[Bug 580361] New: netconfig(8) manpage misses crucial dnsmasq setup information
http://bugzilla.novell.com/show_bug.cgi?id=580361 http://bugzilla.novell.com/show_bug.cgi?id=580361#c0 Summary: netconfig(8) manpage misses crucial dnsmasq setup information Classification: openSUSE Product: openSUSE 11.2 Version: Final Platform: All OS/Version: openSUSE 11.2 Status: NEW Severity: Minor Priority: P5 - None Component: Network AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: pieter@hollants.com QAContact: qa@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; de; rv:1.9.2) Gecko/20100115 Firefox/3.6 (.NET CLR 3.5.30729) I was trying to find out how to setup the network configuration so that I could run my own local nameserver (dnsmasq) and have dynamic nameservers stored not in resolv.conf but an appropriate seperate file. So I was looking into the netconfig(8) manpage at first. It mentioned the NETCONFIG_DNS_FORWARDER variable with a possible setting of "dnsmasq", but no further info on what would actually change then. I found this information in /usr/share/doc/packages/sysconfig/README.netconfig, but seeing it is crucial it should be in the manpage: --> Pls add to the appropriate paragraph a notice for dnsmasq that /var/run/dnsmasq-forwarders.conf will be modified instead of /etc/resolv.conf, which should be referenced in dnsmasq with the "resolv-file" option. The same for bind (/etc/name.d/forwarders.conf and whatever option necessary to include that file). I was then still having a NETCONFIG_DNS_STATIC_SERVERS entry 127.0.0.1, which, I thought, would be written to /etc/resolv.conf, but the dynamic data would go into /var/run/dnsmasq-forwarders.conf. Instead static and dynamic data go in the latter, which is, no doubt, correct, but confused me, and I wondered whether I had to modify /etc/resolv.conf manually. It wasn't until I read through /etc/netconfig.d/dns-resolver that I learned that no "nameserver 127.0.0.1" entry is required at all since glib defaults to localhost if no "nameserver" entries are given. --> Pls add to the appropriate paragraph also a note that 127.0.0.1 should not be declared in NETCONFIG_DNS_STATIC_SERVERS since glibc will automatically use the local nameserver. Reproducible: Always Steps to Reproduce: 1. 2. 3. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=580361 http://bugzilla.novell.com/show_bug.cgi?id=580361#c Marcus Meissner <meissner@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team-screening@forge.pr |mt@novell.com |ovo.novell.com | -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=580361 http://bugzilla.novell.com/show_bug.cgi?id=580361#c1 Marius Tomaschewski <mt@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |ke@novell.com --- Comment #1 from Marius Tomaschewski <mt@novell.com> 2010-02-18 11:48:15 UTC --- (In reply to comment #0)
--> Pls add to the appropriate paragraph a notice for dnsmasq that /var/run/dnsmasq-forwarders.conf will be modified instead of /etc/resolv.conf, which should be referenced in dnsmasq with the "resolv-file" option. The same for bind (/etc/name.d/forwarders.conf and whatever option necessary to include that file).
[...] The netconfig.8 IMO documents this already: "[...] NETCONFIG MODULES [...] dns-bind This module writes the DNS nameservers as forwarders for the bind nameserver into the /etc/named.d/forwarders.conf file. Please verify that this file is included in the options section of /etc/named.conf, like: options { #forward first; include "/etc/named.d/forwarders.conf"; # [...] You can use the yast2 dns-server module to configure bind as forwarder. [...] dns-dnsmasq This module writes the DNS nameservers as forwarders for the dnsmasq nameserver into the /var/run/dnsmasq-forwarders.conf file. Please verify, that this file is set in the resolv-file keyword in the /etc/dnsmasq.conf. [...]"
--> Pls add to the appropriate paragraph also a note that 127.0.0.1 should not be declared in NETCONFIG_DNS_STATIC_SERVERS since glibc will automatically use the local nameserver.
