DNS entries for IPA replicas
I'm still getting up-to-speed with IPA (and RHEL in general) - thus far I have always deployed a single IPA server in my lab. I also host my DNS on separate hosts (and append the ZONE file with the IPA provided data).
Today I decided to start using replicated IPA hosts. So, in my case I will use RHIPA01 (master), and RHIPA02 (replica)
My question is: do I simply append the data for the replica (RHIPA02) and include RHIPA01?
If so - does it simply round-robin the requests?
; ldap servers
_ldap._tcp IN SRV 0 100 389 rhipa01
_ldap._tcp IN SRV 0 100 389 rhipa02
;kerberos realm
_kerberos IN TXT AREA51.PRIVATE
; kerberos servers
_kerberos._tcp IN SRV 0 100 88 rhipa01
_kerberos._udp IN SRV 0 100 88 rhipa01
_kerberos-master._tcp IN SRV 0 100 88 rhipa01
_kerberos-master._udp IN SRV 0 100 88 rhipa01
_kpasswd._tcp IN SRV 0 100 464 rhipa01
_kpasswd._udp IN SRV 0 100 464 rhipa01
; kerberos servers
_kerberos._tcp IN SRV 0 100 88 rhipa02
_kerberos._udp IN SRV 0 100 88 rhipa02
_kerberos-master._tcp IN SRV 0 100 88 rhipa02
_kerberos-master._udp IN SRV 0 100 88 rhipa02
_kpasswd._tcp IN SRV 0 100 464 rhipa02
_kpasswd._udp IN SRV 0 100 464 rhipa02
Otherwise, do I remove the rhipa01 information and replace it all with rhipa02?
Responses
Red Hat
Guru
25384 points
Hi James,
Looks like we've stumped the community here, so I've opened a support case on your behalf.
-David
Replica's are added by default the same priority and weight in the DNS service record, however it can be customized if required. eg: host -t srv _ldap._tcp.example.com ipaserver1.example.com ... _ldap._tcp.example.com has SRV record 0 100 389 ipaserver2.example.com. _ldap._tcp.example.com has SRV record 0 100 389 ipaserver1.example.com. It is possible to edit those settings with ipa command using 'dnsrecord-mod' or 'dnsrecord-add': " Refer: http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/Identity_Management_Guide/load-balancing.html