Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Activity
Salvatore Mazzarino
@mazzy89
@captncraig thank you ;-)
i've another question. I'm trying to use dnscontrol with assume role but it does not work
any luck from any of you? the golang aws sdk should work
Salvatore Mazzarino
@mazzy89
how to use IGNORE to ignore apex TXT record? like this is my zone foo.mydomain.com. I would like to ignore a TXT record named foo.mydomain.com
Tom Limoncelli
@tlimoncelli
I'm trying to do a release. As per policy, a release is blocked if any of the "officially supported" providers break.
NAMEDOTCOM now breaks if a TXTMulti has multiple long strings. I've opened a support ticket about it, but I'll change TXTMulti to "Cannot" for this provider if needed.
GANDI-LIVEDNS is "community support". it is breaking but I think it is a problem with the API key.
Karlo
@kbxy_gitlab
Hello, does dnscontrol have some kind of built-in restrictions, for example I want to deny any changes to a certein A record
Karlo
@kbxy_gitlab
Also, follow up question does dnscontrol support aws latency routing policy, and creating health checks for the record?
Tom Limoncelli
@tlimoncelli

Hi folks! We've been talking about what we should include in the next few releases. I summarized it in this doc: https://docs.google.com/document/d/1GHhg15--GUUQOJZpch8FlkTw3yRJi4jxGJYNOujUAD8/edit?usp=sharing

I'd love your feedback!

Anton Yurchenko
@pragmaton
Hi guys. Happy new year!
I'm working on cloudns.net provider (actually, it's solid "betta" already). First of all - thanks for this nice piece of software. This is my fist experiences with golang and it's was very enjoyable. Especially with integrations tests :) I have several questions and I hope you can help me.
1) TestDualProviders doesn't work with ClouDNS. ClouDNS do not allow you to create NS for ns1.otherdomain.tld But work fine for any "real" domain like ns1.otherdomain.com Can we change domain in test to COM ? If yes should I make separate PR ?
2) What branch / commit should I make fork from? Just current master ?
3) I really want to start using it in productions. What is my best option to use my fork ? Something like this https://stackoverflow.com/a/29161911 ?
Anton Yurchenko
@pragmaton

Hi folks! We've been talking about what we should include in the next few releases. I summarized it in this doc: https://docs.google.com/document/d/1GHhg15--GUUQOJZpch8FlkTw3yRJi4jxGJYNOujUAD8/edit?usp=sharing
I'd love your feedback!

I really like idea of DNSProvider refactoring. But would not be better to let DNSProvider provide some CRUD functions ? Like

  • GetZoneRecords
  • CreateRecord
  • UpdateRecord
  • DeleteRecord

But I cant say I understand code base, so maybe I miss some obvious problems with my approach

