Ñò ìÿÒXc0@@sR ddklZddkZddkZddkZddklZddklZl Z l Z ddklZddkl Z lZlZlZlZlZlZddkTddklZlZdd klZlZlZlZlZlZlZlZl Z l!Z!l"Z"dd k#l$Z$l%Z%l&Z&edƒZ'dd ddddddddddddddddddd d!d"d#d$d%d&d'd(d)d*d+d,d-f"Z(d.Z)d/d0fZ*d1fZ+d2d3d4fZ,gZ-e(D]Z.e-e/d5e.i0ƒƒqÙ[-Z1d6d7d8d9fZ2d:„Z3d;„Z4d<„Z5e6d=„Z7d>„Z8d?„Z9d@„Z:dA„Z;dB„Z<e=dC„Z>dD„Z?dE„Z@dF„ZAdG„ZBdH„ZCdI„ZDdJ„ZEdK„ZFe6dL„ZGeHeHdM„ZIeHeHdN„ZJdOefdP„ƒYZKdQeKfdR„ƒYZLdSeLfdT„ƒYZMdUeKfdV„ƒYZNdWeLfdX„ƒYZOdYeKfdZ„ƒYZPd[eKfd\„ƒYZQd]eKfd^„ƒYZRd_eKfd`„ƒYZSdaeKfdb„ƒYZTdceKfdd„ƒYZUdeeKfdf„ƒYZVdgeKfdh„ƒYZWdieKfdj„ƒYZXdkeKfdl„ƒYZYdmeKfdn„ƒYZZdoeKfdp„ƒYZ[dqeKfdr„ƒYZ\dseKfdt„ƒYZ]dueKfdv„ƒYZ^dweKfdx„ƒYZ_dyeKfdz„ƒYZ`d{eKfd|„ƒYZad}eKfd~„ƒYZbd„Zcd€eKfd„ƒYZdd‚eKfdƒ„ƒYZed„eKfd…„ƒYZfd†„Zgd‡eKfdˆ„ƒYZhd‰„ZidŠeKfd‹„ƒYZjdŒeKfd„ƒYZkdŽejfd„ƒYZldeKfd‘„ƒYZmd’eKfd“„ƒYZnd”eKfd•„ƒYZod–eKfd—„ƒYZpd˜eKfd™„ƒYZqeMƒeOƒeNƒePƒeQƒeRƒeSƒeTƒeUƒeVƒeWƒeXƒeYƒe[ƒeZƒe\ƒe]ƒe^ƒedƒe_ƒe`ƒeaƒebƒeeƒelƒefƒejƒekƒehƒemƒenƒeoƒepƒeqƒf"Zrdš„ZsetesƒƒZuetd›„erDƒƒZvdœ„Zwd„Zxdž„ZyedŸd ed¡ƒƒfZzd¢e{fd£„ƒYZ|ei}e|ƒd¤e~fd¥„ƒYZei}eƒd¦e€fd§„ƒYZei}eƒd¨e‚fd©„ƒYZƒei}eƒƒdªe„fd«„ƒYZ…ei}e…ƒd¬e†fd„ƒYZ‡ei}e‡ƒd®eˆfd¯„ƒYZ‰ei}e‰ƒd°eˆfd±„ƒYZŠei}eŠƒd²eˆfd³„ƒYZ‹ei}e‹ƒd´eˆfdµ„ƒYZŒei}eŒƒd¶e{fd·„ƒYZei}eƒd¸e~fd¹„ƒYZŽei}eŽƒdºe‚fd»„ƒYZei}eƒd¼e€fd½„ƒYZei}eƒd¾e‚fd¿„ƒYZ‘ei}e‘ƒdÀe†fdÁ„ƒYZ’ei}e’ƒdÂe„fdÃ„ƒYZ“ei}e“ƒdÄefdÅ„ƒYZ”ei}e”ƒdÆefdÇ„ƒYZ•ei}e•ƒdÈe{fdÉ„ƒYZ–ei}e–ƒdÊe‚fdË„ƒYZ—ei}e—ƒdÌe†fdÍ„ƒYZ˜ei}e˜ƒdS(Îi(tabsolute_importN(tcontext(tapiterrorstoutput(tCommand(tFlagtBooltInttDecimaltStrtStrEnumtAny(t*(t_tngettext(tvalidate_zonemgrtnormalize_zonemgrtnormalize_zonetvalidate_hostnametvalidate_dns_labeltvalidate_domain_namet"get_dns_forward_zone_update_policyt"get_dns_reverse_zone_update_policytget_reverse_zone_defaulttzone_is_reversetREVERSE_DNS_ZONES(tvalid_iptCheckedIPAddresstis_host_resolvables‡ Domain Name System (DNS) Manage DNS zone and resource records. USING STRUCTURED PER-TYPE OPTIONS There are many structured DNS RR types where DNS data stored in LDAP server is not just a scalar value, for example an IP address or a domain name, but a data structure which may be often complex. A good example is a LOC record [RFC1876] which consists of many mandatory and optional parts (degrees, minutes, seconds of latitude and longitude, altitude or precision). It may be difficult to manipulate such DNS records without making a mistake and entering an invalid value. DNS module provides an abstraction over these raw records and allows to manipulate each RR type with specific options. For each supported RR type, DNS module provides a standard option to manipulate a raw records with format ---rec, e.g. --mx-rec, and special options for every part of the RR structure with format ---, e.g. --mx-preference and --mx-exchanger. When adding a record, either RR specific options or standard option for a raw value can be used, they just should not be combined in one add operation. When modifying an existing entry, new RR specific options can be used to change one part of a DNS record, where the standard option for raw value is used to specify the modified value. The following example demonstrates a modification of MX record preference from 0 to 1 in a record without modifying the exchanger: ipa dnsrecord-mod --mx-rec="0 mx.example.com." --mx-preference=1 EXAMPLES: Add new zone: ipa dnszone-add example.com --name-server=ns \ --admin-email=admin@example.com \ --ip-address=10.0.0.1 Add system permission that can be used for per-zone privilege delegation: ipa dnszone-add-permission example.com Modify the zone to allow dynamic updates for hosts own records in realm EXAMPLE.COM: ipa dnszone-mod example.com --dynamic-update=TRUE This is the equivalent of: ipa dnszone-mod example.com --dynamic-update=TRUE \ --update-policy="grant EXAMPLE.COM krb5-self * A; grant EXAMPLE.COM krb5-self * AAAA; grant EXAMPLE.COM krb5-self * SSHFP;" Modify the zone to allow zone transfers for local network only: ipa dnszone-mod example.com --allow-transfer=10.0.0.0/8 Add new reverse zone specified by network IP address: ipa dnszone-add --name-from-ip=80.142.15.0/24 \ --name-server=ns.example.com. Add second nameserver for example.com: ipa dnsrecord-add example.com @ --ns-rec=nameserver2.example.com Add a mail server for example.com: ipa dnsrecord-add example.com @ --mx-rec="10 mail1" Add another record using MX record specific options: ipa dnsrecord-add example.com @ --mx-preference=20 --mx-exchanger=mail2 Add another record using interactive mode (started when dnsrecord-add, dnsrecord-mod, or dnsrecord-del are executed with no options): ipa dnsrecord-add example.com @ Please choose a type of DNS resource record to be added The most common types for this type of zone are: NS, MX, LOC DNS resource record type: MX MX Preference: 30 MX Exchanger: mail3 Record name: example.com MX record: 10 mail1, 20 mail2, 30 mail3 NS record: nameserver.example.com., nameserver2.example.com. Delete previously added nameserver from example.com: ipa dnsrecord-del example.com @ --ns-rec=nameserver2.example.com. Add LOC record for example.com: ipa dnsrecord-add example.com @ --loc-rec="49 11 42.4 N 16 36 29.6 E 227.64m" Add new A record for www.example.com. Create a reverse record in appropriate reverse zone as well. In this case a PTR record "2" pointing to www.example.com will be created in zone 15.142.80.in-addr.arpa. ipa dnsrecord-add example.com www --a-rec=80.142.15.2 --a-create-reverse Add new PTR record for www.example.com ipa dnsrecord-add 15.142.80.in-addr.arpa. 2 --ptr-rec=www.example.com. Add new SRV records for LDAP servers. Three quarters of the requests should go to fast.example.com, one quarter to slow.example.com. If neither is available, switch to backup.example.com. ipa dnsrecord-add example.com _ldap._tcp --srv-rec="0 3 389 fast.example.com" ipa dnsrecord-add example.com _ldap._tcp --srv-rec="0 1 389 slow.example.com" ipa dnsrecord-add example.com _ldap._tcp --srv-rec="1 1 389 backup.example.com" The interactive mode can be used for easy modification: ipa dnsrecord-mod example.com _ldap._tcp No option to modify specific record provided. Current DNS record contents: SRV