Hi, I'm trying to get ISC dhcp clients to register dynamically against FreeIPA's DNS server. I have had this working before, now After a system crash, and reinstall, all I get are timeout errors when a device is assigned an IP. The DHCP server configuration has not changed, and I generate a new DDNSupdate key.
I am using Fedora 26 with FreeIPA 4.6 from the copr repository.
I have looked through the logs, and I can see in the named.run logs: 13-Sep-2017 21:32:52.612 client @0x7f88d877d6f0 192.168.1.107#61470: UDP request 13-Sep-2017 21:32:52.612 client @0x7f88d877d6f0 192.168.1.107#61470: using view '_default' 13-Sep-2017 21:32:52.612 client @0x7f88d877d6f0 192.168.1.107#61470: request is not signed 13-Sep-2017 21:32:52.612 client @0x7f88d877d6f0 192.168.1.107#61470: recursion available 13-Sep-2017 21:32:52.612 client @0x7f88d877d6f0 192.168.1.107#61470: query
and in the dhpcd logs.. Sep 13 21:32:47 gizmo.evilduckie.com dhcpd[5823]: DHCPREQUEST for 192.168.1.107 from 18:65:90:01:24:eb (Replicant) via enp5s0 Sep 13 21:32:47 gizmo.evilduckie.com dhcpd[5823]: DHCPACK on 192.168.1.107 to 18:65:90:01:24:eb (Replicant) via enp5s0 Sep 13 21:32:59 gizmo.evilduckie.com dhcpd[5823]: Unable to add forward map from Replicant.evilduckie.com to 192.168.1.107: timed out
Everything else seems to be working correctly with DNS.
How do I fix this?
I have made some progress, I reverted to the version of FreeIP in Fedora 26, and reconfigured everything, Now instead of timeout errors, I'm getting "tsig indicates error"
Does anyone have an idea how to fix this?
David Yaffe via FreeIPA-users wrote:
I have made some progress, I reverted to the version of FreeIP in Fedora 26, and reconfigured everything, Now instead of timeout errors, I'm getting "tsig indicates error"
Does anyone have an idea how to fix this?
You've removed all context so I don't know what the previous problem was.
Seeing the logging and output of what you're seeing would be useful. As well as knowing how your IPA server is configured.
rob
freeipa-users@lists.fedorahosted.org