atma-stackoverflow
@atma-stackoverflow
Rob Cohen
@robcohen
Hey it’s still unclear to me how to use the zones subdirectory, can I break the dnsconfig.js up?
Phil Pennock
@philpennock
You can add a second DNS provider to your domains, of type bind, and have it write the full generated zones in bind format into that directory.
You control where the bind provider writes to with the "directory" config key in creds.json but it defaults to zones; so one line in my dnsconfig.js file reads: D('synadia.cloud', REG_NONE, DnsProvider(DNSIMPLE), DnsProvider(DNS_BIND),
Then, without digging my auth token for the first provider out of my secrets store, I can provide a dummy value and run:
DNSIMPLE_TOKEN=foo dnscontrol push -providers bind
Joel Margolis
@teknogeek
hey @tlimoncelli, you around? I am updating Hexonet in dnscontrol and wanted to run something by you
Tom Limoncelli
@tlimoncelli
I'm here. Sorry... I hadn't been in chat for a while :-(
@robcohen Yes, if you want to store different zones in different subdirectories, you'll need to set up different BIND entries in creds.js. It should work.
@robcohen If you want to zoom out and tell me what you are trying to achieve, I might have more useful suggestions.
@teknogeek I'm here now. How may I help?
Folks: We've been wanting to reengineer the integration tests so that specifying tests to skip is easier. Here's a mock up of what I think it could look like. Feedback appreciated. https://github.com/StackExchange/dnscontrol/pull/678/files
Joel Margolis
@teknogeek
@tlimoncelli thanks for pinging :) I'm all set now, we chatted in my PR. thanks for pulling them in!
Tom Limoncelli
@tlimoncelli
ANNOUNCEMENT: dnscontrol $VERSION has been released! https://github.com/StackExchange/dnscontrol/releases/tag/v3.0.0
Matt Holt
@mholt
:wave: Hi there. (Happy Easter!) I'm looking to replace lego's 60+ DNS providers (https://github.com/go-acme/lego/tree/master/providers/dns ) with something more general-purpose like DNSControl. Looks pretty promising at the outset, but I have some questions.
I'm writing a Go program so I don't want to / can't really use the JS API and DSL... what exactly is the right Go approach for "Set this A record to this value" or "Add this TXT record" or "Delete this TXT record"?
Matt Holt
@mholt
Can I just do something like dnsProvider.SetRecords(domain, records) ?
Matt Holt
@mholt
Okay, I think I figured it out. Construct the provider like cloudflare.CloudflareApi and then the models.DomainConfig, then call GetDomainCorrections() and for each one, call F(). :sweat_smile:
Any chance Cloudflare will be updated to support the new Zone keys rather than global API key?
Also, is there a way to set or create just a single record without deleting all the others? I don't want to have to keep a complete zone file locally. I just know that "whatever the records are now, simply change these, leave the rest the same"
Matt Holt
@mholt
It seems as though KeepUnknown = true should do what I want, but when the record already exists I still get an error that it already exists instead of a no-op
Matt Holt
@mholt
@tlimoncelli I think this is a bug in the Cloudflare provider. Do you know who maintains it?
Matt Holt
@mholt
Ah... nevermind, it was an issue from Go modules. I've filed an issue :) Just need to update go.mod to use /v3
Matt Holt
@mholt
Is there any possibility of moving the DNS provider implementations into a separate repo, or at least a separate Go module? To lighten the dev bloat and also decrease the size of binaries
Lego has this problem... which is one reason why I am thinking of maintaining a fork of it
Phil Pennock
@philpennock
Is there any framework for having records in one zone depend upon results from another zone? Context is that DNSimple have DNSSEC which results in a DS record which needs to be set in the parent. If the parent is also managed with dnscontrol, it would be good to be able to glue the two together by registering the DS based upon whatever dnscontrol sees live.
Phil Pennock
@philpennock
And is there any framework for Bind-style TYPEXXXX stuff to bypass known RR-types? Or gracefully handle unexpected types from the server? At present, once I add a DS record to Gandi, dnscontrol will panic when it sees it.
Tom Limoncelli
@tlimoncelli
We don't do a great job of handling unexpected types. I haven't had a pressing need. Right now the code panic()s because I'd rather "fail fast" rather than do a half-assed job. I would love to get rid of all those panic()s.
ANNOUNCEMENT: dnscontrol v3.1.1 has been released! https://github.com/StackExchange/dnscontrol/releases/tag/v3.1.1 (what happened to 3.1.0? I had a technical issue and decided it was easier to skip that version number).
Blake Bourque
@TechplexEngineer
Hello All, I just used dnscontrol get-zones to export my zone, when I run dnscontrol preview it is recommending to delete two NS entries that are "NAMESERVER()" entries.
I'm assuming the list of NAMESERVER entries that I have configured at my registrar should have corresponding NS records in both of my dns hosting providers zones. Is that right?
Tom Limoncelli
@tlimoncelli
ANNOUNCEMENT: dnscontrol 3.3.0 has been released! https://github.com/StackExchange/dnscontrol/releases/tag/v3.3.0

Hello All, I just used dnscontrol get-zones to export my zone, when I run dnscontrol preview it is recommending to delete two NS entries that are "NAMESERVER()" entries.
I'm assuming the list of NAMESERVER entries that I have configured at my registrar should have corresponding NS records in both of my dns hosting providers zones. Is that right?

Yes, exactly. Those NAMESERVER() lines are mostly suggestions. Usually they can be deleted.

Tom Limoncelli
@tlimoncelli

ANNOUNCEMENT: dnscontrol 3.4.2 has been released!
https://github.com/StackExchange/dnscontrol/releases/tag/v3.4.2

(Version 3.4.0 and 3.4.1 were skipped due to an issue while making the release.)

Andrew Backeby
@backeby
So, I'm running white-label DNS-servers in AWS Route 53, (with a reusable delegation set) requiring me to be able to modify the SOA for each and every new zone I add. I see that the bind-provider can modify the SOA record, so why not the r53? It is supported in the aws apis. Anyone done something similar?
2 replies
Tom Limoncelli
@tlimoncelli
ANNOUNCEMENT: dnscontrol v3.5.0 has been released! https://github.com/StackExchange/dnscontrol/releases/tag/v3.5.0
Tom Limoncelli
@tlimoncelli
ANNOUNCEMENT: dnscontrol v3.6.0 has been released! https://github.com/StackExchange/dnscontrol/releases/tag/v3.6.0
Tom Limoncelli
@tlimoncelli
ANNOUNCEMENT: dnscontrol v3.7.0 has been released! https://github.com/StackExchange/dnscontrol/releases/tag/v3.7.0
Tom Limoncelli
@tlimoncelli
ANNOUNCEMENT: dnscontrol v3.8.0 has been released! https://github.com/StackExchange/dnscontrol/releases/tag/v3.8.0