Dynamically Loadable Zones for BIND

mirghany | 4 May 2008 09:03

Re: Bind-9.4.2 DLZ LDAP

Rob Butler wrote:

your LDAP query isn't correct for the lookup query. Post the DLZ section of your named.conf so we can help find the error.

Rob

----- Original Message ----
From: mirghany <mirghany <at> seven7s.net>
To: bind-dlz-testers <at> lists.sourceforge.net
Sent: Wednesday, April 30, 2008 8:55:01 AM
Subject: [Bind-dlz-testers] Bind-9.4.2 DLZ LDAP

Dear , I tried to test bind-9.4.2 with DLZ and LDAP. I recompile bind with DLZ LDAP option. LDAP ...> OpenLDAP: slapd 2.3.27 and follow the example on http://bind-dlz.sourceforge.net/ldap_example.html LDAP seems to be up and running also ldapsearch ok. when I tried to start bind with named -c /etc/named.conf -d 20 -u named -g I've got these logs: [root <at> bindldap ~]# named -c /etc/named.conf -d 20 -u named -g 30-Apr-2008 09:28:03.835 starting BIND 9.4.2 -c /etc/named.conf -d 20 -u named -g 30-Apr-2008 09:28:03.836 found 1 CPU, using 1 worker thread 30-Apr-2008 09:28:03.836 Registering DLZ ldap driver. 30-Apr-2008 09:28:03.837 Registering SDLZ driver 'ldap' 30-Apr-2008 09:28:03.837 Registering DLZ driver 'ldap' 30-Apr-2008 09:28:03.843 loading configuration from '/etc/named.conf' 30-Apr-2008 09:28:03.845 set maximum stack size to 4294967295: success 30-Apr-2008 09:28:03.845 set maximum data size to 4294967295: success 30-Apr-2008 09:28:03.845 set maximum core size to 4294967295: success 30-Apr-2008 09:28:03.845 set maximum open files to 1024: success 30-Apr-2008 09:28:03.846 listening on IPv4 interface lo, 127.0.0.1#53 30-Apr-2008 09:28:03.846 clientmgr <at> 0xb7f7e008: create 30-Apr-2008 09:28:03.848 socket 0xb7f7eec8: created 30-Apr-2008 09:28:03.849 clientmgr <at> 0xb7f7e008: createclients 30-Apr-2008 09:28:03.849 clientmgr <at> 0xb7f7e008: create new 30-Apr-2008 09:28:03.850 client <at> 0xb6113008: create 30-Apr-2008 09:28:03.851 socket 0xb7f80008: created 30-Apr-2008 09:28:03.851 clientmgr <at> 0xb7f7e008: createclients 30-Apr-2008 09:28:03.851 clientmgr <at> 0xb7f7e008: create new 30-Apr-2008 09:28:03.852 client <at> 0xb60d2008: create 30-Apr-2008 09:28:03.853 listening on IPv4 interface eth0, 212.103.160.190#53 30-Apr-2008 09:28:03.853 clientmgr <at> 0xb7f7e1e0: create 30-Apr-2008 09:28:03.853 socket 0xb7f80148: created 30-Apr-2008 09:28:03.854 clientmgr <at> 0xb7f7e1e0: createclients 30-Apr-2008 09:28:03.854 clientmgr <at> 0xb7f7e1e0: create new 30-Apr-2008 09:28:03.855 client <at> 0xb6091008: create 30-Apr-2008 09:28:03.855 socket 0xb7f80288: created 30-Apr-2008 09:28:03.856 clientmgr <at> 0xb7f7e1e0: createclients 30-Apr-2008 09:28:03.856 clientmgr <at> 0xb7f7e1e0: create new 30-Apr-2008 09:28:03.857 client <at> 0xb6050008: create 30-Apr-2008 09:28:03.860 Loading 'ldap zone' using driver ldap 30-Apr-2008 09:28:03.861 Loading SDLZ driver. 30-Apr-2008 09:28:03.861 LDAP driver running multithreaded 30-Apr-2008 09:28:03.861 lookup query must specify a search base 30-Apr-2008 09:28:03.861 SDLZ driver failed to load. 30-Apr-2008 09:28:03.862 DLZ driver failed to load. 30-Apr-2008 09:28:03.862 calling free_rbtdb(.) 30-Apr-2008 09:28:03.862 done free_rbtdb(.) 30-Apr-2008 09:28:03.863 load_configuration: failure 30-Apr-2008 09:28:03.863 loading configuration: failure 30-Apr-2008 09:28:03.863 exiting (due to fatal error) Any one have an Idea about that error in RED. Also note when I tcpdump I could not find any trial from bind to communicate with LDAP even local server or another remote one. otherwise ldapsearch did. Thanks
-- Ahmed El-Mirghany Senior Systems Engineer RHCE,LPI T. E. Data Mobile +2(010)1608655 E-Mail: mirghany <at> seven7s.net

Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. ------------------------------------------------------------------------- This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone _______________________________________________ Bind-dlz-testers mailing list Bind-dlz-testers <at> lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/bind-dlz-testers

Dear ,
Here are kindly find named.conf LDAP section.

dlz "ldap zone" {
        database "ldap 1 v3 simple
        {cn=mirghany,o=bind-dlz} {mirghany} {127.0.0.1}
        ldap:///dlzZoneName=%zone%,ou=dns,o=bind-dlz???objectclass=dlzZone
        ldap:///dlzHostName=%record%,dlzZoneName=%zone%,ou=dns,o=bind-dlz?dlzTTL,dlzType,dlzPreference,dlzData,dlzIPAddr,dlzPrimaryNS,dlzAdminEmail,dlzSerial,dlzRefresh,dlzRetry,dlzExpire,dlzMinimum?sub?objectclass=dlzAbstractRecord";
};

Also the normal LDAP search result:

Command     : ldapsearch -x -h 127.0.0.1 -D"cn=mirghany,o=bind-dlz" -w mirghany -b"o=bind-dlz"
Result:

# extended LDIF
#
# LDAPv3
# base <o=bind-dlz> with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#

# bind-dlz
dn: o=bind-dlz
objectClass: organization
o: bind-dlz

# dns, bind-dlz
dn: ou=dns,o=bind-dlz
objectClass: organizationalUnit
ou: dns

# example.com, dns, bind-dlz
dn: dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzZone
dlzZoneName: example.com

# <at> , example.com, dns, bind-dlz
dn: dlzHostName= <at> ,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzHost
dlzHostName: <at>

# www, example.com, dns, bind-dlz
dn: dlzHostName=www,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzHost
dlzHostName: www

# mail, example.com, dns, bind-dlz
dn: dlzHostName=mail,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzHost
dlzHostName: mail

# backup, example.com, dns, bind-dlz
dn: dlzHostName=backup,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzHost
dlzHostName: backup

# ns1, example.com, dns, bind-dlz
dn: dlzHostName=ns1,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzHost
dlzHostName: ns1

# ns2, example.com, dns, bind-dlz
dn: dlzHostName=ns2,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzHost
dlzHostName: ns2

# ~, example.com, dns, bind-dlz
dn: dlzHostName=~,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzHost
dlzHostName: ~

# 1, <at> , example.com, dns, bind-dlz
dn: dlzRecordID=1,dlzHostName= <at> ,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzGenericRecord
dlzRecordID: 1
dlzHostName: <at>
dlzType: txt
dlzData: "this is a text record"
dlzTTL: 10

# 2, www, example.com, dns, bind-dlz
dn: dlzRecordID=2,dlzHostName=www,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzARecord
dlzRecordID: 2
dlzHostName: www
dlzType: a
dlzIPAddr: 192.168.0.1
dlzTTL: 10

# 3, mail, example.com, dns, bind-dlz
dn: dlzRecordID=3,dlzHostName=mail,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzARecord
dlzRecordID: 3
dlzHostName: mail
dlzType: a
dlzIPAddr: 192.168.0.2
dlzTTL: 10

# 4, backup, example.com, dns, bind-dlz
dn: dlzRecordID=4,dlzHostName=backup,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzARecord
dlzRecordID: 4
dlzHostName: backup
dlzType: a
dlzIPAddr: 192.168.0.3
dlzTTL: 10

# 5, <at> , example.com, dns, bind-dlz
dn: dlzRecordID=5,dlzHostName= <at> ,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzMXRecord
dlzRecordID: 5
dlzHostName: <at>
dlzType: mx
dlzData: mail
dlzPreference: 20
dlzTTL: 10

# 6, <at> , example.com, dns, bind-dlz
dn: dlzRecordID=6,dlzHostName= <at> ,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzMXRecord
dlzRecordID: 6
dlzHostName: <at>
dlzType: mx
dlzData: backup
dlzPreference: 40
dlzTTL: 10

# 7, www, example.com, dns, bind-dlz
dn: dlzRecordID=7,dlzHostName=www,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzMXRecord
dlzRecordID: 7
dlzHostName: www
dlzType: mx
dlzData: backup
dlzPreference: 40
dlzTTL: 10

# 8, www, example.com, dns, bind-dlz
dn: dlzRecordID=8,dlzHostName=www,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzMXRecord
dlzRecordID: 8
dlzHostName: www
dlzType: mx
dlzData: mail
dlzPreference: 20
dlzTTL: 10

