Bug #14749
closed
DNS proxy is no enable after installation.
Description
Hi Team
i install katello dns proxy using the following configuration
foreman-installer --scenario katello --foreman-proxy-dns true --foreman-proxy-dns-interface ens192 --foreman-proxy-dns-zone pp.example.net.nz --foreman-proxy-dns-reverse 179.25.172.in-addr.arpa --foreman-proxy-dns-provider nsupdate_gss --foreman-proxy-dns-tsig-principal foremanproxy@PP.VFICONNECT.NET.NZ --foreman-proxy-dns-tsig-keytab /etc/foreman-proxy/dns.keytab --foreman-proxy-dns-server 172.25.176.37 --foreman-proxy-dns-forwarders 172.25.176.38 -v
instead to use the default nsupdate i'm using nsupdate_gss for create the record in a Active directory
When i go to the gui the smart proxy only have the following services
Pulp, TFTP, DHCP, Puppet, and Puppet CA
I try refresh the features and nothing happen
The fix was on /etc/foreman-proxy is the 2 filesdns_nsupdate.yml
-- #
- Configuration file for 'nsupdate' dns provider #
- use this setting if you are managing a dns server which is not localhost though this proxy
:dns_server: 172.25.176.37
-- #
- Configuration file for 'nsupdate_gss' dns provider with GSS-TSIG support #
- use this setting if you are managing a dns server which is not localhost though this proxy
:dns_server: 172.25.176.37 - use dns_tsig_* for GSS-TSIG updates using Kerberos. Required for Windows MS DNS with
- Secure Dynamic Updates, or BIND as used in FreeIPA. Set dns_provider to nsupdate_gss.
:dns_tsig_keytab: /etc/foreman-proxy/dns.keytab
:dns_tsig_principal: foremanproxy@PP.VFICONNECT.NET.NZ
The solution was on the file dns_nsupdate.yml
comment out
#:dns_key: /etc/rndc.key
after do this restart the foreman-proxy service
systemctl restart foreman-proxy
Now come back to the GUI refresh the features and Bam!!!!
Pulp, TFTP, DNS, DHCP, Puppet, and Puppet CA
DNS Proxy now is enable
Updated by 
Updated by 
Updated by