record: 0 3 389 fast.example.com, 0 1 389 slow.example.com, 1 1 389 backup.example.com Modify SRV record '0 3 389 fast.example.com'? Yes/No (default No): Modify SRV record '0 1 389 slow.example.com'? Yes/No (default No): y SRV Priority [0]: (keep the default value) SRV Weight [1]: 2 (modified value) SRV Port [389]: (keep the default value) SRV Target [slow.example.com]: (keep the default value) 1 SRV record skipped. Only one value per DNS record type can be modified at one time. Record name: _ldap._tcp SRV record: 0 3 389 fast.example.com, 1 1 389 backup.example.com, 0 2 389 slow.example.com After this modification, three fifths of the requests should go to fast.example.com and two fifths to slow.example.com. An example of the interactive mode for dnsrecord-del command: ipa dnsrecord-del example.com www No option to delete specific record provided. Delete all? Yes/No (default No): (do not delete all records) Current DNS record contents: A record: 1.2.3.4, 11.22.33.44 Delete A record '1.2.3.4'? Yes/No (default No): Delete A record '11.22.33.44'? Yes/No (default No): y Record name: www A record: 1.2.3.4 (A record 11.22.33.44 has been deleted) Show zone example.com: ipa dnszone-show example.com Find zone with "example" in its domain name: ipa dnszone-find example Find records for resources with "www" in their name in zone example.com: ipa dnsrecord-find example.com www Find A records with value 10.10.0.1 in zone example.com ipa dnsrecord-find example.com --a-rec=10.10.0.1 Show records for resource www in zone example.com ipa dnsrecord-show example.com www Delegate zone sub.example to another nameserver: ipa dnsrecord-add example.com ns.sub --a-rec=10.0.100.5 ipa dnsrecord-add example.com sub --ns-rec=ns.sub.example.com. If global forwarder is configured, all requests to sub.example.com will be routed through the global forwarder. To change the behavior for example.com zone only and forward the request directly to ns.sub.example.com., global forwarding may be disabled per-zone: ipa dnszone-mod example.com --forward-policy=none Forward all requests for the zone external.com to another nameserver using a "first" policy (it will send the queries to the selected forwarder and if not answered it will use global resolvers): ipa dnszone-add external.com ipa dnszone-mod external.com --forwarder=10.20.0.1 \ --forward-policy=first Delete zone example.com with all resource records: ipa dnszone-del example.com Resolve a host name to see if it exists (will add default IPA domain if one is not included): ipa dns-resolve www.example.com ipa dns-resolve www GLOBAL DNS CONFIGURATION DNS configuration passed to command line install script is stored in a local configuration file on each IPA server where DNS service is configured. These local settings can be overridden with a common configuration stored in LDAP server: Show global DNS configuration: ipa dnsconfig-show Modify global DNS configuration and set a list of global forwarders: ipa dnsconfig-mod --forwarder=10.0.0.1 uAuAAAAuA6uAFSDBuAPLuCERTuCNAMEuDHCIDuDLVuDNAMEuDNSKEYuDSuHIPuIPSECKEYuKEYuKXuLOCuMXuNAPTRuNSuNSECuNSEC3u NSEC3PARAMuPTRuRRSIGuRPuSIGuSPFuSRVuSSHFPuTAuTKEYuTSIGuTXTu@tAtAAAAtPTRtNStMXtLOCs%srecorduINuCSuCHuHScC@s1yt|ƒWntj o}t|ƒSXdS(N(Rt ValueErrortunicodetNone(tugettexttzonemgrte((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_rname_validatorùs cC@sttiƒƒS(s1 Generate serial number for zones. bind-dyndb-ldap expects unix time in to be used for SOA serial. SOA serial in a date format would also work, but it may be set to far future when many DNS updates are done per day (more than 100). Unix timestamp is more resilient to this issue. (tintttime(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_create_zone_serials cC@sÆyti|ƒWntitfj onXtt|ƒƒSti|ƒ}|iii dƒ}|i djodi|d|idƒS|i djodi|d|idƒSdSdS(Nt.iu.iii (tnetaddrt IPAddresstAddrFormatErrorR$R%Rt IPNetworktiptreverse_dnstsplittversiontjoint prefixlenR&(tnetstrtnettitems((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_reverse_zone_namesc C@sˆy^ti|dtiƒ}|dj o5|i|jo!tdƒtd|id|ƒSnWn#titfj otdƒSXdS(NtflagssFinvalid IP address version (is %(value)d, must be %(required_value)d)!tvaluetrequired_valuesinvalid IP address format( R/R0t INET_PTONR&R6RtdictR1R$(R'tipaddrt ip_versionR3((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_validate_ipaddrs cC@st||dƒS(Ni(RD(R'RB((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_validate_ip4addr)scC@st||dƒS(Ni(RD(R'RB((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_validate_ip6addr,scC@s@yti|ƒ}Wn&tittfj otdƒSXdS(Nsinvalid IP network format(R/R2R1R$tUnboundLocalErrorRR&(R'tipnetR:((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_validate_ipnet/s c C@sè|pdS|idƒ}|dotdƒS|idƒx£|D]›}|djoqEn|idƒo|d }ny"t|d tdtdtƒ}WqEtitfj o}t |ƒSt j otd ƒSXqEWdS(Nt;iÿÿÿÿs4each ACL element must be terminated with a semicolontanytnonet localhostt localnetst!it parse_netmaskt allow_networktallow_loopbackuinvalid address format(sanyRLRMRN(R5Rtpopt startswithRtTrueR/R1R$R%RG(R't bind_acistbind_aciR3R)((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_validate_bind_aci6s& c C@s+|pdS|idƒ}g}xê|D]â}|pq(n|djo|i|ƒq(nd}|idƒo|d}d}nyit|d td tdtƒ}d|jod |i}nd}|id|t|ƒ|fƒw(Wq(|i|ƒq(q(Xq(Wdi|ƒ}|d7}|S(NRJRKRLRMRNtROiRPRQRRt/s/%su%s%s%su;(sanysnones localhosts localnets(R5tappendRTRRUR8tstrR7(RVt normalizedRWtprefixR3tnetmasktacis((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_normalize_bind_aciOs: cC@s_|tjodSy t|dtdtd|ƒWn&tj o}tdƒt|ƒSXdS(Nt check_fqdntallow_underscoretallow_slashsinvalid domain-name: %s(t_dns_zone_recordRtFalseRUR$RR%R&(R'R>RdR)((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_bind_hostname_validatorqs cC@st||dtƒS(sU Validator for CNAME allows classless domain names (25/0.0.10.in-addr.arpa.) Rd(RgRU(R'R>((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_bind_cname_hostname_validator~scC@sR|tjodSytd„|idƒƒWntj o}t|ƒSXdS(NcS@st|dtdtƒS(RcRd(RRU(tlabel((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytŠsu.(RetmapR5R$R%(R'R>R)((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_dns_record_name_validator…s cC@s©|idƒ\}}}t||ƒ}|dj o|S|oey7t|ƒ}|djp |djo tƒ‚nWq¥tj otdtd|ƒƒSXndS(Nu port iiÿÿs%(port)s is not a valid porttport(t partitionRDR&R+R$RRA(R't forwardert ip_addresstsepRmtip_address_validation((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_validate_bind_forwarders cC@sIy&t|ƒ}t|dt|ƒƒWntj o}t|ƒSXdS(NRd(RRRR$R%(R'R>tnormalized_zoneR)((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_domain_name_validator¡s cC@s;yt|ƒWn&tj o}tdƒt|ƒSXdS(Nsinvalid domain-name: %s(RR$RR%R&(R'R>R)((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_hostname_validatorªs cC@s"|ddjo |dS|SdS(sMake it fully-qualifiediÿÿÿÿR.N((tdomain_name((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_normalize_hostname³s cC@sƒti|ƒ}|idjotid|d|ƒ}n:|idjotid|d|ƒ}n tdƒ‚|ddjS( Nitdnsrecord_findtarecordit aaaarecordsInvalid address familytcounti(R/R0R6RRR$(tzonetstr_addresstaddrtresult((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytis_forward_recordºscC@s˜ti|ƒ}yl|idjotid||d|ƒn;|idjotid||d|ƒn tdƒ‚Wntij onXdS(Nit dnsrecord_addRziR{sInvalid address family(R/R0R6RRR$RtEmptyModlist(R}tnameR~R((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytadd_forward_recordÅsc C@s“ti|ƒ}t|iƒ}|djopd}tidƒd}xð|D]G}|dd}|i|ƒo#t|ƒt|ƒjo |}qLqLWnž|i djod|d}n#|i djod |d}n|ii d ƒ} di| |ƒ}ytid|ƒWnti j o d}nXt|ƒdjo)ti d tdƒtd|ƒƒ‚n|t|ƒd } || fS(Nutdnszone_findR€tidnsnameiiiii R.u.tdnszone_showtreasons2DNS reverse zone for IP address %(addr)s not foundRi(R/R0R%R4R&RRtendswithtlenR6R5R7RtNotFoundRRA(RBR8R3trevdnstrevzoneR€R}tzonenametposR;trevname((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytget_reverse_zoneÑs2 ) c C@sêytid|ƒdWn;tij o,tidtdƒtd|ƒƒ‚nXt|ttfƒp |g}nxi|D]a}yt |dt ƒ}Wn3tj o'}tid|dt |ƒƒ‚nX|oOt|t |ƒƒo5tid td ƒtdt|ƒd|ƒƒ‚q)n|o²y•d} |ip |i} nt|| ƒ\} }tid | d|ƒ}|ddjo5tid tdƒtdt|ƒd| ƒƒ‚nWqâtij oqâXqqWdS(NRˆR€R‰sDNS zone %(zone)s not foundR}tmatch_localR„terrortmessageu;IP address %(ip)s is already assigned in domain %(domain)s.R3tdomainRyR‡R|iuMReverse record for IP address %(ip)s already exists in reverse zone %(zone)s.(RRRRŒRRAt isinstancettupletlistRRft ExceptiontValidationErrorR%RtDuplicateEntryR\R&t defaultnetR8R’( toption_namethostR–tip_addressest check_forwardt check_reverseRpR3R)R8RŽR‘treverse((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytadd_records_for_host_validationós> ! # ' 'cC@sñt|ttfƒp |g}nxÇ|D]¿}t|dtƒ}|ot||t|ƒƒn|oybd}|ip |i }nt ||ƒ\}} h|d|d6} tid|| | Wqét ij oqéXq*q*WdS(NR“R.t ptrrecordR‚(R—R˜R™RRfR…R%R&RR8R’RRRRƒ(RŸR–R tadd_forwardtadd_reverseRpR3R8RŽR‘taddkw((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytadd_records_for_hosts" t DNSRecordcB@sMeZdZdZeZedƒZdZ edƒZ edƒZedƒZdZ dZdZdZeideefd eeffZdZdZdd „Zd„Zd„Zed „Zd„Zdd„Zd„Zd„Zd„Zd„Zd„Z d„Z!d„Z"dd„Z#dd„Z$e%d„Z&d„Z'd„Z(RS(s %s records%s %ss&Comma-separated list of raw %s recordss %s Records(see RFC %s for details)s %s_part_%ss%s_extra_%ss%s_%stvalidatednstnormalizednscO@s|itjo,tdt|iƒditƒfƒ‚n|pd|iiƒ}n|idd|iiƒƒ|id|i|iƒ|id|i|iƒ|id|i |iƒt |d <|ipd|dtvalues((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_get_part_values[sc@s-ˆi|ƒdi‡‡fd†|DƒƒS(Nu c3@s?x8|]1}|dj ottˆƒi|ˆƒVqqWdS(N(R&RºRªt_convert_scalar(t.0tv(tindexR¼(s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys cs (t_validate_partsR7(R¼RÀRÅ((RÅR¼s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_part_values_to_stringas c @sðt‡fd†ˆiDƒƒ}t‡fd†|Dƒƒ}td„|DƒƒodS|oŽx‹t|ƒD]y\}}|djo`ˆi|ioOˆiˆiiƒˆi|i f}t idˆi dtdƒ|ƒ‚qkqkWn|S(Nc3@s2x+|]$}ˆiˆiiƒ|ifVqWdS(N(tpart_name_formatR²R´R„(RÃtpart(R¼(s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys gs c3@s"x|]}ˆi|ƒVqWdS(N(tget(RÃt part_name(R¾(s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys is cs@sx|]}|djVqWdS(N(R&(RÃtval((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys ks R„R”s%'%s' is a required part of DNS record( R˜R¿tallt enumerateR&trequiredtcli_name_formatR²R´R„RtConversionErrorR(R¼R¾t raise_on_nonet part_namestvalstval_idRÌR((R¼R¾s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytget_parts_from_kwfs &cC@sEt|ƒt|iƒjo%tid|idtdƒƒ‚ndS(NR„R”sInvalid number of parts!(R‹R¿RR›R„R(R¼R¿((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRÆwscC@s@t|ttfƒo|i||ƒStt|ƒi||ƒS(N(R—R˜R™RÇRºRªRÂ(R¼R>RÅ((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRÂ|sc@s}ˆio]t|ttfƒo t‡fd†|Dƒƒ}qg|dj oˆi|ƒf}qgnttˆƒi|ƒS(Nc3@s3x,|]%}|dj oˆi|ƒVqqWdS(N(R&t_normalize_parts(RÃRÄ(R¼(s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys …s ( R¬R—R˜R™R&R×RºRªt normalize(R¼R>((R¼s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRØs c C@sï|idjo|SyÀ|i|ƒ}|p|Sg}t|iƒD]8\}}|||dj o|i||ƒndqG~}g}t|iƒD] \}}||i||ƒqœ~}|i|ƒ}Wntj onX|S(sO Normalize a DNS record value using normalizers for its parts. N(R¿R&RÁRÎRÂRØRš( R¼R>RÀt_[1]tpart_idRÉtconverted_valuest_[2]t new_values((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR×sN6c C@s^|ipdS|djodS|djodS|ip|dƒ|iS|idjodS|i|ƒ}|p‘|ip|g}|iD]}||iiƒq’~}|i od|i |i }nd}|dƒtddi|ƒd|ƒS|iSnxLt |iƒD];\}}|i||ƒ} |i| ƒ} |i| ƒqWdS(Ns;DNS RR type "%s" is not supported by bind-dyndb-ldap plugint RYs1format must be specified as "%(format)s" %(rfcs)stformattrfcs(R«R&R¹R²R¿RÁtformat_error_msgR„tuppertrfctsee_rfc_msgRAR7RÎRØtconverttvalidate( R¼RR>RÀRÙRÉRÓRäRÚRÌ((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_rule_validatedns¦s6 - cC@sÕ|i|iiƒ|if}|i|iiƒ|if}|i|it|iƒf}|i|i}t |i ƒddg}|ip|idƒn|i |d|d|dtd|d|d |iƒS( sñ All parts of DNSRecord need to be processed and modified before they can be added to global DNS API. For example a prefix need to be added before part name so that the name is unique in the global namespace. tdnsrecord_parttvirtual_attributetdnsrecord_optionalRRiRÏR¯R=thint(RÈR²R´R„RÐtpart_label_formatR%RiR¸R™R=RÏR[tclone_renameRf(R¼RÉR„RRiR¯R=((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_convert_dnsrecord_partÍs cC@sº|i|iiƒ|if}|i|iiƒ|if}|i|it|iƒf}|i|i}t |i ƒddg}|i|d|d|dtd|d|d|iƒS( s• Parameters for special per-type behavior need to be processed in the same way as record parts in _convert_dnsrecord_part(). tdnsrecord_extraRéRRiRÏR¯R=Rë( textra_name_formatR²R´R„RÐRìR%RiR¸R™R=RíRf(R¼textraR„RRiR¯R=((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_convert_dnsrecord_extraäsc@s5ˆidjotƒSt‡fd†ˆiDƒƒS(Nc3@s"x|]}ˆi|ƒVqWdS(N(Rî(RÃRÉ(R¼(s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys