Make external-dns tier authoritative (drop dynamic mode)
ci/woodpecker/pr/pre-commit Pipeline was successful
ci/woodpecker/pr/kubeconform Pipeline was successful

The dynamic cluster mode was removed from the operator; RFC2136 update
capability is a per-zone property, not a cluster role. The external-dns
tier is an authoritative cluster whose zones set dynamicUpdate.

- switch binddns-externaldns BindCluster to mode authoritative
- regenerate bindcluster schema (enum: authoritative, resolver)
This commit is contained in:
2026-07-03 18:32:46 +10:00
parent d11c2900de
commit c57b115400
2 changed files with 5 additions and 5 deletions
+4 -3
View File
@@ -1,13 +1,14 @@
---
# external-dns tier (replaces the 3x Puppet external-dns servers). The primary
# accepts RFC2136 TSIG updates from external-dns; secondaries replicate.
# external-dns tier (replaces the 3x Puppet external-dns servers). An ordinary
# authoritative cluster; external-dns writes to its zones via RFC2136 because
# those BindZones set dynamicUpdate (allow-update { key externaldns-key; }).
apiVersion: bind.unkin.net/v1alpha1
kind: BindCluster
metadata:
name: externaldns
namespace: binddns-externaldns
spec:
mode: dynamic
mode: authoritative
replicas: 3
storageClassName: cephrbd-fast-delete
storageSize: 1Gi
@@ -682,8 +682,7 @@
"default": "authoritative",
"enum": [
"authoritative",
"resolver",
"dynamic"
"resolver"
],
"type": "string"
},