On 2021-03-18 10:46:59 +0100 (+0100), Christian Rohmann wrote: [...]
is there any way to allow users to add their own records which then only resolve internally? [...] Looking at the Designate API https://docs.openstack.org/api-ref/dns/?expanded=create-zone-detail#create-z... is does not seem to be an option to mark a zone as "internal" or "private". But maybe there is another way to add records to the internal zone?
I am thinking of an only internally resolvable / valid DNS zone carrying records for i.e. service discovery / cluster forming. [...]
The traditional term for what you're describing is "split-horizon DNS" (implemented via things like BIND's "views" mechanism). I see there's a split_view zone type which is proposed in this spec: https://specs.openstack.org/openstack/designate-specs/specs/ussuri/split-vie... Poking in code review, it looks like it may be in progress: https://review.opendev.org/q/topic:bug/1875939 If this is of interest to you, please do help review and test the feature to make sure it will meet your requirements. -- Jeremy Stanley