ûs (R¿R&R˜(R¼((R¼s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt get_parts÷sc@s5ˆidjotƒSt‡fd†ˆiDƒƒS(Nc3@s"x|]}ˆi|ƒVqWdS(N(Rò(RÃRñ(R¼(s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys s (RñR&R˜(R¼((R¼s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt get_extraýsc C@së|i|iiƒ|if}|i|it|iƒf}|i}xœto”yJ|i i |d|d|ƒ}|iƒp |}n||ƒ||texc( tgetattrRR„tdelattrR©RfRURšRt NonFatalErrorRRAR%( R¼RRR RRtrev_recordsRR)((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR^s (RRRRRñR R(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyREs tARecordcB@s2eZdZdZedededƒƒfZRS(RiRpRis IP Address(RRR²RãR RERR¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRos tA6RecordcB@s8eZdZdZeddedƒƒfZd„ZRS(tA6ištdataRisRecord datacC@s|fS(N((R¼R>((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRÁ‚s(RRR²RãR RR¿RÁ(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR ys t AAAARecordcB@s2eZdZdZedededƒƒfZRS(RiRpRis IP Address(RRR²RãR RFRR¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR#†s tAFSDBRecordcB@sSeZdZdZeddedƒddddƒed eded ƒƒfZRS(tAFSDBiŸssubtype?RitSubtypetminvalueitmaxvalueiÿÿthostnametHostname( RRR²RãRRR RgR¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR$s t APLRecordcB@seZdZdZeZRS(tAPLi3(RRR²RãRfR¹(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR+Ÿst CERTRecordc B@s’eZdZdZeddedƒddddƒed ded ƒddddƒeddedƒdddd ƒeddedƒƒfZRS(tCERTi.ttypeRisCertificate TypeR'iR(iÿÿtkey_tagsKey Tagt algorithmt Algorithmiÿtcertificate_or_crlsCertificate/CRL(RRR²RãRRR R¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR-¤s tCNAMERecordcB@s>eZdZdZedededƒdedƒƒfZRS(tCNAMEiR)RiR*R®s.A hostname which this alias hostname points to(RRR²RãR RhRR¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR4¼stDHCIDRecordcB@seZdZdZeZRS(tDHCIDi](RRR²RãRfR¹(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR6Çst DLVRecordcB@seZdZdZeZRS(tDLViO(RRR²RãRfR¹(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR8ÌstDNAMERecordcB@s2eZdZdZedededƒƒfZRS(tDNAMEip ttargetRitTarget(RRR²RãR RhRR¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR:Ñs tDNSKEYRecordcB@seZdZdZeZRS(tDNSKEYiÂ(RRR²RãRfR¹(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR>ÛstDSRecordc B@s’eZdZdZeddedƒddddƒed ded ƒddddƒedded ƒddddƒeddedƒƒfZRS(tDSiÂR0RisKey TagR'iR(iÿÿR1R2iÿtdigest_typesDigest TypetdigesttDigest(RRR²RãRRR R¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR@às t HIPRecordcB@seZdZdZeZRS(tHIPiU(RRR²RãRfR¹(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyREøst KEYRecordc B@s’eZdZdZeddedƒddddƒed ded ƒddddƒedded ƒddddƒeddedƒƒfZRS(tKEYiç R=RitFlagsR'iR(iÿÿtprotocoltProtocoliÿR1R2t public_keys Public Key(RRR²RãRRR R¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRGýs tIPSECKEYRecordcB@seZdZdZeZRS(tIPSECKEYi¹(RRR²RãRfR¹(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRMstKXRecordc B@skeZdZdZeddedƒdedƒddd d ƒedededƒded ƒƒfZRS(tKXi¶t preferenceRit PreferenceR®sCPreference given to this exchanger. Lower values are more preferredR'iR(iÿÿt exchangert Exchangers(A host willing to act as a key exchanger( RRR²RãRRR RgR¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyROs t LOCRecordcB@sÜeZdZdZeddedƒddddƒed ded ƒddddƒedded ƒddddddƒeddedƒdd1ƒeddedƒddddƒeddedƒddddƒeddedƒddddddƒeddedƒdd2ƒed"ded#ƒdd$dd%dd&ƒed'ded(ƒdddd)dd&ƒed*ded+ƒdddd)dd&ƒed,ded-ƒdddd)dd&ƒfZed.ƒZ d/„Z d0„ZRS(3R#iTtlat_degRisDegrees LatitudeR'iR(iZslat_min?sMinutes Latitudei;slat_sec?sSeconds Latitudes0.0s59.999t precisionitlat_dirsDirection LatitudeRÀuNuStlon_degsDegrees Longitudei´slon_min?sMinutes Longitudeslon_sec?sSeconds Longitudetlon_dirsDirection LongitudeuEuWtaltitudetAltitudes -100000.00s42849672.95issize?tSizes90000000.00sh_precision?sHorizontal Precisionsv_precision?sVertical Precisionsformat must be specified as "d1 [m1 [s1]] {"N"|"S"} d2 [m2 [s2]] {"E"|"W"} alt["m"] [siz["m"] [hp["m"] [vp["m"]]]]" where: d1: [0 .. 90] (degrees latitude) d2: [0 .. 180] (degrees longitude) m1, m2: [0 .. 59] (minutes latitude/longitude) s1, s2: [0 .. 59.999] (seconds latitude/longitude) alt: [-100000.00 .. 42849672.95] BY .01 (altitude in meters) siz, hp, vp: [0 .. 90000000.00] (size/precision in meters) See RFC 1876 for detailscC@sJtidƒ}|i|ƒ}|djodStd„|iƒDƒƒS(Ns.(?P\d{1,2}\s+)(?P\d{1,2}\s+)?(?P\d{1,2}\.?\d{1,3}?\s+)?(?P[N|S])\s+(?P\d{1,3}\s+)(?P\d{1,2}\s+)?(?P\d{1,2}\.?\d{1,3}?\s+)?(?P[W|E])\s+(?P-?\d{1,8}\.?\d{1,2}?)m?\s*(?P\d{1,8}\.?\d{1,2}?)?m?\s*(?P\d{1,8}\.?\d{1,2}?)?m?\s*(?P\d{1,8}\.?\d{1,2}?)?m?\s*$cs@s3x,|]%}|dj o |iƒn|VqWdS(N(R&Rù(RÃtx((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys ‹s (tretcompiletmatchR&R˜tgroups(R¼R>tregextm((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRÁ|s c@sKtt|ƒiˆƒtd„t|iƒDƒƒ‰ddddf}xý|D]õ}|d }ˆˆ|dj oÐ|d }t‡‡fd†|Dƒƒo¢|i|i i ƒ|d f}g}|d D]#}||i|i i ƒ|fqÌ~} tdƒtd di| ƒd|ƒ} t id|id| ƒ‚qCqNqNWdS(Ncs@s(x!|]\}}|i|fVqWdS(N(R„(RÃRÚRÉ((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys ‘s tlat_sectlat_mintlon_sectlon_minth_precisiontsizetv_precisioniic3@s'x |]}ˆˆ|djVqWdS(N(R&(RÃRÉ(R¿t part_name_map(s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys žs s7'%(required)s' must not be empty when '%(name)s' is setRÏs, R„R”(ReRf(RgRh(Rissize(RkRissize(RºRURÆRARÎR¿R&RKRÐR²R´RR7RR›R„(R¼R¿trequirementstreqttarget_parttrequired_partsttarget_cli_nameRÙRÉtrequired_cli_namesR”((RlR¿s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRÆs( 4 (uNuS(uEuW(RRR²RãRRR RR¿RáRÁRÆ(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRU+st tMXRecordc B@skeZdZdZeddedƒdedƒddd d ƒedededƒded ƒƒfZRS(R"iRQRiRRR®sCPreference given to this exchanger. Lower values are more preferredR'iR(iÿÿRSRTs)A host willing to act as a mail exchanger( RRR²RãRRR RgR¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRs§s tNSRecordcB@s2eZdZdZedededƒƒfZRS(R!iR)RiR*(RRR²RãR RgRR¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRt¸s t NSECRecordc B@s{eZdZdZedƒZd eZede dedƒƒe ddedƒd ed eƒfZd„Z d„ZRS(tNSECiÂsYformat must be specified as "NEXT TYPE1 [TYPE2 [TYPE3 [...]]]" (see RFC 