Univention Bugzilla – Bug 50499
UCS@school scenario is not considered for dns/backend switch
Last modified: 2021-06-22 09:38:02 CEST
A school environment customer was told to change the dns/backend to ldap (on the school slaves) because of performance issues with dns in the environment. This causes some trouble in the environment. Our documentation does not mention that must not be changed in a school environment. http://docs.software-univention.de/performance-guide-4.3.html#bind 6.2. BIND BIND can use two different backends for its configuration: OpenLDAP or the internal LDB database of Samba 4. The backend is configured via the Univention Configuration Registry variable dns/backend. When using the Samba backend, a search is performed in the LDAP for every DNS request. With the OpenLDAP backend, a search is only performed in the directory service if the DNS data has changed. For this reason, using the OpenLDAP backend can reduce the load on a Samba 4 domain controller.
I set "Who will be affected by this bug?" to "Will affect a very few installed domains", because I think that only very few domains are really affected. Irrespective of the fact that it has really unpleasant impacts. Feel free to discuss it.
We have too many bugs for this ;-) documentation update is requested in Bug #50501, a fix is proposed in Bug #50503 I close this one as duplicate. *** This bug has been marked as a duplicate of bug 50503 ***
I added a warning in the school-documentation [4.4] cda841e4b Bug #50499: Doc BIND backend in uas should not be set to ldap the ucs performace manual [4.4-4] 379f2dce69 Bug #50499: Doc BIND backend in uas should not be set to ldap and added a warning to the ucrv description [4.4-4] 10f91b7e0e Bug #50499: Add warning for dns/backend Package: univention-bind Version: 13.0.1-10A~4.4.0.202004281105 Branch: ucs_4.4-0 Scope: errata4.4-4
(In reply to Tobias Wenzel from comment #3) > I added a warning in the school-documentation > > [4.4] cda841e4b Bug #50499: Doc BIND backend in uas should not be set to ldap > > the ucs performace manual > > [4.4-4] 379f2dce69 Bug #50499: Doc BIND backend in uas should not be set to > ldap > > and added a warning to the ucrv description > > [4.4-4] 10f91b7e0e Bug #50499: Add warning for dns/backend > > > Package: univention-bind > Version: 13.0.1-10A~4.4.0.202004281105 > Branch: ucs_4.4-0 > Scope: errata4.4-4 The commits should have gone to Bug #50501. This bug was already marked as being a duplicate. Reopening it now, to handle the commit. Reopen, because the texts should say, that on no domaincontroller (master, backup and slave) running Samba4 the UCRV should be changed to 'ldap'.
This is true regardless of the installation of UCS@school. So there is no need to mention it.
Further commits went to Bug #50501. Returning this bug zu former state "DUPLICATE of Bug #50503". *** This bug has been marked as a duplicate of bug 50503 ***