Hello everyone,
I am currently testing the Proxmox SDN features (Proxmox VE 9.1.5) and trying to get automatic DNS registration with PowerDNS working within an EVPN Zone.
My Goal:
I want VMs to automatically register their hostname and IP in my PowerDNS server when started.
My Setup:
When I start the VM, no DNS update is sent to PowerDNS.
I am monitoring the PowerDNS logs (journalctl -u pdns -f) and checking the connection (which works fine via curl/API from the PVE host), but PVE simply does not trigger the update hook.
I also tried defining a "DHCP Range" in the Subnet (even though I use static IPs) to force the IPAM module to become active. However, I noticed that no dnsmasq process is started for this VNet on the host (ps aux | grep dnsmasq is empty regarding SDN instances).
My Question:
Does the pve internal IPAM (and the resulting dnsmasq orchestration) actually work with EVPN Zones?
It seems like the IPAM/DNS trigger logic works fine with Simple zones, but is completely silent with EVPN.
Release Notes & Expectations:
I noticed the release notes (e.g. for 9.1) mention:
However, my pve IPAM view (Datacenter > SDN > IPAM) is completely empty.
While I can see routing entries in the IP-VRF routing table, I cannot find any MAC-VRF entries or learned IP/MAC pairs within the SDN EVPN context that would populate the IPAM.
Is this a known limitation, or do I need to use a specific configuration (e.g., external IPAM like phpIPAM) to make EVPN zones trigger DNS updates?
Thanks for any insights!
I am currently testing the Proxmox SDN features (Proxmox VE 9.1.5) and trying to get automatic DNS registration with PowerDNS working within an EVPN Zone.
My Goal:
I want VMs to automatically register their hostname and IP in my PowerDNS server when started.
My Setup:
- SDN Zone: Type EVPN with the correct DNS Zone (Controller and Exit Nodes are configured and working for routing).
- IPAM: Set to pve in the Zone configuration.
- DNS Server: PowerDNS plugin configured in SDN -> Options (successfully tested the PowerDNS API with - curl)
- VNet/Subnet: Created a VNet and a Subnet
- VM Config: I assign a static IP inside the VM Hardware > Network Device settings to trigger IPAM.
When I start the VM, no DNS update is sent to PowerDNS.
I am monitoring the PowerDNS logs (journalctl -u pdns -f) and checking the connection (which works fine via curl/API from the PVE host), but PVE simply does not trigger the update hook.
I also tried defining a "DHCP Range" in the Subnet (even though I use static IPs) to force the IPAM module to become active. However, I noticed that no dnsmasq process is started for this VNet on the host (ps aux | grep dnsmasq is empty regarding SDN instances).
Code:
root@pve1:/etc/pve/sdn# cat zones.cfg
evpn: evpnzone
controller evpn-con
vrf-vxlan 100
advertise-subnets 1
dns dns
dnszone domain.internal
exitnodes pve3,pve1,pve2
ipam pve
mac [hidden]
mtu 1450
reversedns dns
root@pve1:/etc/pve/sdn# cat vnets.cfg
vnet: evpnvnet
zone evpnzone
tag 200
root@pve1:/etc/pve/sdn# cat dns.cfg
powerdns: dns
key [hidden]
url http://[POWERDNS-IP]:8081/api/v1/servers/localhost
root@pve1:/etc/pve/sdn# cat controllers.cfg
evpn: evpn-con
asn 65001
peers [IP-PVE1],[IP-PVE2],[IP-PVE3]
root@pve1:/etc/pve/sdn# cat pve-ipam-state.json
{"zones":{"evpnzone":{"subnets":{"[SUBNET-CIDR]":{"ips":{"[GATEWAY-IP]":{"gateway":1}}}}}}}
root@pve1:/etc/pve/sdn/firewall# cat evpnvnet.fw
[OPTIONS]
enable: 0My Question:
Does the pve internal IPAM (and the resulting dnsmasq orchestration) actually work with EVPN Zones?
It seems like the IPAM/DNS trigger logic works fine with Simple zones, but is completely silent with EVPN.
Release Notes & Expectations:
I noticed the release notes (e.g. for 9.1) mention:
Where exactly can I find or query these learned IPs, in pve IPAM?
However, my pve IPAM view (Datacenter > SDN > IPAM) is completely empty.
While I can see routing entries in the IP-VRF routing table, I cannot find any MAC-VRF entries or learned IP/MAC pairs within the SDN EVPN context that would populate the IPAM.
Is this a known limitation, or do I need to use a specific configuration (e.g., external IPAM like phpIPAM) to make EVPN zones trigger DNS updates?
Thanks for any insights!