# 9, ns1, example.com, dns, bind-dlz
dn: dlzRecordID=9,dlzHostName=ns1,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzARecord
dlzRecordID: 9
dlzHostName: ns1
dlzType: a
dlzIPAddr: 192.168.0.4
dlzTTL: 10

# 10, ns2, example.com, dns, bind-dlz
dn: dlzRecordID=10,dlzHostName=ns2,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzARecord
dlzRecordID: 10
dlzHostName: ns2
dlzType: a
dlzIPAddr: 192.168.0.5
dlzTTL: 10

# 11, <at> , example.com, dns, bind-dlz
dn: dlzRecordID=11,dlzHostName= <at> ,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzSOARecord
dlzRecordID: 11
dlzHostName: <at>
dlzType: soa
dlzSerial: 2
dlzRefresh: 2800
dlzRetry: 7200
dlzExpire: 604800
dlzMinimum: 86400
dlzAdminEmail: root.example.com.
dlzPrimaryNS: ns1.example.com.
dlzTTL: 10

# 12, <at> , example.com, dns, bind-dlz
dn: dlzRecordID=12,dlzHostName= <at> ,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzNSRecord
dlzRecordID: 12
dlzHostName: <at>
dlzType: ns
dlzData: ns1.example.com.
dlzTTL: 10

# 13, <at> , example.com, dns, bind-dlz
dn: dlzRecordID=13,dlzHostName= <at> ,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzNSRecord
dlzRecordID: 13
dlzHostName: <at>
dlzType: ns
dlzData: ns2
dlzTTL: 10

# 14, ~, example.com, dns, bind-dlz
dn: dlzRecordID=14,dlzHostName=~,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzARecord
dlzRecordID: 14
dlzHostName: ~
dlzType: a
dlzIPAddr: 192.168.0.250
dlzTTL: 10

# 15, example.com, dns, bind-dlz
dn: dlzRecordID=15,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzXFR
dlzRecordID: 15
dlzIPAddr: 127.0.0.1

# search result
search: 2
result: 0 Success

# numResponses: 26
# numEntries: 25

BR

-- Ahmed El-Mirghany Senior Systems Engineer RHCE,LPI T. E. Data Mobile +2(010)1608655 E-Mail: mirghany <at> seven7s.net

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone

_______________________________________________
Bind-dlz-testers mailing list
Bind-dlz-testers <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bind-dlz-testers

headers

Rob Butler | 4 May 2008 15:12

Re: Bind-9.4.2 DLZ LDAP

OK, the problem is the LDAP client (not DLZ, but the LDAP API's) evolved and don't like '%zone%' and '%client%' anymore. The '%' symbol is used to escape characters in URL's. There is a patch around that replaces all uses of '%' as delimiters with '$' so the LDAP API will work without complaint. Find that patch, apply it, compile and change all '%' to '$' in your config and everything should work fine.

Rob

----- Original Message ----
Fro m: mirghany <mirghany <at> seven7s.net>
To: bind-dlz-testers <at> lists.sourceforge.net
Sent: Sunday, May 4, 2008 3:03:15 AM
Subject: Re: [Bind-dlz-testers] Bind-9.4.2 DLZ LDAP

Rob Butler wrote:

your LDAP query isn't correct for the lookup query. Post the DLZ section of your named.conf so we can help find the error.

Rob

----- Original Message ----
From: mirghany <mirghany <at> seven7s.net>
To: bind-dlz-testers <at> lists.sourceforge.net
Sent: Wednesday, April 30, 2008 8:55:01 AM
Subject: [Bind-dlz-testers] Bind-9.4.2 DLZ LDAP

Dear ,
I tried to test bind-9.4.2 with DLZ and LDAP.
I recompile bind with DLZ LDAP option.
LDAP ...> OpenLDAP: slapd 2.3.27
and follow the example on http://bind-dlz.sourceforge.net/ldap_example.html
LDAP seems to be up and running also ldapsearch ok.
when I tried to start bind with named -c /etc/named.conf -d 20 -u
named -g I've got these logs:

[root <at> bindldap ~]# named -c /etc/named.conf -d 20 -u named -g
30-Apr-2008 09:28:03.835 starting BIND 9.4.2 -c /etc/named.conf -d 20 -u
named -g
30-Apr-2008 09:28:03.836 found 1 CPU, using 1 worker thread
30-Apr-2008 09:28:03.836 Registering DLZ ldap driver.
30-Apr -2008 09:28:03.837 Registering SDLZ driver 'ldap'
30-Apr-2008 09:28:03.837 Registering DLZ driver 'ldap'
30-Apr-2008 09:28:03.843 loading configuration from
'/etc/named.conf'
30-Apr-2008 09:28:03.845 set maximum stack size to 4294967295: success
30-Apr-2008 09:28:03.845 set maximum data size to 4294967295: success
30-Apr-2008 09:28:03.845 set maximum core size to 4294967295: success
30-Apr-2008 09:28:03.845 set maximum open files to 1024: success
30-Apr-2008 09:28:03.846 listening on IPv4 interface lo, 127.0.0.1#53
30-Apr-2008 09:28:03.846 clientmgr <at> 0xb7f7e008: create
30-Apr-2008 09:28:03.848 socket 0xb7f7eec8: created
30-Apr-2008 09:28:03.849 clientmgr <at> 0xb7f7e008: createclients
30-Apr-2008 09:28:03.849 clientmgr <at> 0xb7f7e008: create new
30-Apr-2008 09:28:03.850 client <at> 0xb6113008: create
30-Apr-2008 09:28:03.851 socket 0xb7f80008: created
30-Apr-2008 09:28:03.851 clientmgr <at> 0xb7f7e008: createclients
30 -Apr-2008 09:28:03.851 clientmgr <at> 0xb7f7e008: create new
30-Apr-2008 09:28:03.852 client <at> 0xb60d2008: create
30-Apr-2008 09:28:03.853 listening on IPv4 interface
eth0,
212.103.160.190#53
30-Apr-2008 09:28:03.853 clientmgr <at> 0xb7f7e1e0: create
30-Apr-2008 09:28:03.853 socket 0xb7f80148: created
30-Apr-2008 09:28:03.854 clientmgr <at> 0xb7f7e1e0: createclients
30-Apr-2008 09:28:03.854 clientmgr <at> 0xb7f7e1e0: create new
30-Apr-2008 09:28:03.855 client <at> 0xb6091008: create
30-Apr-2008 09:28:03.855 socket 0xb7f80288: created
30-Apr-2008 09:28:03.856 clientmgr <at> 0xb7f7e1e0: createclients
30-Apr-2008 09:28:03.856 clientmgr <at> 0xb7f7e1e0: create new
30-Apr-2008 09:28:03.857 client <at> 0xb6050008: create
30-Apr-2008 09:28:03.860 Loading 'ldap zone' using driver ldap
30-Apr-2008 09:28:03.861 Loading SDLZ driver.
30-Apr-2008 09:28:03.861 LDAP driver running multithreaded
30-Apr-2008 09:28:03.861 lookup query must specify a search base
30-Apr-2008 09:28:03.861 SDLZ driver failed to load.
30-Apr-2008 09:28:03.862 DLZ driver failed to load.
30-Apr-2008
09:28:03.862 calling free_rbtdb(.)
30-Apr-2008 09:28:03.862 done free_rbtdb(.)
30-Apr-2008 09:28:03.863 load_configuration: failure
30-Apr-2008 09:28:03.863 loading configuration: failure
30-Apr-2008 09:28:03.863 exiting (due to fatal error)

Any one have an Idea about that error in RED.

Also note when I tcpdump I could not find any trial from bind to
communicate with LDAP even local server or another remote one. otherwise
ldapsearch did.

Thanks

--
Ahmed El-Mirghany
Senior Systems Engineer
RHCE,LPI
T. E. Data
Mobile +2(010)1608655
E-Mail: mirghany <at> seven7s.net

Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now.
-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference
Don't miss this year's exciting event. There's still time to save $100.
Use priority code J8TL2D2.
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
_______________________________________________
Bind-dlz-testers mailing list
Bind-dlz-testers <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bind-dlz-testers

Dear ,
Here are kindly find named.conf LDAP section.

dlz "ldap zone" {
        database "ldap 1 v3 simple
        {cn=mirghany,o=bind-dlz} {mirghany} {127.0.0.1}
        ldap:///dlzZoneName=%zone%,ou=dns,o=bind-dlz???objectclass=dlzZone
        ldap:///dlzHostName=%record%,dlzZoneName=%zone%,ou=dns,o=bind-dlz?dlzTTL,dlzType,dlzPreference,dlzData,dlzIPAddr,dlzPrimaryNS,dlzAdminEmail,dlzSerial,dlzRefresh,dlzRetry,dlzExpire,dlzMinimum?sub?objectclass=dlzAbstractRecord";
};

Also the normal LDAP search result:

Command     : ldapsearch -x -h 127.0.0.1 -D"cn=mirghany,o=bind-dlz" -w mirghany -b"o=bind-dlz"
Result:

# extended LDIF
#
# LDAPv3
# base <o=bind-dlz> with scope subtree
# filter: (objectclass=*)
# requesting: ALL
#

# bind-dlz
dn: o=bind-dlz
objectClass: organization
o: bind-dlz

# dns, bind-dlz
dn: ou=dns,o=bind-dlz
objectClass: organizationalUnit
ou: dns

# example.com, dns, bind-dlz
dn: dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzZone
dlzZoneName: example.com

# <at> , example.com, dns, bind-dlz
dn: dlzHostName= <at> ,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzHost
dlzHostName: <at>

# www, example.com, dns, bind-dlz
dn: dlzHostName=www,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzHost
dlzHostName: www

# mail, example.com, dns, bind-dlz
dn: dlzHostName=mail,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzHost
dlzHostName: mail

# backup, example.com, dns, bind-dlz
dn: dlzHostName=backup,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzHost
dlzHostName: backup

# ns1, example.com, dns, bind-dlz
dn: dlzHostName=ns1,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzHost
dlzHostName: ns1

# ns2, example.com, dns, bind-dlz
dn: dlzHostName=ns2,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzHost
dlzHostName: ns2

# ~, example.com, dns, bind-dlz
dn: dlzHostName=~,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzHost
dlzHostName: ~

# 1, <at> , example.com, dns, bind-dlz
dn: dlzRecordID=1,dlzHostName= <at> ,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzGenericRecord
dlzRecordID: 1
dlzHostName: <at>
dlzType: txt
dlzData: "this is a text record"
dlzTTL: 10

# 2, www, example.com, dns, bind-dlz
dn: dlzRecordID=2,dlzHostName=www,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzARecord
dlzRecordID: 2
dlzHostName: www
dlzType: a
dlzIPAddr: 192.168.0.1
dlzTTL: 10

# 3, mail, example.com, dns, bind-dlz
dn: dlzRecordID=3,dlzHostName=mail,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzARecord
dlzRecordID: 3
dlzHostName: mail
dlzType: a
dlzIPAddr: 192.168.0.2
dlzTTL: 10

# 4, backup, example.com, dns, bind-dlz
dn: dlzRecordID=4,dlzHostName=backup,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzARecord
dlzRecordID: 4
dlzHostName: backup
dlzType: a
dlzIPAddr: 192.168.0.3
dlzTTL: 10

# 5, <at> , example.com, dns, bind-dlz
dn: dlzRecordID=5,dlzHostName= <at> ,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzMXRecord
dlzRecordID: 5
dlzHostName: <at>
dlzType: mx
dlzData: mail
dlzPreference: 20
dlzTTL: 10

# 6, <at> , example.com, dns, bind-dlz
dn: dlzRecordID=6,dlzHostName= <at> ,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzMXRecord
dlzRecordID: 6
dlzHostName: <at>
dlzType: mx
dlzData: backup
dlzPreference: 40
dlzTTL: 10

# 7, www, example.com, dns, bind-dlz
dn: dlzRecordID=7,dlzHostName=www,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzMXRecord
dlzRecordID: 7
dlzHostName: www
dlzType: mx
dlzData: backup
dlzPreference: 40
dlzTTL: 10

# 8, www, example.com, dns, bind-dlz
dn: dlzRecordID=8,dlzHostName=www,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzMXRecord
dlzRecordID: 8
dlzHostName: www
dlzType: mx
dlzData: mail
dlzPreference: 20
dlzTTL: 10

# 9, ns1, example.com, dns, bind-dlz
dn: dlzRecordID=9,dlzHostName=ns1,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzARecord
dlzRecordID: 9
dlzHostName: ns1
dlzType: a
dlzIPAddr: 192.168.0.4
dlzTTL: 10

# 10, ns2, example.com, dns, bind-dlz
dn: dlzRecordID=10,dlzHostName=ns2,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzARecord
dlzRecordID: 10
dlzHostName: ns2
dlzType: a
dlzIPAddr: 192.168.0.5
dlzTTL: 10

# 11, <at> , example.com, dns, bind-dlz
dn: dlzRecordID=11,dlzHostName= <at> ,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzSOARecord
dlzRecordID: 11
dlzHostName: <at>
dlzType: soa
dlzSerial: 2
dlzRefresh: 2800
dlzRetry: 7200
dlzExpire: 604800
dlzMinimum: 86400
dlzAdminEmail: root.example.com.
dlzPrimaryNS: ns1.example.com.
dlzTTL: 10

# 12, <at> , example.com, dns, bind-dlz
dn: dlzRecordID=12,dlzHostName= <at> ,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzNSRecord
dlzRecordID: 12
dlzHostName: <at>
dlzType: ns
dlzData: ns1.example.com.
dlzTTL: 10

# 13, <at> , example.com, dns, bind-dlz
dn: dlzRecordID=13,dlzHostName= <at> ,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzNSRecord
dlzRecordID: 13
dlzHostName: <at>
dlzType: ns
dlzData: ns2
dlzTTL: 10

