DNS Configuration
DNS servers can be provisioned on a Solace PubSub+ appliance using the instructions provided in Adding DNS Servers. This feature is not supported on software event brokers.
On either appliances or software event brokers, the operational command shown in Configuring Polled Domain Name can be used to set the domain name that will be polled to determine whether the provisioned DNS servers can be reached, and the command discussed in Displaying Provisioned DNS Servers can be used to list those servers.
Adding DNS Servers
On an appliance, DNS servers on external host machines can be provisioned so that hostnames can be used for network object IP addresses. (Refer to your third-party DNS server documentation for information on choosing a host machine and installing the server software.)
To add a DNS server to a appliance, enter the following CONFIG commands once you have ensured that the DNS server's IP address is reachable from the Solace management interface and that the DNS server is in the Solace Management VRF:
solace(configure)# dns solace(configure/dns)# name-server <ip-addr>
Where:
<ip-addr> is the IP address for the DNS server, specified in the dotted decimal notation form nnn.nnn.nnn.nnn.
The no version of this command, no name-server, removes an existing DNS server from the DNS server list and deletes all of its associated configuration values.
- DNS servers can also be added to an appliance during its initial setup. Refer to Initial Setup.
- You must repeat the
name-serverDNS CONFIG command for each DNS server that you want to add (up to three can be added). Each addition is placed at the bottom of the DNS list. - If multiple DNS name servers are provisioned, the hostname query mechanism tries the first DNS server in the list, and if the query times out, it then tries the next DNS server, until the end of the list is reached. However, if at the start the first DNS server replies with a NOT FOUND message, then the query cycle is canceled.
- When Config Sync is used, the configured DNS servers are synchronized between redundant appliances; however, DNS servers are not synchronized between Replication sites.
Configuring Polled Domain Name
To configure the domain name that will be looked up every 30 seconds to determine whether the provisioned DNS servers can be reached, enter the following CONFIG commands:
solace(configure)# dns solace(configure/dns)# polled-domain-name <domain-name>
Where:
<domain-name> is the domain name that is looked up to determine the status of the name servers. The default configured domain name is “www.solace.com”.
The no version of this command, no polled-domain-name, resets the polled domain name to the default of “www.solace.com”.
Configuring the Search Domain List
The DNS configuration on each appliance includes a list of domains to add to a hostname that the system is trying to resolve. If a DNS lookup fails, the system retries the lookup with the domains contained in the search list, in order, until one is successful.
For example, suppose that the system is trying to resolve the host name ldap.example.echonet and the search list includes the domains xmp.solace.intra, solace.intra, and eu.solace.intra. If the DNS server that the appliance is using cannot resolve ldap.example.echonet, it will try to resolve ldap.example.echonet.xmp.solace.intra, ldap.example.echonet.solace.intra, and ldap.example.echonet.eu.solace.intra in order until one is successful.
To configure the search domain list, enter the following CONFIG commands:
solace(configure)# dns
solace(configure/dns)# search-domain-list <domain-list>
Where:
<domain-list> is the list of domains to search. You can provide a space separated list with up to six domains with a total length of 255 characters. No domains are included in the list by default.
The no version of this command, no search-domain-list, resets the domain list to the default.
Displaying Provisioned DNS Servers
To view the DNS servers currently provisioned, enter the following User EXEC command:
solace> show dns
Example:
solace> show dns Polled Domain Name : www.solace.com Last Refreshed Time : Mon Nov 6 18:04:23 2017 Name Server Status Source ----------------------------------------- -------------------- ------- 192.168.40.81 up system 192.168.40.80 down system 8.8.8.8 up system
When multiple DNS name servers are provisioned, queries are made following the listed order of servers shown by the show dns User EXEC command.
DNS Name Lookup
In all contexts where name resolution applies (for example, connect-via addresses for VPN bridges) the event broker attempts to resolve domain names using the configured DNS server(s) either on the appliance or on the host OS of the software event broker.
In both cases, the broker will attempt to establish a connection to the highest prioritized IPv4 and highest prioritized IPv6 address (if supported); the higher priority address connection is attempted first.