Yes. It is documented in "man resolv.conf", but it makes sense to add it and filter out at least 127.0.0.1 and ::1 from dnsmasq/bind forwarders list. BTW: We are improving the NETCONFIG_DNS_FORWARDER documentation in sysconfig variables and the man page in bug 580506 as well. All together, I'm going to change to: -## Type: string +## Type: string(resolver,bind,dnsmasq,) ## Default: "resolver" # # Defines the name of the DNS forwarder that has to be configured. +# Currently implemented are "bind", "dnsmasq" and "resolver", that +# causes to write the name server IP addresses to /etc/resolv.conf +# only (no forwarder). Empty string defaults to "resolver". # NETCONFIG_DNS_FORWARDER="resolver" ## Type: string ## Default: "" # # List of DNS domain names used for host-name lookup. +# It is written as search list into the /etc/resolv.conf file. # NETCONFIG_DNS_STATIC_SEARCHLIST="" ## Type: string ## Default: "" # # List of DNS nameserver IP addresses to use for host-name lookup. +# When the NETCONFIG_DNS_FORWARDER variable is set to "resolver", +# the name servers are written directly to /etc/resolv.conf. +# Otherwise, the nameserver are written into a forwarder specific +# configuration file and the /etc/resolv.conf does not contain any +# nameservers causing the glibc to use the name server on the local +# machine (the forwarder). See also netconfig(8) manual page. # NETCONFIG_DNS_STATIC_SERVERS="" -## Type: string +## Type: string(yes,no,) ## Default: "yes" # # Defines whether to set the default NIS domain. When enabled and no domain [...] NETCONFIG_NIS_SETDOMAINNAME="yes" -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=580361 http://bugzilla.novell.com/show_bug.cgi?id=580361#c2 --- Comment #2 from Marius Tomaschewski <mt@novell.com> 2010-02-18 11:54:58 UTC --- Created an attachment (id=343169) --> (http://bugzilla.novell.com/attachment.cgi?id=343169) Patch improving the documentation -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=580361 http://bugzilla.novell.com/show_bug.cgi?id=580361#c3 --- Comment #3 from Marius Tomaschewski <mt@novell.com> 2010-02-18 12:37:28 UTC --- Created an attachment (id=343180) --> (http://bugzilla.novell.com/attachment.cgi?id=343180) Patch for factory that filters the loopback addresses -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=580361 http://bugzilla.novell.com/show_bug.cgi?id=580361#c5 Christian Dengler <cdengler@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |cdengler@novell.com --- Comment #5 from Christian Dengler <cdengler@novell.com> 2010-02-18 15:59:11 UTC --- I think we don't need an update here. We can push it into the next update. It is not necessary to trigger one at once. -1 -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=580361 http://bugzilla.novell.com/show_bug.cgi?id=580361#c7 Christian Dengler <cdengler@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW Info Provider|maintenance@opensuse.org | --- Comment #7 from Christian Dengler <cdengler@novell.com> 2010-02-23 13:26:36 UTC --- So no update here for 11.2. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=580361 http://bugzilla.novell.com/show_bug.cgi?id=580361#c8 Marius Tomaschewski <mt@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |FIXED --- Comment #8 from Marius Tomaschewski <mt@novell.com> 2010-03-15 15:22:58 UTC --- The fix for this issue is sysconfig 0.73.4, that is, inside of this submission to factory: 34701 State:new By:mtomaschewski When:2010-03-12T19:02:02 submit: Base:System/sysconfig -> openSUSE:Factory Descr: 'merged fixes sle11-sp1-rc1' +- Improved netconfig.8 DNS forwarder/static servers documentation + and yast2 meta tags in network/config file to show the currently + available settings (bnc#580361,bnc#580506). +- Filter out loopback addresses from forwarder configs (dnsmasq, + bind) in NETCONFIG_DNS_FORWARDER!=resolver mode, so they don't + cause any loop and allow them in /etc/resolv.conf to make it + possible to get the system running, when the glibc feature to + use the name server on the local machine gets broken again or + the user wants ipv4 only (bnc#580361,bnc#549447,bnc#441947). -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=580361 http://bugzilla.novell.com/show_bug.cgi?id=580361#c9 --- Comment #9 from Marius Tomaschewski <mt@novell.com> 2010-03-15 15:24:09 UTC --- s/issue is sysconfig 0.73.4/issue is in sysconfig 0.73.4/ -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com