StackExchange/dnscontrol
1
1
Fork 0
mirror of https://github.com/StackExchange/dnscontrol.git synced 2025-02-24 07:33:03 +08:00
Code Issues Projects Releases Packages Wiki Activity

DOCS: Add info about R53 dotless CNAME bug (#901)

Browse source
This commit is contained in:
Tom Limoncelli 2020-10-10 09:02:31 -04:00 committed by GitHub
parent e92717fc77
commit d27e9d3eb7
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 33 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

33
docs/_providers/route53.md
View file

@ -116,6 +116,9 @@ delegation set. Note that you you only want the portion of the `Id` after the `
> Delegation sets only apply during `create-domains` at the moment. Further work needs to be done to have them apply during `push`. > Delegation sets only apply during `create-domains` at the moment. Further work needs to be done to have them apply during `push`.
## Caveats ## Caveats
### Route53 errors if it is not the DnsProvider
This code may not function properly if a domain has R53 as a Registrar This code may not function properly if a domain has R53 as a Registrar
but not as a DnsProvider. The situation is described in but not as a DnsProvider. The situation is described in
[PR#155](https://github.com/StackExchange/dnscontrol/pull/155). [PR#155](https://github.com/StackExchange/dnscontrol/pull/155).
@ -131,6 +134,36 @@ Done. 1 corrections.
If this happens to you, we'd appreciate it if you could help us fix the code. In the meanwhile, you can give the account additional IAM permissions so that it can do DNS-related actions, or simply use `NewRegistrar(..., 'NONE')` for now. If this happens to you, we'd appreciate it if you could help us fix the code. In the meanwhile, you can give the account additional IAM permissions so that it can do DNS-related actions, or simply use `NewRegistrar(..., 'NONE')` for now.
### Bug when converting new zones
You will see some weirdness if:
1. A CNAME was created using the web UI
2. The CNAME's target does NOT end with a dot.
What you will see: When dnscontrol tries to update such records, R53
only updates the first one. For example if DNSControl is updating 3
such records, you will need to run `dnscontrol push` three times for
all three records to update. Each time DNSControl is sending three
modify requests but only the first is executed. After all such
records are modified by DNSControl, everything works as expected.
We believe this is a bug with R53.
This is only a problem for users converting old zones to DNSControl.
NOTE: When converting zones that include such records, the `get-zones`
command will generate `CNAME()` records without the trailing dot. You
should manually add the dot. Run `dnscontrol preview` as normal to
check your work. However when you run `dnscontrol push` you'll find
you have to run it multiple times, each time one of those corrections
executes and the others do not. Once all such records are replaced
this problem disappears.
More info is available in
[https://github.com/StackExchange/dnscontrol/issues/891](#891).
## Error messages ## Error messages
### Creds key mismatch ### Creds key mismatch