[2.x, enhacement, DNS] Default DNS IP for node from interface without gateway

Hi Niels,

So if I understand correctly, you have 2 bonds:

1. With no routable address, where PXE boot happens
2. Publicly routable address, not where PXE happens.

MAAS correctly sets the hostname based DNS to (1) - (as this is where the machine PXE's from), but you want this set to (2) ?

Additionally, I'm wondering which interface is the default gateway interface? Is this (2)? e.g.
maas <user> interface set-default-gateway <system-id> <interface> ? If it is not, what if you change it that way? will that interface get the hostname based DNS name?

Hi Andres,

Thank you for looking into this.

I put a snippet of the interface configuration in the attachment as an example. We have 2 bonds, both of which have access networks (VLANs 1010 and 1011) which are not routable, 1 of them has a VLAN with a routable network (VLAN 1122) which we'd like to have the domain name set to, PXE occurs over a separate non-bonded interface which we do not configure for the final installation.

Currently, MAAS sets the primary hostname to either VLAN 1010 or 1011 shown in the attachment, while those are not routable. The routable network on VLAN 1122 gets the hostname bond0.1122.<hostname>.<domainname> instead of <hostname>.<domainname>. A quick patch was to update the boot-interface in the database directly through an SQL-query, though rebooting a machine moved the setting back to the unconfigured eno0 interface due to the PXE attempt at boot time.

For now we solved it in our system with the patch attached to the bug description, though I think in general it may be considered better to set the hostname to what the interface with the primary gateway is (I noticed there is also a primary gateway interface selection occuring in the function get_best_guess_for_default_gateways() in src/maasserver/models/node.py). As a future follow-up on this, a valid feature request could be to maybe make the primary interface for DNS configurable through CLI and web gui (as also our use case is but yet another use-case that may not cover all other use cases).

Given the status is still set to incomplete, can I provide more info to confirm the problem?

Thanks Niels; I think we have all the information we need to further discuss this issue.

I'll copy and paste part of my comment on the merge proposal for bug #1776604; I think this is relevant:

"""
It's risky for us to change this code because effectively this function is a heuristic. It tries to guess the best interface to assign the node's primary hostname to. In cases where it guesses wrong, it's possible that customers have come to rely on the previous behavior. For example, it looks like we may be missing cases where there the PXE interface is configured with a triple-parent, such as:

physical (eth0) -> bond ({eth0, eth1} via bond0) -> vlan (bond0.11) -> bridge (br-vlan11)

In this case it's possible that a customer might be relying on MAAS to return an IP address assigned to bond0, when in fact we /could/ have a good argument that we should change the logic to return an IP address assigned to br-vlan11.
"""

Hence the dilemma: we would love to accept your patch into MAAS, but it's possible that someone else is already be relying on MAAS DNS to point to a management network with no gateway address.

I think the proper solution is what you imply: allow greater configuration of this algorithm, either implicitly (such as "prefer VLANs with a gateway over anything else") or explicitly ("I want this node to use interface X for its default DNS").

@Neils, I wanted to run an idea by you.

What if you could set a particular space to be the default to use when assigning IP addresses? (If you're not familiar with spaces, they're a way to assign a particular "tag" to a VLAN in MAAS to indicate its purpose. Juju and other tools can use spaces as hints or instructions about what networks it's okay to bind a particular service to.)

For example, in your case, you might have a 'provisioning', 'intranet', and 'storage' space. Then you could set your 'intranet' space to be the default space to use for providing DNS names. With each of your VLANs in MAAS labeled with a particular space, MAAS could better infer which to use for the default DNS name - without the need to manually assign default IPs on a per-node basis (which seems a bit cumbersome).

Thoughts?

@Mike, that sounds perfect! We are deploying our nodes through Juju with bindings on network spaces to constraint to machines with the right networks attached and to configure the applications with the correct networks. Hence, one preferred DNS space would work for us.

Using spaces doesn’t solve the issue in environments where spaces ar not
being used. This needs to be solved for configurations that doesn’t depend
on them.

On Fri, Sep 7, 2018 at 5:45 PM Mike Pontillo <email address hidden>
wrote:

> @Neils, I wanted to run an idea by you.
>
> What if you could set a particular space to be the default to use when
> assigning IP addresses? (If you're not familiar with spaces, they're a
> way to assign a particular "tag" to a VLAN in MAAS to indicate its
> purpose. Juju and other tools can use spaces as hints or instructions
> about what networks it's okay to bind a particular service to.)
>
> For example, in your case, you might have a 'provisioning', 'intranet',
> and 'storage' space. Then you could set your 'intranet' space to be the
> default space to use for providing DNS names. With each of your VLANs in
> MAAS labeled with a particular space, MAAS could better infer which to
> use for the default DNS name - without the need to manually assign
> default IPs on a per-node basis (which seems a bit cumbersome).
>
> Thoughts?
>
> --
> You received this bug notification because you are subscribed to MAAS.
> https://bugs.launchpad.net/bugs/1786799
>
> Title:
> [2.x, enhacement, DNS] Default DNS IP for node from interface without
> gateway
>
> To manage notifications about this bug go to:
> https://bugs.launchpad.net/maas/+bug/1786799/+subscriptions
>
> Launchpad-Notification-Type: bug
> Launchpad-Bug: product=maas; milestone=2.5.0beta2; status=Triaged;
> importance=High; assignee=None;
> Launchpad-Bug-Tags: track wishlist
> Launchpad-Bug-Information-Type: Public
> Launchpad-Bug-Private: no
> Launchpad-Bug-Security-Vulnerability: no
> Launchpad-Bug-Commenters: andreserl mpontillo nvanadrichem
> Launchpad-Bug-Reporter: Niels van Adrichem (nvanadrichem)
> Launchpad-Bug-Modifier: Mike Pontillo (mpontillo)
> Launchpad-Message-Rationale: Subscriber (MAAS)
> Launchpad-Message-For: andreserl
>
--
Andres Rodriguez (RoAkSoAx)
Ubuntu Server Developer
MSc. Telecom & Networking
Systems Engineer

If spaces aren't being used, it's easy to start using them. So I don't think that's a big concern. I think starting out with a spaces-based selection will get us 80-90% there. The (non-mutually-exclusive) alternatives to using spaces, which could be used for the other 10-20% of use cases, would be:

(1) Allow specific configuration of default DNS on a per-node basis. (I agree this should be done - in addition to spaces - but it's a much more cumbersome approach at scale.)

(2) Allow customization of the selection algorithm as a global setting. For example, we could have options such as "Prefer PXE network for DNS" vs. "Prefer default gateway network for DNS", etc.

This bug has not seen any activity in the last 6 months, so it is being automatically closed.

If you are still experiencing this issue, please feel free to re-open.

MAAS Team

After upgrading to 2.8.0 and re-applying this patch to our installation, I found this bug got automatically closed. Are you still intending to solve this in a future version of MAAS?