4034 for details)uSOAtnextRisNext Domain Namestypes+sType MapRÀR°cC@s<|iƒ}t|ƒdjodS|dt|dƒfS(Niii(R5R‹R&R˜(R¼R>RÀ((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRÁÖsc@stˆi|ƒ|dg}|d}t|ttfƒp |g}n|i|ƒdi‡‡fd†|DƒƒS(Niiu c3@s9x2|]+}|dj otiˆ|ˆƒVqqWdS(N(R&R RÂ(RÃRÄ(RÅR¼(s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys ås (RÆR—R™R˜textendR7(R¼RÀRÅtvalues_flatttypes((RÅR¼s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRÇÞs (uSOA(RRR²RãRRáR³t_allowed_typesR RgRRUR¿RÁRÇ(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRuÃs tNSEC3RecordcB@seZdZdZeZRS(tNSEC3i#(RRR²RãRfR¹(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR|èstNSEC3PARAMRecordcB@seZdZdZeZRS(t NSEC3PARAMi#(RRR²RãRfR¹(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR~íscC@sQd}|iddƒiddƒ}x&|D]}||jotdƒSq+WdS(NuSAUPt"RYs's*flags must be one of "S", "A", "U", or "P"(treplaceR(R'R=t allowed_flagstflag((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_validate_naptr_flagsòs tNAPTRRecordc B@s¼eZdZdZeddedƒddddƒed ded ƒddddƒedededƒd d„ƒeddedƒƒeddedƒƒeddedƒƒfZRS(tNAPTRictorderRitOrderR'iR(iÿÿRQRRR=RIt normalizercC@s |iƒS((Râ(R^((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRjstservicetServicetregexpsRegular ExpressiontreplacementtReplacement( RRR²RãRRR R„R¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR…ús( t PTRRecordc B@sDeZdZdZededededƒdedƒƒfZRS(R iR)R‰RiR*R®s*The hostname this reverse record points to( RRR²RãR RvRxRR¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRstRPRecordcB@seZdZdZeZRS(tRPiŸ(RRR²RãRfR¹(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR%scC@s|djodSt||ƒS(Nu.(Rg(R'R>((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_srv_target_validator*s t SRVRecordcB@s¡eZdZdZeddedƒddddƒed ded ƒddddƒeddedƒddddƒed ededƒdedƒƒfZRS(tSRViÞ tpriorityRitPriorityR'iR(iÿÿtweighttWeightRmtPortR<R=R®sbThe domain name of the target host or '.' if the service is decidedly not available at this domain( RRR²RãRRR R’R¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR“0s$ cC@s;d}yti||ƒWntj otdƒSXdS(Ns%Y%m%d%H%M%Ss6the value does not follow "YYYYMMDDHHMMSS" time format(R,tstrptimeR$R(R'R>ttime_format((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_sig_time_validatorJs t SIGRecordcB@sLeZdZdZedggZeD]Zedjoeeq&q&[ƒZe dde dƒdeƒedde d ƒd ddd ƒedde dƒd ddd ƒedde dƒd dƒede de dƒƒede de dƒƒedde dƒd dddƒedde dƒƒedde dƒƒf ZRS(tSIGiç uSOAuSIGttype_coveredRisType CoveredRÀR1R2R'iR(iÿtlabelstLabelstoriginal_ttlsOriginal TTLtsignature_expirationsSignature Expirationtsignature_inceptionsSignature InceptionR0sKey Tagiÿÿtsigners_names Signer's Namet signaturet Signature(RRR²RãR˜RÙR³R^R{RRRR RœR¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRRs>? t SPFRecordcB@seZdZdZeZRS(tSPFi8(RRR²RãRfR¹(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR¨stRRSIGRecordcB@seZdZdZRS(tRRSIGiÂ(RRR²Rã(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRª„stSSHFPRecordc B@sqeZdZdZeddedƒddddƒed ded ƒddddƒeddedƒƒfZRS( tSSHFPiŸR1RiR2R'iR(iÿtfp_typesFingerprint TypetfingerprinttFingerprint(RRR²RãRRR R¿(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR¬ˆs tTARecordcB@seZdZeZRS(tTA(RRR²RfR¹(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR±›st TKEYRecordcB@seZdZeZRS(tTKEY(RRR²RfR¹(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR³Ÿst TSIGRecordcB@seZdZeZRS(tTSIG(RRR²RfR¹(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRµ£st TXTRecordcB@s8eZdZdZeddedƒƒfZd„ZRS(tTXTiR"Ris Text DatacC@s|fS(N((R¼R>((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRÁ°s(RRR²RãR RR¿RÁ(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR·§s c c@sÔxtddtdƒddddgƒtddtd ƒddddgƒtd dtdƒddddgƒfD]}|VqsWxKtD]C}|Vx|iƒD]}|Vq¡Wx|iƒD]}|Vq½Wq‰WdS(Nsdnsrecords?RitRecordsR=t no_createt no_searchRsdnstype?sRecord typesdnsdata?sRecord data(RRR t_dns_recordsRóRô(topttoptionRÉRñ((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt__dns_record_options_iterÙs( cc@s*x#|]}|io|iVqqWdS(N(R¹R²(RÃR((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys ñs cC@s´|tjot|ƒ}nC|idƒp2|idƒp|d7}nd||f}nytid|ƒSWn9tij o*tidtdƒh|d6ƒ‚nXdS(NR.s%s.%stdns_resolveR‰sANameserver '%(host)s' does not have a corresponding A/AAAA recordRŸ(ReRRŠRRRRŒR(R}R„((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytcheck_ns_rec_resolvableôs cC@s8y|itiigƒWntij otSXtS(N(t get_entryRtenvt container_dnsRRŒRfRU(R((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytdns_container_existss cC@s5t|ƒottii|ƒSttiiƒSdS(N(RRRRÃtrealmR(R}((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytdefault_zone_update_policy s t managedbyRisManagedby permissiontdnszonecB@sÈeZdZeiiZedƒZedƒZ dddgZ dgZddd d ddd ddddddg eZ edƒZedƒZededddedƒdedƒdd„dd„d eƒed!eded"ƒded#ƒd$d|ƒed dd&ded'ƒded(ƒdd)„ƒed edd*ded+ƒded+ƒdd,„deƒeddd-ded.ƒded/ƒd0d1d2d3ded4eƒeddd5ded6ƒded7ƒd0d8d2d9d:d;d4eƒed dd<ded=ƒded>ƒd0d8d2d9d:d?d4eƒeddd@dedAƒdedBƒd:dCd0d8d2d9d4eƒedddDdedEƒdedFƒd:d;d0d8d2d9d4eƒedGddHdedIƒdedJƒd0d8d2d9ƒedKddLdedMƒdedNƒdOeƒedPddQdedRƒdedRƒddS„d4eƒedTddUdedVƒdedWƒd$dXdYgdZeƒed[dd\ded]ƒded^ƒdZed:ed4eƒed_ededd`dedaƒdedbƒd:dcd4eƒeddededdededfƒdedgƒd:dhd4eƒedieddjdedkƒdedlƒdmeƒednddodedpƒdedqƒdOd}ƒeduddvdedwƒdedxƒƒfZdy„Z dz„Z!d{„Z"RS(~s3 DNS Zone, container for resource records. sDNS zones DNS zonesttopt idnsrecordtidnszonet ipadnszoneR‡tidnszoneactivetidnssoamnametidnssoarnamet idnssoaserialtidnssoarefreshtidnssoaretryt idnssoaexpiretidnssoaminimumtidnsallowquerytidnsallowtransfertidnsforwarderstidnsforwardpolicys DNS ZonessDNS ZoneRR„Ris Zone nameR®sZone name (FQDN)tdefault_fromcC@s t|ƒS((R<(tname_from_ip((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRj.sR‰cC@s |iƒS((R´(R>((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRj/stprimary_keys name_from_ip?sReverse zone IP networks+IP network to create reverse zone name fromR=Rétname_serversAuthoritative nameservers$Authoritative nameserver domain namecC@s |iƒS((R´(R>((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRj;stadmin_emailsAdministrator e-mail addresscC@sd|S(s hostmaster.