When non-fqdn name server address is used as NS record, IPA rejects it as unresolvable:
# host ns.example.com ns.example.com has address 10.16.78.22 # ipa dnsrecord-add example.com @ --ns-rec=ns ipa: ERROR: Nameserver 'ns' does not have a corresponding A/AAAA record # ipa dnsrecord-add example.com @ --ns-rec=ns.example.com. Record name: @ NS record: vm-022.idm.lab.bos.redhat.com., ns.example.com.
The validator should rather append a zone name to the validated record before its being validated in the same way as bind name server does.
bind
Ticket has been cloned to Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=813380
attachment freeipa-mkosek-267-allow-relative-dns-name-in-ns-validator.patch
Patch freeipa-mkosek-267-allow-relative-dns-name-in-ns-validator.patch sent for review
How to test:
# ipa dnszone-add example.com --name-server=`hostname` # ipa dnsrecord-add example.com ns --a-rec=10.16.78.125 # host ns.example.com <<< IS resolvable # ipa dnsrecord-add example.com @ --ns-rec=ns <<< SHOULD succeed
master: 895203c
Metadata Update from @mkosek: - Issue assigned to mkosek - Issue set to the milestone: FreeIPA 3.0 Core Effort - 2012/05
Login to comment on this ticket.