# 14, ~, example.com, dns, bind-dlz
dn: dlzRecordID=14,dlzHostName=~,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzARecord
dlzRecordID: 14
dlzHostName: ~
dlzType: a
dlzIPAddr: 192.168.0.250
dlzTTL: 10

# 15, example.com, dns, bind-dlz
dn: dlzRecordID=15,dlzZoneName=example.com,ou=dns,o=bind-dlz
objectClass: dlzXFR
dlzRecordID: 15
dlzIPAddr: 127.0.0.1

# search result
search: 2
result: 0 Success

# numResponses: 26
# numEntries: 25

BR

--
Ahmed El-Mirghany
Senior Systems Engineer
RHCE,LPI
T. E. Data
Mobile +2(010)1608655
E-Mail: mirghany <at> seven7s.net

Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now.

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone

_______________________________________________
Bind-dlz-testers mailing list
Bind-dlz-testers <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bind-dlz-testers

headers

Daniel Paufler | 5 May 2008 10:47

bind9-9.4.2 + DLZ + slapd 2.4.7

Hello List

I was running bind 9.4.1-P1-3 with DLZ and openldap 2.3.35-1 with ubuntu
7.10 (gutsy)

Now i updated to bind 9.4.2 and openldap 2.4.7. My previous config
stopped working with "lookup query must specify a search base" error.

I am wondering what happend between the versions ?! I suppose its the
"%" error / issue. What can I do to solve it? The "$"-Patch?

Regards

Daniel

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone

headers

Rob Butler | 5 May 2008 15:41

Re: bind9-9.4.2 + DLZ + slapd 2.4.7

Nothing changed in DLZ.  The LDAP libraries that DLZ links to have been updated and now support '%' escaping.

Yes, you need the '$' patch.

Rob

----- Original Message ----
From: Daniel Paufler <d.paufler <at> ergomedia.de>
To: bind-dlz-testers <at> lists.sourceforge.net
Sent: Monday, May 5, 2008 4:47:14 AM
Subject: [Bind-dlz-testers] bind9-9.4.2 + DLZ + slapd 2.4.7

Hello List

I was running bind 9.4.1-P1-3 with DLZ and openldap 2.3.35-1 with ubuntu
7.10 (gutsy)

Now i updated to bind 9.4.2 and openldap 2.4.7. My previous config
stopped working with "lookup query must specify a search base" error.

I am wondering what happend between the versions ?! I suppose its the
"%" error / issue. What can I do to solve it? The "$"-Patch?

Regards

Daniel

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
_______________________________________________
Bind-dlz-testers mailing list
Bind-dlz-testers <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bind-dlz-testers

      ____________________________________________________________________________________
Be a better friend, newshound, and 
know-it-all with Yahoo! Mobile.  Try it now.  http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone

headers

Daniel Paufler | 5 May 2008 16:03

Re: bind9-9.4.2 + DLZ + slapd 2.4.7

Hello Rob

Rob Butler wrote:
> Nothing changed in DLZ.  The LDAP libraries that DLZ links to have been updated and now support '%' escaping.
> 
> Yes, you need the '$' patch.

Where do i find the "$" patch? Seraching google doesn't give me a
usuable result.

Many Thanks

Daniel

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone

headers

Chris Hastie | 5 May 2008 19:02

Constraints on TTLs

After making some changes to my DNS this afternoon one host started
being reported as NXDOMAIN, despite the fact that the records clearly
remained. Logs indicated

"dns_sdlz_putrr returned error. Error code was: bad ttl"

After staring for hours at the data and being unable to spot the problem
I removed all RRs for the host (there were four of them) and began
reinserting them.

The errors reappeared when I inserted an MX record with TTL of 86400.
Reducing this to 3600 solved the problem. The TTL of the target of the
MX record is 3600, as is the TTL of the host's other MX record. Is there
some constraint on the TTLs of MX records?

--

-- 
Chris Hastie

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone

headers

Rob Butler | 5 May 2008 19:27

Re: Constraints on TTLs

The TTL of all records in a 'RRSET' (resource record set) must be the same.  A RRSET is all the records for the
same host of the same type.

So, if your host has 2 MX records they must both have the same TTL.

Rob

----- Original Message ----
From: Chris Hastie <lists <at> oak-wood.co.uk>
To: bind-dlz-testers <at> lists.sourceforge.net
Sent: Monday, May 5, 2008 1:02:57 PM
Subject: [Bind-dlz-testers] Constraints on TTLs

After making some changes to my DNS this afternoon one host started
being reported as NXDOMAIN, despite the fact that the records clearly
remained. Logs indicated

"dns_sdlz_putrr returned error. Error code was: bad ttl"

After staring for hours at the data and being unable to spot the problem
I removed all RRs for the host (there were four of them) and began
reinserting them.