%s((R‡((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRjBstserials SOA serialsSOA record serial numberR'iR(lÿÿtautofilltrefreshsSOA refreshsSOA record refresh timeiiÿÿÿRöitretrys SOA retrysSOA record retry timei„texpires SOA expiresSOA record expire timeiutminimumsSOA minimums,How long should negative responses be cachedsdnsttl?tttlsSOA time to livesSOA record time to lives dnsclass?tclasss SOA classsSOA record classRÀsidnsupdatepolicy?t update_policysBIND update policycC@s t|ƒS((RÇ(R‡((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRjƒssidnszoneactive?tzone_activesActive zonesIs zone active?RºRt attributesidnsallowdynupdate?tdynamic_updatesDynamic updatesAllow dynamic updates.sidnsallowquery?tallow_querysAllow querysWSemicolon separated list of IP addresses or networks which are allowed to issue queriesuany;sidnsallowtransfer?tallow_transfersAllow transfers[Semicolon separated list of IP addresses or networks which are allowed to transfer the zoneunone;sidnsforwarders*RosZone forwarderssA list of per-zone forwarders. A custom port can be specified for each forwarder using a standard format "IP_ADDRESS port PORT"R°sidnsforwardpolicy?tforward_policysForward policys©Per-zone conditional forwarding policy. Set to "none" to disable forwarding to global forwarder for this zone. In that case, conditional zone forwarders are disregarded.uonlyufirstunonesidnsallowsyncptr?tallow_sync_ptrsAllow PTR syncsPAllow synchronization of forward (A, AAAA) and reverse (PTR) records in the zonecO@sÚ|d}tt|ƒi||}y|ii|dgƒWn”tij o…|idƒo|d }n|d}tt|ƒi||}y"|ii|dgƒ\}}WqÖtij oqÖXnX|S(NiÿÿÿÿRYu.(RºRÉtget_dnRûRÂRRŒRŠ(R¼RRR}Rttest_dnR ((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRï¾s " cC@sd|S(NuManage DNS zone %s((R¼R}((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytpermission_nameÑscC@sÙ|tjo|S|idƒo|d }n|idƒo|d }n|idƒ}|idƒ}t|ƒ}xEtt|ƒt|ƒƒD](\}}||jodS|iƒq”W|ptSdi|ƒS(s Get name of a record that is to be added to a new zone. I.e. when we want to add record "ipa.lab.example.com" in a zone "example.com", this function should return "ipa.lab". Returns None when record cannot be added to a zone u.iÿÿÿÿN( ReRŠR5R™tziptreversedR&RSR7(R¼R}R)thostname_partst zone_partstdns_namet host_partt zone_part((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytget_name_in_zoneÔs$ (svirtual_attribute(uonlyufirstunone(#RRt__doc__RRÃRÄtcontainer_dnRtobject_nametobject_name_pluraltobject_classtpossible_objectclassest_record_attributestdefault_attributesRitlabel_singularR RuRURIR*RRR-Rt_record_classesRRfRXRaRsttakes_paramsRïRñRù(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRÉs tdnszone_addcB@syeZedƒZeieZeieddedƒdedƒƒe de dedƒƒfZd„Zd „ZRS( s!Create new DNS zone (SOA record).tforceRitForceR®s=Force DNS zone creation even if nameserver is not resolvable.sip_address?s=Add forward record for nameserver located in the created zonecO@sµt|iiiƒptidtdƒƒ‚nd|d<|d}t|ƒo"tidddtd ƒƒ‚n|i d ƒ}t |dƒ} |idƒo|ii |d|ƒ} n|} t| ƒo_|idƒp"tidddtd ƒƒ‚qt|o"tidd dtdƒƒ‚qtnB|o:|idƒo*| o"tidd dtdƒƒ‚n|o!|dot|d|ƒn||d<||d<|S(NR‰sDNS is not configuredtTRUERÎRÏR„sname-serverR”s'Nameserver address is not a domain nameRpiÿÿÿÿR.s9Nameserver for reverse zone cannot be a relative DNS names;Nameserver DNS record is created for for forward zones onlysENameserver DNS record is created only for nameservers in current zoneRitnsrecord(RÅRtBackendtldap2RRŒRRR›RÊRRŠtobjRùRRÁ(R¼RRR R RRt nameservertnameserver_ip_addressRttrecord_in_zone((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytpre_callbacks6 c O@ss|idƒ}|oY|dd}|idƒo|ii|d|ƒ}n|}t|d||ƒn|S(NRpRÏiR.iÿÿÿÿ(RÊRŠRRùR…( R¼RRR RRRR t dns_record((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt post_callback1s ( RRRRút LDAPCreatethas_output_paramstdnszone_output_paramst takes_optionsRR RDRR(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR÷s ,tdnszone_delcB@seZedƒZd„ZRS(sDelete DNS zone (SOA record).cO@sHy+tid|ii|dƒdtƒWntij onXtS(Ntpermission_deliÿÿÿÿR(RRRRñRURRŒ(R¼RRRR((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRFs (RRRRúR(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRCstdnszone_modcB@sXeZedƒZeieddedƒdedƒƒfZeieZd„Z RS(sModify DNS zone (SOA record).RRiRR®s5Force nameserver change even if nameserver not in DNScO@sH|idƒ}|o.|tjo!|dot|d|ƒn|S(NRÏRi(RÊReRÁ(R¼RRR R RRR ((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR]s ( RRRRút LDAPUpdateRRRRR(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRQs R†c B@speZedƒZeieZd„Zd„Zei e ddedƒdddedƒƒfZ d „ZRS( s#Search for DNS zones (SOA records).cO@sHd|jo"|iidt|dƒƒntt|ƒi||ŽS(NRÛ(RtparamsR%RºR†targs_options_2_params(R¼targsR((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRls "cO@s_d|jo9d|jo!|iidi||diÿÿÿÿ(RRûRïtupdate_entryRRƒRARU(R¼RRRR((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytexecute£s( RRRRúRtstandard_valuet has_outputtmsg_summaryR0(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR-s tdnszone_enablecB@s2eZedƒZeiZedƒZd„ZRS(sEnable DNS Zone.sEnabled DNS zone "%(value)s"c O@sl|ii}|ii||Ž}y|i|hdd6ƒWntij onXtdtd|dƒS(NRRÎR€R>iÿÿÿÿ(RRûRïR/RRƒRARU(R¼RRRR((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR0¸s( RRRRúRR1R2R3R0(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR4²s tdnszone_add_permissioncB@s2eZedƒZeiZedƒZd„ZRS(s0Add a permission for per-zone access delegation.s#Added system permission "%(value)s"cO@s|ii}|ii||Ž}y|i|dgƒ\}}Wn&tij o|ii|ŒnX|ii|dƒ}ti d|ddƒd}h} |i dƒ} | o'| idƒtt | ƒƒ| d(RRûRïRÂRRŒthandle_not_foundRñRRRÊR[R™tsetR/RARU(R¼RRRRtdn_R Rñt permissiontupdatetdnszone_ocs((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR0Ìs( ( RRRRúRR1R2R3R0(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR5Æs tdnszone_remove_permissioncB@s2eZedƒZeiZedƒZd„ZRS(s3Remove a permission for per-zone access delegation.s%Removed system permission "%(value)s"cO@sº|ii}|ii||Ž}y|i|hdd6ƒWn;tij o|ii|Œntij onX|ii |dƒ}t id|dtƒt dtd|ƒS(NRÈiÿÿÿÿRRR€R>(RRûRïR/R&RRŒR9RƒRñRRRURA(R¼RRRRRñ((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR0ðs( RRRRúRR1R2R3R0(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR?ês t dnsrecordcB@s¥eZdZdZeiiZedƒZ edƒZ ddgZdgeZ eZedƒZedƒZeded d dedƒd edƒdeƒedd ddedƒd edƒƒedd ddedƒd edƒdeƒfeZeddedƒd edƒƒZd„Zd„Zd„Zd„Zd„Zd„Z d „Z!d!