dns-update/README.md

39 lines
1.2 KiB
Markdown
Raw Normal View History

2022-02-11 20:24:15 +01:00
# DNS update script
Source: http://www.btteknik.net/?p=143
2022-02-11 20:45:24 +01:00
### Requirements
* DiG
2022-02-11 20:24:15 +01:00
### DNSSEC key
* need to create a dnssec key, so that we can authenticate clients' updates
```
# ddns-confgen -s myhost.example.com
```
* this key must be:
* added to DNS server's `named.conf` and associated to required zones
* stored in a text file in the same directory as the script as `dns.key`
### Install script
You may run `install.sh` (not as root, it includes `sudo`s) to:
* copy Systemd units templates to system directory
* enable timer for next reboot
* NOTE: if you move the script, you need to install again
2022-03-14 21:25:01 +01:00
### TODO
* review this README
2022-02-11 20:24:15 +01:00
### Issues
#### Cannot restrict PTR update
* We meet an issue when trying to use `tcp-self` in BIND9 zone config
* https://superuser.com/questions/977132/when-using-nsupdate-to-update-both-a-and-ptr-records-why-do-i-get-update-faile
* http://www.zytrax.com/books/dns/ch7/xfer.html#update-policy
2022-08-20 21:02:01 +02:00
### Discussions
#### Dynamic DNS update with ISC DHCP server
* Use case: DHCP server without fixed addresses
* `ddns_update` (or something like that) in ISC DHCP Server is something to look into
* https://flylib.com/books/en/2.684.1/configuring_a_dhcp_server_to_update_a_bind_name_server.html
* is it required? see 8.10.3