Skip to main content

CPANEL-37035 - DNS Zone Manager issue - literally unplayable

Comments

36 comments

  • cPRex Jurassic Moderator
    Hey there! It sounds like you're experiencing case CPANEL-36573. We have a workaround posted here for the issue:
    0
  • Stacy HM
    Thank you. It works until we attempt to add a record, then get this: Error: API failure: Zone is invalid: Line 28: TTL set to prior TTL (14400); Line 30: TTL set to prior TTL (14400) at /usr/local/cpanel/Cpanel/ZoneFile/LineEdit.pm line 390.
    0
  • cPRex Jurassic Moderator
    Does that error happen independently of the "This system does not have a domain named "(domain)"" error?
    0
  • Curious Too
    Was this ever resolved? I get this error when trying to edit a zone file after updating to cPanel 96.0.8: [2021-05-18 22:44:44 -0400] info [xml-api] API failure: Zone is invalid: Line 58: TTL set to prior TTL (3600) at /usr/local/cpanel/Cpanel/ZoneFile/LineEdit.pm line 390. [mass_edit_dns_zone] version [1].
    0
  • cPRex Jurassic Moderator
    @Curious Too - I'm not seeing that error when I check a zone on my personal server that is also running 96.0.8. Can you run this command to verify that zone file and see if you also receive errors? named-checkzone domain.com /var/named/domain.com.db
    0
  • MediaServe
    FWIW On 96.0.8 I'm experiencing the second error mentioned in this thread, (but not the original): Error: API failure: Zone is invalid: Line 32: TTL set to prior TTL (14400) at /usr/local/cpanel/Cpanel/ZoneFile/LineEdit.pm line 390. Running named-checkzone reports "OK". There doesn't seem to be any relation to CPANEL-36573 as the affected domain is owned by a user, is properly mapped to the user in /etc/userdomains, and has the corresponding DNS line in /var/cpanel/users/[user]
    0
  • cPRex Jurassic Moderator
    @MediaServe - could you get a ticket submitted so we can see this on an affected machine?
    0
  • MediaServe
    @MediaServe - could you get a ticket submitted so we can see this on an affected machine?

    I've submitted ticket 94328705. While submitting it I found you've generated CPANEL-37035 for this, but I went ahead and completed the ticket anyway in case access to the server is helpful in diagnosing and resolving.
    0
  • cPRex Jurassic Moderator
    Nice - just created the 19th, so I hadn't come across that one yet. Thanks!
    0
  • MediaServe
    Seems it's simply a matter of ensuring that all your DNS records share the same TTL value, (SOA and NS records excluded it seems). My client had everything set to 14400 with a google verification record set to 86400. Changing the TTL value of the google verification TXT record to 14400 allowed WHM to once again save records without error. It's a bug of course, but easy enough to work around.
    0
  • cPRex Jurassic Moderator
    Update - if you are signed into the ticket system you can check out the article on this and follow along here: cPanel
    0
  • cPanelFelipe
    Seems it's simply a matter of ensuring that all your DNS records share the same TTL value, (SOA and NS records excluded it seems). " It's a bug of course, but easy enough to work around.

    This is incorrect. The problem happens when multiple records *IN THE SAME RECORD SET*"i.e., of the same name and type"have differing TTLs. Per RFC 2181/5.2, all records within a given set *must* share a common TTL. So there"s no need for all records in a zone to share the same TTL. This seems to be happening because the APIs behind the new zone editor are more stringent about this than the older APIs, but the zone editor itself doesn"t detect this issue early enough.
    0
  • smurf
    This seems to be happening because the APIs behind the new zone editor are more stringent about this than the older APIs, but the zone editor itself doesn"t detect this issue early enough.