„Z"e#d"„Z$d#„Z%d$„Z&d%„Z'e#d&„Z(d'„Z)RS((s DNS record. RÉsDNS resource recordsDNS resource recordsRÊRËR‡sDNS Resource RecordssDNS Resource RecordRR„RisRecord nameR®RÜsdnsttl?RåsTime to lives dnsclass?RætClasss DNS classRÀt structuredt Structureds=Parse all raw DNS records and return them in a structured wayc O@s‰|i|Œput|dƒ|d}}y t|dtdt|ƒƒWq…tj o'}tidddt|ƒƒ‚q…XndS(NiþÿÿÿiÿÿÿÿRcRdR„R‡R”( tis_pkey_zone_recordRRRURR$RR›R%( R¼RRR RRR}RR)((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_idnsname_pre_callback0s cO@sZ|idƒ}|idtƒp |djodSx|D]}t|d|ƒq;WdS(NR Ri(RÊRfR&RÁ(R¼RRR RRt nsrecordsR ((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_nsrecord_pre_callback8s cO@s¤|idƒ}|djodS|d}|i|Œo d}n|d}d} xDtD]<} |i| ƒo&|i| dƒ}| }t| } q\q\W| p;ditƒ}tiddd t t d ƒ|ƒƒ‚n|ot|idƒƒnd} d|jo’d|jo…d |joxd |jok| t|idƒƒ}|| joAtiddd t t dƒt d|d| d|ƒƒƒ‚q ndS(NR¥iþÿÿÿuiÿÿÿÿiRYs, R„R”saReverse zone for PTR record should be a sub-zone of one the following fully qualified domains: %sR.RZt-s\Reverse zone %(name)s requires exactly %(count)d IP address components, %(user_count)d givenR|t user_count(RÊR&RDRRŠRR7RR›R%RR‹R5RA(R¼RRR RRt ptrrecordsR}Rtzone_lent valid_zonet zone_namet allowed_zonestaddr_lentip_addr_comp_count((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt_ptrrecord_pre_callback@s4 # cO@s[|iii}xE|D]=}t|d|dƒ}|o||||||ŽqqWdS(Ns_%s_pre_callback(RR RRR&(R¼RR RRRtrtypetrtype_cb((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytrun_precallback_validatorscscG@s;|d}|ttƒjp|d|djotStS(Niÿÿÿÿs%s.iþÿÿÿ(R\ReRURf(R¼RR‡((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRDls (cO@sÍ|i|Œo¤|ii|ii|d |Ž}|iii}y|i|gƒ\}}Wn1ti j o"|iidi |dƒnX|ii|ii|d |ŽStt|ƒi||ŽS(NiÿÿÿÿRÉiþÿÿÿ( RDRtObjectt parent_objectRïR RRÂRRŒR9RºR@(R¼RRRRR;R}((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRïrs# "cC@s;y|tdƒ iƒ}Wntj o |}nX|S(NR(R‹Rât IndexError(R¼tattrtcliname((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytattr_to_cli~s c C@sÍ|iii}td dd|iiiƒ}d}g}yv|id|d|ƒd}xS|D]K}|d}y|d d}|i|ƒWq_tt fj oq_Xq_WWnt ij ogSX|S( Ntcntmasterstipatetcs((&(objectClass=ipaConfigObject)(cn=DNS))R&R'ii(R[R\(R[R](R[R^(RR RtDNRÃtbasedntfind_entriesR[RWtKeyErrorRRŒ( R¼RR'tldap_filtertdns_masterstentriestentryt master_dntmaster((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytget_dns_masters…s" c@s t‡fd†dDƒƒodSt}xWˆiƒD]I}||ijo3|i|io!ˆ|p|ot}Pq~q5q5W|pti|ƒ‚ndS(Nc3@sx|]}|ˆjVqWdS(N((RÃtk(R(s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys œs RtaddattrRtrename(ssetattrRksdelattrsrename(RKRfRRRÜRURtOptionError(R¼Rt no_option_msgtallow_empty_attrsthas_optionsRX((Rs6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pythas_cli_options›s " c@s t‡fd†|iƒDƒƒS(Nc3@sKxD|]=\}}|ˆijo!ˆi|io||fVqqWdS(N(RRÜ(RÃRXRÌ(R¼(s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys ªs (RAt iteritems(R¼R ((R¼s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytget_record_entry_attrs©sc K@s3|idtƒox|iƒD]}y|i|}Wntj o q nXt|tƒpq n|iƒ}xª||D]ž}ht|i ƒd6|d6}|i |ƒ}|djoq~nx<t|ƒD].\} } | dj o| ||| i Ñs RèRï(sdnsrecord_partsdnsrecord_extraN(RRKR&RëRbtAttributeError(R¼RËtrrparam((Rus6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytget_rrparam_from_partÇs cc@sŒg}x|D]w}|i|ƒ}|djoq n|od|i|ijoq n|i|jo|i|iƒ|Vq q WdS(s¯ Iterates through all DNSRecord instances that has at least one of its parts or extra options in given dictionary. It returns the DNSRecord instance only for the first occurence of part/extra option. :param kw Dictionary with DNS record parts or extra options :param skip_extra Skip DNS record extra options, yield only DNS records with a real record part RïN(R|R&RR=R„R[(R¼R¾t skip_extrat processedR½R{((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytiterate_rrparams_by_partsÝs c@sÁt‡fd†ˆDƒƒ}|i‡fd†|Dƒƒy|idƒWntj o t}nXt}|idƒ|otnt}|o)|o"tidddt dƒƒ‚ndS(Nc3@s5x.|]'}|tjoˆ|o |VqqWdS(N(R(RÃRX(R (s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys ös c3@s*x#|]}|ˆjo |VqqWdS(N((RÃRX(R (s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys øs tcnamerecordR¥R„R”sHCNAME record is not allowed to coexist with any other records except PTR( R:R=tremoveRbRfRUtdiscardRR›R(R¼t old_entryR tattrst rec_has_cnametrec_has_other_types((R s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytcheck_record_type_collisionsôs (*RRRúRVRRÃRÄRûRRüRýRþRRRUtrdn_is_primary_keyRiRR RlRRRt_dns_record_optionsRRtstructured_flagRERGRQRTRDRïRZRiRfRqRsRyR|RR‡(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR@sV # R‚c B@s‡eZedƒZdZeieddedƒdddgded ƒƒei fZd „Z d„Zd„Zd „Z d„ZRS(sAdd new DNS resource record.skNo options to add a specific record provided. Command help may be consulted for all supported record types.RRiRR=R±t no_outputR®s;force NS record creation even if its hostname is not in DNScO@s/|ii||iƒtt|ƒi||ŽS(N(RRqRnRºR‚R(R¼RR((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR scC@s-y||ii||iƒh}xH|ii|dtƒD].}|i|i|dtƒ}|i|ƒq8W|i|ƒdSWnt i j onX|dtjodit ƒ}n4t|dƒoditƒ}nditƒ}|iiitdƒƒ|iiitdƒ|ƒt}xß|p×|iiitdƒƒ}|djodSyUd |iƒ}|i|} t| tƒp tƒ‚n| ip tƒ‚nWnHttfj o6ditƒ} |iiitd ƒ| ƒq+nXt}q+W| i|iƒ}|i|ƒdS(NR}RR‡u, tdnszoneidnsnameu7Please choose a type of DNS resource record to be addedu4The most common types for this type of zone are: %s uDNS resource record types%srecordu3Invalid or unsupported type. Allowed values are: %s(RRqRnRRURR RfR=RRmReR7t_zone_top_record_typesRt_rev_top_record_typest_top_record_typesR÷tprint_plainRRøR&R´RR—RªR$R¹Rbt_dns_supported_record_typesR(R¼R¾tnew_kwR{Rtcommon_typestokR²R„Rut all_types((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytinteractive_prompt_callback sP cO@sgg}g}xj|D]b} y|i| } Wntj o qnX|ii| ƒ}|djoqnd| ijoµ|i|joqn|i|joItid| i p| idt dƒtd|i p|iƒƒ‚n|i|ƒ}|i |ƒg} | ||i<|i|iƒqnd| ijo7t| tƒo|| oqn|i|iƒqqW|ii||||Žx\|D]T}y|i|} Wntj o q™nXt| tƒpq™n|i|ƒq™Wtt|ƒƒ}xT|D]L}y|i|} Wntj o q nX| i||||||Žq Wttd|ƒy(|i|td|iiƒ\}}Wntij onºXx¢|D]š}|tjoq²n||djog||Raw value of a DNS record was already set by "%(name)s" optionRïtdnsrecord_precallback_attrsRØ(RRbRR|R&R=R„RR›RRRARÖRÂR[R—RRTRªR™R:R RRRÂRtnormalize_dnRŒR˜RÊR‡(R¼RRR R RRtprecallback_attrstprocessed_attrsR¾RuR{R¿RwRXR;RƒRÔ((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRV s€ $ *c O@su|idjo[t|tiƒoD|ii}|d}|ii|dƒ} |i|| |dSn|‚dS(Nt