You can configure {ProductName} with external DNS.
{ProductName} uses the nsupdate utility to update DNS records on the remote server.
To make any changes persistent, you must enter the {foreman-installer} command with the options appropriate for your environment.
-
You must have a configured external DNS server.
-
This guide assumes you have an existing installation.
-
Copy the
/etc/rndc.keyfile from the external DNS server to {ProductName}:# scp root@dns.example.com:/etc/rndc.key /etc/foreman-proxy/rndc.key
-
Configure the ownership, permissions, and SELinux context:
# restorecon -v /etc/foreman-proxy/rndc.key # chown -v root:foreman-proxy /etc/foreman-proxy/rndc.key # chmod -v 640 /etc/foreman-proxy/rndc.key
-
To test the
nsupdateutility, add a host remotely:# echo -e "server DNS_IP_Address\n \ update add aaa.example.com 3600 IN A Host_IP_Address\n \ send\n" | nsupdate -k /etc/foreman-proxy/rndc.key # nslookup aaa.example.com DNS_IP_Address # echo -e "server DNS_IP_Address\n \ update delete aaa.example.com 3600 IN A Host_IP_Address\n \ send\n" | nsupdate -k /etc/foreman-proxy/rndc.key
-
Enter the
{foreman-installer}command to make the following persistent changes to the/etc/foreman-proxy/settings.d/dns.ymlfile:# {foreman-installer} --foreman-proxy-dns=true \ --foreman-proxy-dns-managed=false \ --foreman-proxy-dns-provider=nsupdate \ --foreman-proxy-dns-server="DNS_IP_Address" \ --foreman-proxy-keyfile=/etc/foreman-proxy/rndc.key -
In the {ProjectWebUI}, navigate to Infrastructure > {SmartProxies}.
-
Locate the {ProductName} and select Refresh from the list in the Actions column.
-
Associate the DNS service with the appropriate subnets and domain.