Make external-dns tier authoritative (drop dynamic mode)
ci/woodpecker/pr/pre-commit Pipeline was successful
ci/woodpecker/pr/kubeconform Pipeline was successful

The dynamic cluster mode was removed from the operator; RFC2136 update
capability is a per-zone property, not a cluster role. The external-dns
tier is an authoritative cluster whose zones set dynamicUpdate.

- switch binddns-externaldns BindCluster to mode authoritative
- regenerate bindcluster schema (enum: authoritative, resolver)
This commit is contained in:
2026-07-03 18:32:46 +10:00
parent d11c2900de
commit c57b115400
2 changed files with 5 additions and 5 deletions
+4 -3
View File
@@ -1,13 +1,14 @@
--- ---
# external-dns tier (replaces the 3x Puppet external-dns servers). The primary # external-dns tier (replaces the 3x Puppet external-dns servers). An ordinary
# accepts RFC2136 TSIG updates from external-dns; secondaries replicate. # authoritative cluster; external-dns writes to its zones via RFC2136 because
# those BindZones set dynamicUpdate (allow-update { key externaldns-key; }).
apiVersion: bind.unkin.net/v1alpha1 apiVersion: bind.unkin.net/v1alpha1
kind: BindCluster kind: BindCluster
metadata: metadata:
name: externaldns name: externaldns
namespace: binddns-externaldns namespace: binddns-externaldns
spec: spec:
mode: dynamic mode: authoritative
replicas: 3 replicas: 3
storageClassName: cephrbd-fast-delete storageClassName: cephrbd-fast-delete
storageSize: 1Gi storageSize: 1Gi
@@ -682,8 +682,7 @@
"default": "authoritative", "default": "authoritative",
"enum": [ "enum": [
"authoritative", "authoritative",
"resolver", "resolver"
"dynamic"
], ],
"type": "string" "type": "string"
}, },