The errors reappeared when I inserted an MX record with TTL of 86400.
Reducing this to 3600 solved the problem. The TTL of the target of the
MX record is 3600, as is the TTL of the host's other MX record. Is there
some constraint on the TTLs of MX records?

-- 
Chris Hastie

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
_______________________________________________
Bind-dlz-testers mailing list
Bind-dlz-testers <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bind-dlz-testers

      ____________________________________________________________________________________
Be a better friend, newshound, and 
know-it-all with Yahoo! Mobile.  Try it now.  http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone

headers

mirghany | 6 May 2008 08:50

Re: bind9-9.4.2 + DLZ + slapd 2.4.7

Rob Butler wrote:

>Nothing changed in DLZ.  The LDAP libraries that DLZ links to have been updated and now support '%' escaping.
>
>Yes, you need the '$' patch.
>
>Rob
>
>----- Original Message ----
>From: Daniel Paufler <d.paufler <at> ergomedia.de>
>To: bind-dlz-testers <at> lists.sourceforge.net
>Sent: Monday, May 5, 2008 4:47:14 AM
>Subject: [Bind-dlz-testers] bind9-9.4.2 + DLZ + slapd 2.4.7
>
>Hello List
>
>I was running bind 9.4.1-P1-3 with DLZ and openldap 2.3.35-1 with ubuntu
>7.10 (gutsy)
>
>Now i updated to bind 9.4.2 and openldap 2.4.7. My previous config
>stopped working with "lookup query must specify a search base" error.
>
>I am wondering what happend between the versions ?! I suppose its the
>"%" error / issue. What can I do to solve it? The "$"-Patch?
>
>Regards
>
>Daniel
>
>
>
>-------------------------------------------------------------------------
>This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
>Don't miss this year's exciting event. There's still time to save $100. 
>Use priority code J8TL2D2. 
>http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
>_______________________________________________
>Bind-dlz-testers mailing list
>Bind-dlz-testers <at> lists.sourceforge.net
>https://lists.sourceforge.net/lists/listinfo/bind-dlz-testers
>
>
>
>      ____________________________________________________________________________________
>Be a better friend, newshound, and 
>know-it-all with Yahoo! Mobile.  Try it now.  http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ
>
>-------------------------------------------------------------------------
>This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
>Don't miss this year's exciting event. There's still time to save $100. 
>Use priority code J8TL2D2. 
>http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
>_______________________________________________
>Bind-dlz-testers mailing list
>Bind-dlz-testers <at> lists.sourceforge.net
>https://lists.sourceforge.net/lists/listinfo/bind-dlz-testers
>  
>
Dear Rob,
I'm interested to get $ patch , Where can I find it. Kindly Advice.
BR

--

-- 
Ahmed El-Mirghany
Senior Systems Engineer
RHCE,LPI
T. E. Data
Mobile	+2(010)1608655
E-Mail:	mirghany <at> seven7s.net

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone

headers

Rob Butler | 6 May 2008 13:38

Re: bind9-9.4.2 + DLZ + slapd 2.4.7

I haven't been able to locate the patch.  But I know it's out there.

You can also look through the DLZ source code and find where the tokens are and replace the '%' with '$',
creating a 'patch' yourself.

Rob

----- Original Message ----
From: mirghany <mirghany <at> seven7s.net>
To: bind-dlz-testers <at> lists.sourceforge.net
Sent: Tuesday, May 6, 2008 2:50:36 AM
Subject: Re: [Bind-dlz-testers] bind9-9.4.2 + DLZ + slapd 2.4.7

Rob Butler wrote:

