Commit 5df784602e4950956150a72d8e6c1007ab481248
1 parent
df251b1c
updated README.md to make it readable
Showing
1 changed file
with
19 additions
and
0 deletions
README.md
| @@ -77,62 +77,81 @@ are implemented: | @@ -77,62 +77,81 @@ are implemented: | ||
| 77 | * axfr - import/synchronize a DNS zone in FreeIPA using a zone-xfer. | 77 | * axfr - import/synchronize a DNS zone in FreeIPA using a zone-xfer. |
| 78 | for example, to migrate / synchronize fromain ```domain.tld``` from DNS | 78 | for example, to migrate / synchronize fromain ```domain.tld``` from DNS |
| 79 | server ```192.168.1.53``` without checking DNS overlap, issue the command: | 79 | server ```192.168.1.53``` without checking DNS overlap, issue the command: |
| 80 | + | ||
| 80 | ~~~ | 81 | ~~~ |
| 81 | ./freeipa-dns.py -v axfr -T 172.1.2.53 -n -f none 192.168.1.53 domain.tld | 82 | ./freeipa-dns.py -v axfr -T 172.1.2.53 -n -f none 192.168.1.53 domain.tld |
| 82 | ~~~ | 83 | ~~~ |
| 84 | + | ||
| 83 | in addition, this will ensure zone-xfers are allowed from ```172.1.2.53``` | 85 | in addition, this will ensure zone-xfers are allowed from ```172.1.2.53``` |
| 84 | and disable forwarding in FreeIPA. | 86 | and disable forwarding in FreeIPA. |
| 87 | + | ||
| 85 | * copy - copy a DNS record in FreeIPA within or between zones | 88 | * copy - copy a DNS record in FreeIPA within or between zones |
| 86 | for example, to copy ```A``` and ```AAAA``` from host ```wwww.domain.tld``` | 89 | for example, to copy ```A``` and ```AAAA``` from host ```wwww.domain.tld``` |
| 87 | to the domain ```domain.tld``` itself, issue the command: | 90 | to the domain ```domain.tld``` itself, issue the command: |
| 91 | + | ||
| 88 | ~~~ | 92 | ~~~ |
| 89 | ./freeipa-dns.py -v copy -l A AAAA wwww.domain.tld -T domain.tld | 93 | ./freeipa-dns.py -v copy -l A AAAA wwww.domain.tld -T domain.tld |
| 90 | ~~~ | 94 | ~~~ |
| 95 | + | ||
| 91 | * move - move a DNS record in FreeIPA from one one to another | 96 | * move - move a DNS record in FreeIPA from one one to another |
| 92 | for example, to move ```host1.int``` in zone ```domain.tld``` to ```host``` | 97 | for example, to move ```host1.int``` in zone ```domain.tld``` to ```host``` |
| 93 | in zone ```int.domain.tld``` issue the command: | 98 | in zone ```int.domain.tld``` issue the command: |
| 99 | + | ||
| 94 | ~~~ | 100 | ~~~ |
| 95 | ./freeipa-dns.py -v move -z domain.tld host.int host.int.domain.tld | 101 | ./freeipa-dns.py -v move -z domain.tld host.int host.int.domain.tld |
| 96 | ~~~ | 102 | ~~~ |
| 103 | + | ||
| 97 | * serial - update (set) zone serial(s) in FreeIPA, supporting both RFC1912 | 104 | * serial - update (set) zone serial(s) in FreeIPA, supporting both RFC1912 |
| 98 | style serials (YYYYMMDD##) based on current date and setting the serial to | 105 | style serials (YYYYMMDD##) based on current date and setting the serial to |
| 99 | a specific value. To set the serial of a zone to revision 2 of today for | 106 | a specific value. To set the serial of a zone to revision 2 of today for |
| 100 | zones ```zone1.mydomain.tld``` and ```zone2.mydomain.tld```, run: | 107 | zones ```zone1.mydomain.tld``` and ```zone2.mydomain.tld```, run: |
| 108 | + | ||
| 101 | ~~~~ | 109 | ~~~~ |
| 102 | ./freeipa-dns.py -v serial -t 2 zone1.mydomain.tld zone2.mydomain.tld | 110 | ./freeipa-dns.py -v serial -t 2 zone1.mydomain.tld zone2.mydomain.tld |
| 103 | ~~~~ | 111 | ~~~~ |
| 112 | + | ||
| 104 | by default this command will set the serial to a larger value (which can be | 113 | by default this command will set the serial to a larger value (which can be |
| 105 | overridden with the ```-f```/```--force``` flag) | 114 | overridden with the ```-f```/```--force``` flag) |
| 115 | + | ||
