[Date Prev][Date Next] [Chronological] [Thread] [Top]

DNS configuration

To: OpenLDAP-software@OpenLDAP.org
Subject: DNS configuration
From: "Hai Zaar" <haizaar@gmail.com>
Date: Mon, 11 Sep 2006 11:15:11 +0300
Content-disposition: inline
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=eUE2z0uXFQqh+oFG2Aoml1P13TUE3iYP9WeyN9jDXqONURHO9pTm0yNDDllHDlvSTHjqlp0rxlFCQ2AAoH/UWgXix3eoe/4JW7bQ+0lZ+L1WF7IRcgeGxvxwOQi79xvdN4nC/BrkcWSOqmb/l5QUa3m5YrwuqPjfxbBFTLdcJ98=

Dear list!

I have a DNS related question.

I have server named bigbox.example.com
bigbox hosts LDAP and Kerberos KDC for domain .example.com
So there are three 'A' DNS entries that point to the same IP (in that order):
   A    bigbox.example.com         10.0.0.10
   A    directory.example.com      10.0.0.10
   A    kerberos.example.com      10.0.0.10

So when I do ldapsearch, it
* looks for A record of directory.example.com
* get 10.0.0.10
* sends PTR query for 10.0.0.10.in-addr.arpa
* gets 'PTR bigbox.example.com PTR directory.example.com PTR
kerberos.example.com'
* And then asks KDC for ticket for ldap/bigbox.example.com, instead of
ldap/directory.example.com

So, what is want is that ldapsearch (and friends) should always refer
ldap server as directory.example.com and not bigbox.example.com
Am I missing something in my DNS configuration or is it just
ldapsearch specific behavior?


--
Zaar

Follow-Ups:
- Re: DNS configuration
  - From: Howard Chu <hyc@symas.com>
- Re: DNS configuration
  - From: paul kÃlle <pkoelle@gmail.com>
- Re: DNS configuration
  - From: Atom Powers <apowers@digipen.edu>

Prev by Date: disabled versus locked
Next by Date: Re: DNS configuration
Index(es):
- Chronological
- Thread