>Nothing changed in DLZ.  The LDAP libraries that DLZ links to have been updated and now support '%' escaping.
>
>Yes, you need the '$' patch.
>
>Rob
>
>----- Original Message ----
>From: Daniel Paufler <d.paufler <at> ergomedia.de>
>To: bind-dlz-testers <at> lists.sourceforge.net
>Sent: Monday, May 5, 2008 4:47:14 AM
>Subject: [Bind-dlz-testers] bind9-9.4.2 + DLZ + slapd 2.4.7
>
>Hello List
>
>I was running bind 9.4.1-P1-3 with DLZ and openldap 2.3.35-1 with ubuntu
>7.10 (gutsy)
>
>Now i updated to bind 9.4.2 and openldap 2.4.7. My previous config
>stopped working with "lookup query must specify a search base" error.
>
>I am wondering what happend between the versions ?! I suppose its the
>"%" error / issue. What can I do to solve it? The "$"-Patch?
>
>Regards
>
>Daniel
>
>
>
>-------------------------------------------------------------------------
>This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
>Don't miss this year's exciting event. There's still time to save $100. 
>Use priority code J8TL2D2. 
>http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
>_______________________________________________
>Bind-dlz-testers mailing list
>Bind-dlz-testers <at> lists.sourceforge.net
>https://lists.sourceforge.net/lists/listinfo/bind-dlz-testers
>
>
>
>      ____________________________________________________________________________________
>Be a better friend, newshound, and 
>know-it-all with Yahoo! Mobile.  Try it now.  http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ
>
>-------------------------------------------------------------------------
>This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
>Don't miss this year's exciting event. There's still time to save $100. 
>Use priority code J8TL2D2. 
>http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
>_______________________________________________
>Bind-dlz-testers mailing list
>Bind-dlz-testers <at> lists.sourceforge.net
>https://lists.sourceforge.net/lists/listinfo/bind-dlz-testers
>  
>
Dear Rob,
I'm interested to get $ patch , Where can I find it. Kindly Advice.
BR

-- 
Ahmed El-Mirghany
Senior Systems Engineer
RHCE,LPI
T. E. Data
Mobile    +2(010)1608655
E-Mail:    mirghany <at> seven7s.net

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
_______________________________________________
Bind-dlz-testers mailing list
Bind-dlz-testers <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bind-dlz-testers

      ____________________________________________________________________________________
Be a better friend, newshound, and 
know-it-all with Yahoo! Mobile.  Try it now.  http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone

headers

Jan-Piet Mens | 6 May 2008 14:43

Re: bind9-9.4.2 + DLZ + slapd 2.4.7

On Mon May 05 2008 at 16:03:12 CEST, Daniel Paufler wrote:

> Where do i find the "$" patch?

Attached. (I discuss this in the upcoming book.)

        -JP

--- bind-9.4.2/contrib/dlz/drivers/sdlz_helper.c.orig
+++ bind-9.4.2/contrib/dlz/drivers/sdlz_helper.c
 <at>  <at>  -166,12 +166,12  <at>  <at> 
 		ISC_LIST_APPEND(*tql, tseg, link);

 		/*
-		 * split string at the first "%". set query segment to
+		 * split string at the first "$". set query segment to
 		 * left portion
 		 */
 		tseg->sql = isc_mem_strdup(mctx,
 					   isc_string_separate(&right_str,
-							       "%"));
+							       "$"));
 		if (tseg->sql == NULL) {
 			/* no memory, clean everything up. */
 			result = ISC_R_NOMEMORY;

-------------------------------------------------------------------------
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone

_______________________________________________
Bind-dlz-testers mailing list
Bind-dlz-testers <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bind-dlz-testers

5	March 2013
2	February 2013
2	November 2012
2	October 2012
17	July 2012
10	March 2012
9	February 2012
6	January 2012
1	November 2011
6	October 2011
2	September 2011
5	August 2011
3	July 2011
3	May 2011
10	April 2011
4	March 2011
2	February 2011
2	January 2011
4	December 2010
6	November 2010
7	October 2010
6	September 2010
8	August 2010
4	July 2010
2	June 2010
11	April 2010
1	March 2010
15	January 2010
3	December 2009
20	November 2009
5	October 2009
12	September 2009
5	August 2009
8	July 2009
5	June 2009
47	May 2009
2	April 2009
19	March 2009
7	February 2009
23	January 2009
2	November 2008
1	October 2008
16	September 2008
31	July 2008
2	June 2008
25	May 2008
31	April 2008
19	March 2008
52	February 2008
19	January 2008
25	December 2007
28	November 2007
8	October 2007
26	September 2007
14	August 2007
20	July 2007
3	June 2007
16	May 2007
22	April 2007
24	February 2007
20	January 2007
16	December 2006
38	November 2006
45	October 2006
23	September 2006
41	August 2006
37	July 2006
46	June 2006
16	May 2006
42	April 2006
12	March 2006
38	February 2006
31	January 2006
14	December 2005
17	November 2005
54	October 2005
25	September 2005
54	August 2005
17	July 2005
23	June 2005
3	May 2005
23	April 2005
56	March 2005
24	February 2005
37	January 2005
18	December 2004
33	November 2004
33	October 2004
59	September 2004
65	August 2004
76	July 2004
51	June 2004
32	May 2004
18	April 2004
124	March 2004
53	February 2004
21	January 2004
18	December 2003
51	November 2003
49	October 2003
18	September 2003
14	August 2003
5	July 2003
19	June 2003
39	May 2003
13	April 2003
8	March 2003
5	February 2003

Mon	Tue	Wed	Thu	Fri	Sat	Sun

			1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29	30	31