed in nodelist above)", assume all nodes belong to node group
> testgroup, the site table has the following configurations:
> domain=imm.sabre.kkeane.sandiego.edu
> 
> nameservers=192.168.101.2
> master=192.168.101.2
> dnsinterfaces=testgroup|eth2 # if needed
> forwarders=
>
> 3, In my previous example, we can use "makehosts -n" to get the following
> /etc/hosts:
> 192.168.101.2 hpcmn-test hpcmn-test.imm.sabre.kkeane.sandiego.edu
> 
> 192.168.20.2 hpcmn-test-eth1 hpcmn-test.kkeane.sandiego.edu
> 
>
> 4, Execute "makedns -n", xcat DNS server should be 192.168.101.2, all the
> following nslookup command give corresponding ip.
> nslookup hpcmn-test
> nslookup hpcmn-test.imm.sabre.kkeane.sandiego.edu
> 
> nslookup hpcmn-test.kkeane.sandiego.edu
> 
>
>
> Best Regards
> --
> Yuan Bai (白媛)
>
> CSTL HPC System Management Development
> Tel:86-10-82451401
> E-mail: by...@cn.ibm.com
> Address: IBM ZGC Campus. Ring Building 28,
> ZhongGuanCun Software Park,No.8 Dong Bei

Re: [xcat-user] makedns-generated zones and their NS record

2017-11-06 Thread Yuan Y Bai 
 
Hi Kevin,
I noticed your hpcmn-test eth1 hostname domain is "kkeane.sandiego.edu", and "hpcpublic" in networks table domain attribute is "sabre.kkeane.sandiego.edu", is there sub-domain or mis-spelling?
 
Although it works somewhat, I still feel curious about "But makedns doesn’t use the name that corresponds to eth2, but rather the hostname (from hostname -f) in the NS records". 
 
The following configurations can work in my env, could you give me your differences? So that I can compare with them, Thanks.
 
In the host:
private eth1: hpcmn-test.kkeane.sandiego.edu
public eth2: hpcmn-test.imm.sabre.kkeane.sandiego.edu
the "hostname -f" return hpcmn-test.kkeane.sandiego.edu
 
1, Make sure /etc/resolv.conf is persistent. And private domain "imm.sabre.kkeane.sandiego.edu" is before public domain "sabre.kkeane.sandiego.edu".
In case /etc/resolv.conf is updated/synced up automatically, add "PEERDNS=NO" in ifcfg-eth* file.
 
2, In xcat, "DNS server should only be listening on eth2", so eth2 is the primary interface. "define its primary interface (the one whose domain matches site.domain value) in hosts.node/hosts.ip (this should also be what was deinfed in nodelist above)", assume all nodes belong to node group testgroup, the site table has the following configurations:
domain=imm.sabre.kkeane.sandiego.edu
nameservers=192.168.101.2
master=192.168.101.2
dnsinterfaces=testgroup|eth2 # if needed
forwarders=
 
3, In my previous example, we can use "makehosts -n" to get the following /etc/hosts:
192.168.101.2 hpcmn-test hpcmn-test.imm.sabre.kkeane.sandiego.edu
192.168.20.2 hpcmn-test-eth1 hpcmn-test.kkeane.sandiego.edu
 
4, Execute "makedns -n", xcat DNS server should be 192.168.101.2, all the following nslookup command give corresponding ip.
nslookup hpcmn-test
nslookup hpcmn-test.imm.sabre.kkeane.sandiego.edu
nslookup hpcmn-test.kkeane.sandiego.edu
 
 
Best Regards--Yuan Bai (白媛)CSTL HPC System Management DevelopmentTel:86-10-82451401E-mail: by...@cn.ibm.comAddress: IBM ZGC Campus. Ring Building 28,ZhongGuanCun Software Park,No.8 Dong Bei Wang West Road, Haidian District,Beijing P.R.China 100193IBM环宇大厦北京市海淀区东北旺西路8号,中关村软件园28号楼邮编:100193
 
 
- Original message -From: "Kevin Keane (USD)" To: xCAT Users Mailing list Cc: "xcat-user@lists.sourceforge.net" Subject: Re: [xcat-user] makedns-generated zones and their NS recordDate: Mon, Nov 6, 2017 2:53 PM 
Yes, I used the dnsinterfaces attribute in the site table. But makedns doesn’t use the name that corresponds to eth2, but rather the hostname (from hostname -f) in the NS records – which corresponds to eth1 in my case.
 
Maybe I’ll simply have the DNS server listen on eth1 as well. I was hoping to avoid that, but it may be my easiest solution here.
 
Sent from Mail for Windows 10
 
From: Yuan Y BaiSent: Sunday, November 5, 2017 10:35 PMTo: xcat-user@lists.sourceforge.netCc: xcat-user@lists.sourceforge.netSubject: Re: [xcat-user] makedns-generated zones and their NS record
 
Hi Kevin,
 
In your playgroud, " the DNS server should only be listening on eth2".
 
So "dnsinterfaces" attribute in site table can control which the network interfaces DNS should listen on.
 
dnsinterfaces:  The network interfaces DNS should listen on.  If it is the same for all nodes, use a simple comma-separated list of NICs.  To specify different NICs for different nodes, use the format: "xcatmn|eth1,eth2;service|bond0", where xcatmn is the name of the management node, and DNS should listen on the eth1 and eth2 interfaces.  All the nods in group 'service' should listen on the 'bond0' interface.
 NOTE: If using this attribute to block certain interfaces, make sure the IP maps to your hostname of xCAT MN is not blocked since xCAT needs to use this IP to communicate with the local NDS server on MN.
 
 
Best Regards--Yuan Bai (白媛)CSTL HPC System Management DevelopmentTel:86-10-82451401E-mail: by...@cn.ibm.comAddress: IBM ZGC Campus. Ring Building 28,ZhongGuanCun Software Park,No.8 Dong Bei Wang West Road, Haidian District,Beijing P.R.China 100193IBM环宇大厦北京市海淀区东北旺西路8号,中关村软件园28号楼邮编:100193
 
 
- Original message -From: "Yuan Y Bai" To: xcat-user@lists.sourceforge.netCc: xcat-user@lists.sourceforge.netSubject: Re: [xcat-user] makedns-generated zones and their NS recordDate: Mon, Nov 6, 2017 10:47 AM  
Hi Kevin,
 
Thanks for your summary.
 
After "xcatconfig -m", there is xcat MN node hpcmn-test,  you need to "chdef hpcmn-test ip=...; makehosts -n", its name and ip will be added into /etc/hosts.
 
 
Best Regards--Yuan Bai (白媛)CSTL HPC System Management DevelopmentTel:86-10-82451401E-mail: by...@cn.ibm.comAddress: IBM ZGC