| 106 | * generate - generate number-range DNS records/attributes in FreeIPA | 116 | * generate - generate number-range DNS records/attributes in FreeIPA |
| 107 | This is meant to generate series of hosts or attributes, for example, to | 117 | This is meant to generate series of hosts or attributes, for example, to |
| 108 | generate hosts ```dhcp-01``` to ```dhcp-10``` in zone ```int.mydomain.tld``` | 118 | generate hosts ```dhcp-01``` to ```dhcp-10``` in zone ```int.mydomain.tld``` |
| 109 | with ip addresses starting from ```192.168.2.100``` issue to command: | 119 | with ip addresses starting from ```192.168.2.100``` issue to command: |
| 120 | + | ||
| 110 | ~~~ | 121 | ~~~ |
| 111 | ./freeipa-dns.py -v generate int.mydomain.tld dhcp-%02d -4 192.168.2.100 \ | 122 | ./freeipa-dns.py -v generate int.mydomain.tld dhcp-%02d -4 192.168.2.100 \ |
| 112 | --auto-increment-a -n 5 | 123 | --auto-increment-a -n 5 |
| 113 | ~~~ | 124 | ~~~ |
| 125 | + | ||
| 114 | it can also be used to generate a farm of web servers in different subnets | 126 | it can also be used to generate a farm of web servers in different subnets |
| 115 | with the command: | 127 | with the command: |
| 128 | + | ||
| 116 | ~~~ | 129 | ~~~ |
| 117 | ./freeipa-dns.py -v generate int.mydomain.tld www -4 192.168.%d.80 -n 5 | 130 | ./freeipa-dns.py -v generate int.mydomain.tld www -4 192.168.%d.80 -n 5 |
| 118 | ~~~ | 131 | ~~~ |
| 132 | + | ||
| 119 | * reverse-ptr - create/update reverse DNS (PTR) entries in FreeIPA | 133 | * reverse-ptr - create/update reverse DNS (PTR) entries in FreeIPA |
| 120 | With this command reverse-zones can be automatically maintained. it scans | 134 | With this command reverse-zones can be automatically maintained. it scans |
| 121 | the zones in FreeIPA for ```A``` and ```AAAA``` records and creates the | 135 | the zones in FreeIPA for ```A``` and ```AAAA``` records and creates the |
| 122 | corresponding records in the ```in-addr.arpa``` and ```ip6.arpa``` zones. | 136 | corresponding records in the ```in-addr.arpa``` and ```ip6.arpa``` zones. |
| 123 | The reverse zones must exist, and can also be created with this command by: | 137 | The reverse zones must exist, and can also be created with this command by: |
| 138 | + | ||
| 124 | ~~~ | 139 | ~~~ |
| 125 | ./freeipa-dns.py -v reverse-ptr -n -p -c 10. 10.100 192.168 2001:0db8:85a3 | 140 | ./freeipa-dns.py -v reverse-ptr -n -p -c 10. 10.100 192.168 2001:0db8:85a3 |
| 126 | ~~~ | 141 | ~~~ |
| 142 | + | ||
| 127 | which will create the reverse zones for prefixes 10.* 10.100.* 192.168.* | 143 | which will create the reverse zones for prefixes 10.* 10.100.* 192.168.* |
| 128 | and ipv6 prefix 2001:0db8:85a3. Reverse (PTR) records will automatically be | 144 | and ipv6 prefix 2001:0db8:85a3. Reverse (PTR) records will automatically be |
| 129 | created in the correct zone with the following command: | 145 | created in the correct zone with the following command: |
| 146 | + | ||
| 130 | ~~~ | 147 | ~~~ |
| 131 | ./freeipa-dns.py -v reverse-ptr -a | 148 | ./freeipa-dns.py -v reverse-ptr -a |
| 132 | ~~~ | 149 | ~~~ |
| 150 | + | ||
| 133 | by default, the command will not overwrite existing records, (which can be | 151 | by default, the command will not overwrite existing records, (which can be |
| 134 | overridden with the ```-o```/```--override``` flag). To force a PTR record | 152 | overridden with the ```-o```/```--override``` flag). To force a PTR record |
| 135 | to point to a specific host, e.g. ```www.mydomain.tld``` run the command: | 153 | to point to a specific host, e.g. ```www.mydomain.tld``` run the command: |
| 154 | + | ||
| 136 | ~~~ | 155 | ~~~ |
| 137 | ./freeipa-dns.py -v reverse-ptr -o -z mydomain.tld -H www | 156 | ./freeipa-dns.py -v reverse-ptr -o -z mydomain.tld -H www |
| 138 | ~~~ | 157 | ~~~ |