# DNS update script

Source: http://www.btteknik.net/?p=143

### Requirements
* DiG

### DNSSEC key
* need to create a dnssec key, so that we can authenticate clients' updates
```
# ddns-confgen -s myhost.example.com
```
* this key must be:
  * added to DNS server's `named.conf` and associated to required zones
  * stored in a text file in the same directory as the script as `dns.key`

### Install script
You may run `install.sh` (not as root, it includes `sudo`s) to:
* copy Systemd units templates to system directory
* enable timer for next reboot
* NOTE: if you move the script, you need to install again

### TODO
* review this README

### Issues

#### Cannot restrict PTR update
* We meet an issue when trying to use `tcp-self` in BIND9 zone config
* https://superuser.com/questions/977132/when-using-nsupdate-to-update-both-a-and-ptr-records-why-do-i-get-update-faile
* http://www.zytrax.com/books/dns/ch7/xfer.html#update-policy

### Discussions
#### Dynamic DNS update with ISC DHCP server
* Use case: DHCP server without fixed addresses
* `ddns_update` (or something like that) in ISC DHCP Server is something to look into
* https://flylib.com/books/en/2.684.1/configuring_a_dhcp_server_to_update_a_bind_name_server.html
  * is it required? see 8.10.3