    We've just ran into the issue of creating a new DNS record conflicting with the existing DNS record TTL after updating to v96. Are there plans to fix or relax the zone editor API? The error message is vague so it's causing a number of tickets and complaints.
    0
  • smurf
    We've performed some additional testing and the major issue is the zone editor now throws a 'generic' error message instead of a specific error. E.g. Try and create a CNAME host record when an existing A host record for the same record exists in the DNS zone. in v96 the error "Error: the request failed. (Error ID: Xxxx) Ask your hosting provider to research this error in cPanel & WHM's main error log.) is shown in v94 the error "Error: autodiscover.example.com. already has an A record. You may not mix CNAME records with other records for the same name" Unsure if this was better off split from the OPs issue and case but please can this be passed on so the error reporting can be fixed? We're frankly disappointed this even passed testing to make it into a release version.
    0
  • cPRex Jurassic Moderator
    @smurf - the issue will be resolved in the case in this thread's title. It still has not been assigned to a cPanel version just yet, but I'll be sure to post an update once that happens.
    0
  • AndyB78
    When trying to migrate MX to Google's, I've encountered the second problem in this thread because a TXT record had a 600 second TTL (different from the other TXTs with 14400). So I had to modify it to 14400, then add the Google MX records with 14400 instead of the 3600 specified by Google and then lower the TTL for the entire zone from WHM -> Set Zone TTL to 3600. I don't clearly understand if this is a bug or a strict implementation of a RFC but this feels like a bug. Any plans to fix this?
    0
  • cPRex Jurassic Moderator
    @AndyB78 - our team is working on that, and as soon as I have an update I'll be sure to post!
    0
  • headsup
    Just ran into the same issue after the v96.0.9 upgrade on all machines: Error: API failure: Zone is invalid: Line 46: TTL set to prior TTL (14000) at /usr/local/cpanel/Cpanel/ZoneFile/LineEdit.pm line 390.
    Can't add new, delete or edit existing records. Running check-zone throws a clear pointer: TTL mismatch in rrset
    0
  • headsup
    Deleting "google-site-verification" at both ends allows the records to be edited or added.
    0
  • cPRex Jurassic Moderator
    Update - the fix is scheduled to be included in 96.0.10 when that is released.
    0
  • smurf
    Update - the fix is scheduled to be included in 96.0.10 when that is released.

    Thanks @cPRex. It will be a welcome relief from the tickets we've had to deal with. We've basically had to make DNS changes manually for clients the past week.
    0
  • groentjuh
    I hope 96.0.10 also fixes AAAA-record; currently the DNS-manager does not submit the ipv6 and I wish the DNS zone manager would allow to add DS-records with algorithm 13. Cpanel can generate DSsec keys for that and sign its zone with that, but adding those record using the DNS zone manager is impossible (and I believe its just a matter of adding a few values to the dropbox).
    0
  • cPRex Jurassic Moderator
    @groentjuh - if you're seeing other issues outside of what case CPANEL-37035 covers it would be best to make a new thread about those.
    0
  • FusedT
    There are 2 issues in this ticket. First one, the missing domain, has been fixed. The second one, mismatching TTL has been not.
    0
  • cPRex Jurassic Moderator
    @FusedT - the mismatch issue is resolved in version 96.0.10. Are you still seeing problems with this after updating to that version?
    0
  • FusedT
    Yes, and the customers are complaining. Cpanel::Exception/(XID zt89hc) Zone is invalid: Line 38: TTL set to prior TTL (14400) at /usr/local/cpanel/Cpanel/ZoneFile/LineEdit.pm line 390. ==> cpsrvd 11.96.0.11 started
    0
  • cPRex Jurassic Moderator
    Could you open a ticket with our team so we can check this directly on your server?
    0
  • MackSix
    Cpanel 96.0.11 I try to change TTL on NS records in WHM and get: Error: API failure: Zone is invalid: Line 12: TTL set to prior TTL (86400) at /usr/local/cpanel/Cpanel/ZoneFile/LineEdit.pm line 390.
    0
  • cPRex Jurassic Moderator
    @MackSix - we have a separate case open for the TTL on NS records under CPANEL-37558. You can follow along with that here:
    0
  • MackSix
    Thank you scary green dinosaur.
    @MackSix - we have a separate case open for the TTL on NS records under CPANEL-37558. You can follow along with that here:
    0

Please sign in to leave a comment.