add_entryii(t func_nameR—RRœRRûRsR/( R¼RRRt call_funct call_argstcall_kwargsRRR ((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytexc_callback® s cO@s‡x@ttdgƒD],}|i|}|i|||||ŽqW|ii|Œotg||iiic3@s7x0|])\}}|dj o|nˆ|VqWdS(N(R&(RÃRÚRÉ(t old_parts(s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys s (!RÊRRDRR›RRRURÖRfR&R„RR—R˜R™R‹RTRÂRR˜RŒR9RR%RitAttrValueNotFoundRRÁRÎRÂR:R‡(R¼RRR R RRt updated_attrsRuR¿t old_valueR;RƒRXtold_dnsvaluet new_partst attr_nametmodified_partstnew_dnsvalue((R¢s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRØ sR# &cO@sôtt|ƒi||Ž}|ii|ŒpÂ|idƒ}|dj o|d |f}n|ii||Ž}|ii}|i |t d|iiƒ\}}t} x$|D]} || ot } Pq±q±W| o|iii|ŒSn|S(NRliÿÿÿÿRØ(RºR¡R0RRDRÊR&RïRûRÂRR˜RURftmethodstdelentry(R¼RRR€RlRRR;Rƒtdel_allRX((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR0 s& cO@sD|ii|Œotg||iiiRöRub%(count)d %(type)s record skipped. Only one value per DNS record type can be modified at one time.uc%(count)d %(type)s records skipped. Only one value per DNS record type can be modified at one time.iR|R/(RRqRnRURRmRRRR R÷RRRRbR—RªR[R7R„RiR™Rtprompt_yesnoRARfRR=RR‹R²(R¼R¾RRÙtrec_typet rec_typest record_paramsRXRutrec_type_contentt rec_valuest rec_valuet mod_valueR((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR–4 sP"2 $ + &(RRRRúRnRRR@RŠRRR0RR–(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR¡Ë s < tdnsrecord_delentrycB@s eZdZedƒZeZRS(s" Delete DNS record entry. sDeleted record "%(value)s"(RRRúRR3RUtNO_CLI(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR·k st dnsrecord_delcB@s}eZedƒZedƒZeddededƒƒeifZ d„Z d„Zd„Zd „Z d „Zd„ZRS(sDelete DNS resource record.sNeither --del-all nor options to delete a specific record provided. Command help may be consulted for all supported record types.RRöRisDelete all associated recordsc#@sŒx…tt|ƒiƒD]n‰t‡fd†dDƒƒoqn@ˆidjoqn)tˆtƒoˆiddƒVqnˆVqWdS(Nc3@s"x|]}|ˆijVqWdS(N(R=(RÃRƒ(R¾(s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pys … s RèRïRlR¯(sdnsrecord_partsdnsrecord_extra(srename( RºR¹tget_optionsRKR„R—RªtcloneR&(R¼((R¾s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRºƒ sc O@sÄy(|i|td|iiƒ\}}Wn&tij o|ii|ŒnXx|iƒD]ý} | tjoq^nt|| t t fƒp|| g} n|| } x‘| D]‰}y|| i|ƒWq´tt fj oYy*|i| }t|ip|iƒ} Wn | } nXtid| d|ƒ‚q´Xq´Wt t|| ƒƒ|| R(RÂRRR˜RRŒR9RR—R˜R™RRbR$RR%RiR„R£R:RfRDRURR(R¼RRR R RRR;RƒRXRÔRÌRuR¨Rtrecord_found((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR sH ! cO@sº|idtƒoM|ii|Œo&tidddtdƒtƒ‚n|iii |ŒSt t|ƒi||Ž}t tdtƒo(|ii|Œo|iii |ŒS|S(NRR„R”s"Zone record '%s' cannot be deleted(RÊRfRRDRR›RReR«R¬RºR¹R0RR(R¼RRR€((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR0½ s cO@sD|ii|Œotg||iii(RÊRfRRqRnRRmRRRR R÷RRR¯RURRbR—RªR[R7R„RiRAR˜(R¼R¾RRÙR°R±tuser_del_alltpresent_paramsRXRuR³tdeleted_valuesRµtuser_del_value((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR–Ù sP"2! $ " (RRRRúRnRRfR@RŠRRºRR0RRR–(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR¹u s - R®cB@s0eZedƒZeieifZd„ZRS(sDisplay DNS resource.cO@sD|ii|Œotg||iii*s RèRïR¯(sdnsrecord_partsdnsrecord_extra(RºRyRºRKR—RªR»R&(R¼((R¾s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRº(scO@s|||ifS(N(t SCOPE_SUBTREE(R¼RR&R R'R(RR((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR2sc O@s”|o‰|ii|ii}|i|dƒ}|dd|jotg|dd|ii( tfindRRÃR–RRRŒRRARU(R¼RRtquery((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR0Ps 2 (RRRRúRR1R2R3R t takes_argsR0(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRÀDs tdns_is_enabledcB@sGeZdZeZeiZeddd e i iƒZdZ d„ZRS( sC Checks if any of the servers has the DNS service enabled. R[R\R]R^s((&(objectClass=ipaConfigObject)(cn=DNS))cO@sy|iii}t}y9|id|id|iƒ}t|ƒo t}nWnt j o }nXt d|ddƒS(NR&R'R€R>u(RR RRfRaR&R'R‹RURšRA(R¼RRRtdns_enabledtentR)((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR0js (scnsmasters(scnsipa(scnsetc(RRRúRUR¸RR1R2R_RRÃR`R'R&R0(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRÈ`s t dnsconfigc B@seZdZedƒZddddgZedƒZedƒZede dd d edƒded ƒde ƒedddd edƒdedƒdd$ƒedddd edƒdedƒƒe dddd edƒdedƒdd ƒfZd!„Zd"„Zd#„ZRS(%s) DNS global configuration object sDNS configuration optionsRÙRØtidnsallowsyncptrtidnszonerefreshsDNS Global Configurationsidnsforwarders*RRoRisGlobal forwardersR®s}A list of global forwarders. A custom port can be specified for each forwarder using a standard format "IP_ADDRESS port PORT"R°sidnsforwardpolicy?RísForward policysTGlobal forwarding policy. Set to "none" to disable any configured global forwarders.RÀuonlyufirstunonesidnsallowsyncptr?RîsAllow PTR syncsDAllow synchronization of forward (A, AAAA) and reverse (PTR) recordssidnszonerefresh?tzone_refreshsZone refresh intervalsFAn interval between regular polls of the name server for new DNS zonesR'icO@s tiiS(N(RRÃRÄ(R¼RR((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRï¤scC@s+|i|iƒdd|iƒ\}}|S(NRØ(RÂRïR&R˜(R¼RRRf((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyt get_dnsconfig§sc@s>t‡fd†|iDƒƒpttdƒƒˆd®s s!Global DNS configuration is emptytsummary(RKRR%R(R¼R€((R€s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytpostprocess_results (uonlyufirstunone(RRRúRRüRRiRR RsRURRRRRïRÏRÑ(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRËzs: t dnsconfig_modcB@seZedƒZd„ZRS(s Modify global DNS configuration.cO@s/tt|ƒi||Ž}|ii|ƒ|S(N(RºRÒR0RRÑ(R¼RRR€((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR0·s(RRRRúR0(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRÒ´stdnsconfig_showcB@seZedƒZd„ZRS(s*Show the current global DNS configuration.cO@s/tt|ƒi||Ž}|ii|ƒ|S(N(RºRÓR0RRÑ(R¼RRR€((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyR0Âs(RRRRúR0(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pyRÓ¿s(™t __future__RR/R,R_tipalib.requestRtipalibRRRRtipalib.parametersRRRR R RRtipalib.plugins.baseldapRRtipalib.utilRRRRRRRRRRRtipapython.ipautilRRRRúR³ReRRŽRRÙttR\R´RRR*R-R<R&RDRERFRIRXRaRfRgRhRlRsRuRvRxRR…R’RUR¤R©RªRRR R#R$R+R-R4R6R8R:R>R@RERGRMRORURsRtRuR|R~R„R…RRR’R“RœRR¨RªR¬R±R³RµR·R¼R¿R˜R‰R‘RÁRÅRÇRt LDAPObjectRÉtregisterRRt LDAPDeleteRRRR+R†R,Rˆt LDAPQueryR-R4R5R?R@R‚R¡R·R¹R®RyRÀRÈRËRÒRÓ(((s6/usr/lib/python2.6/site-packages/ipalib/plugins/dns.pytsX4 L¹ 1 " "&ÿ* |% - Þ I + " ÿ ½ ˜ ! 7