From 16b5e17c198da48382157d2dd59aaff8c07793e4 Mon Sep 17 00:00:00 2001 From: Stephen Smoogen Date: Wed, 20 Jul 2022 09:45:04 -0400 Subject: [PATCH] Fix DNS issues in IAD2 Problem: Fedora Infrastructure has used various DNS servers in PHX2. Those no longer exist. This is causing breakage in DNS and many other internal services. Fix: Work with Red Hat IT - to get new DNS servers which are infoblox devices. - get firewall rules fixed to that - update named.conf to have new ips - remove old ips which no longer exist. Signed-off-by: Stephen Smoogen --- roles/dns/files/named.conf | 26 +++++++++++++------------- 1 file changed, 13 insertions(+), 13 deletions(-) diff --git a/roles/dns/files/named.conf b/roles/dns/files/named.conf index e9df836f77..908da089ff 100644 --- a/roles/dns/files/named.conf +++ b/roles/dns/files/named.conf @@ -22,7 +22,7 @@ acl "ns_redhat" { 66.187.233.210; 209.132.183.22; 209.132.183.30; 209.132.183.2; // acl "iad2net" { 10.3.160.0/19; 10.16.0.0/24; }; acl "rdu2net" { 172.31.1.0/24; 172.31.2.0/24; }; -acl "rh-slaves" { 10.5.30.78; 10.11.5.70; 10.5.30.45; 10.5.30.46; }; +acl "rh-slaves" { 10.11.5.70; }; acl "rh" { 10.0.0.0/8; }; // options { @@ -101,7 +101,7 @@ view "IAD2" { zone "redhat.com" { type forward; forward only; - forwarders { 10.5.26.20; 10.5.26.21; }; + forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; }; }; zone "projectatomic.io" { @@ -140,31 +140,31 @@ view "IAD2" { zone "3.10.in-addr.arpa" { type forward; forward only; - forwarders { 10.5.26.20; 10.5.26.21; }; + forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; }; }; zone "4.10.in-addr.arpa" { type forward; forward only; - forwarders { 10.5.26.20; 10.5.26.21; }; + forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; }; }; zone "5.10.in-addr.arpa" { type forward; forward only; - forwarders { 10.5.26.20; 10.5.26.21; }; + forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; }; }; zone "10.in-addr.arpa" { type forward; forward only; - forwarders { 10.5.26.20; 10.5.26.21; }; + forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; }; }; zone "186.132.209.in-addr.arpa." { type forward; forward only; - forwarders { 10.39.144.11; 10.5.19.1; 10.11.191.1; }; + forwarders { 10.39.144.11; 10.69.144.11; 10.11.191.1; }; }; zone "phx2.fedoraproject.org" { @@ -322,7 +322,7 @@ view "RDU2" { zone "redhat.com" { type forward; forward only; - forwarders { 10.5.26.20; 10.5.26.21; }; + forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; }; }; zone "projectatomic.io" { @@ -361,31 +361,31 @@ view "RDU2" { zone "3.10.in-addr.arpa" { type forward; forward only; - forwarders { 10.5.26.20; 10.5.26.21; }; + forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; }; }; zone "4.10.in-addr.arpa" { type forward; forward only; - forwarders { 10.5.26.20; 10.5.26.21; }; + forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; }; }; zone "5.10.in-addr.arpa" { type forward; forward only; - forwarders { 10.5.26.20; 10.5.26.21; }; + forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; }; }; zone "10.in-addr.arpa" { type forward; forward only; - forwarders { 10.5.26.20; 10.5.26.21; }; + forwarders { 10.2.32.1; 10.11.5.19; 10.38.5.26; 10.68.5.26; }; }; zone "186.132.209.in-addr.arpa." { type forward; forward only; - forwarders { 10.39.144.11; 10.5.19.1; 10.11.191.1; }; + forwarders { 10.39.144.11; 10.69.144.11; 10.11.191.1; }; }; zone "phx2.fedoraproject.org" {