It seems fairly straight forward (DNS Clustering), but maybe I'm missing something.
I have 2 cpanel servers. And putting up 1 cpanel-dnsonly server.
I've tried both write-only and sync-changes to cpanel-dnsonly. However, when I look in /var/named there are no zone files from any of the cpanel servers. And the regular cpanel servers are also not propagating to each other. And an nslookup bounces the lookup to another DNS. I've also seen the cpanel-dns go into "Disabled due to connection failures." this state, but looking at firewall logs there's nothing showing up that is being blocked.
The end result here however is at some point I want the 3 cpanels to act as internal DNS, but the cpanel-dnsonly server will be synced (via vendor provided scripts) to an outsourced DNS service that will propagate my external dns through several servers within their network.
But I of course need to get the initial syncing to work! I've read the documents and how-tos, every thing looks correct, but no zone files are showing up.
Another question: What are the minimum security assignments do I give for an API token for dns cluster services?
I have 2 cpanel servers. And putting up 1 cpanel-dnsonly server.
I've tried both write-only and sync-changes to cpanel-dnsonly. However, when I look in /var/named there are no zone files from any of the cpanel servers. And the regular cpanel servers are also not propagating to each other. And an nslookup bounces the lookup to another DNS. I've also seen the cpanel-dns go into "Disabled due to connection failures." this state, but looking at firewall logs there's nothing showing up that is being blocked.
The end result here however is at some point I want the 3 cpanels to act as internal DNS, but the cpanel-dnsonly server will be synced (via vendor provided scripts) to an outsourced DNS service that will propagate my external dns through several servers within their network.
But I of course need to get the initial syncing to work! I've read the documents and how-tos, every thing looks correct, but no zone files are showing up.
Another question: What are the minimum security assignments do I give for an API token for dns cluster services?