1.2 KiB
1.2 KiB
DNS update script
Source: http://www.btteknik.net/?p=143
Requirements
- DiG
DNSSEC key
- need to create a dnssec key, so that we can authenticate clients' updates
# ddns-confgen -s myhost.example.com
- this key must be:
- added to DNS server's
named.conf
and associated to required zones - stored in a text file in the same directory as the script as
dns.key
- added to DNS server's
Install script
You may run install.sh
(not as root, it includes sudo
s) to:
- copy Systemd units templates to system directory
- enable timer for next reboot
- NOTE: if you move the script, you need to install again
TODO
- review this README
Issues
Cannot restrict PTR update
- We meet an issue when trying to use
tcp-self
in BIND9 zone config - https://superuser.com/questions/977132/when-using-nsupdate-to-update-both-a-and-ptr-records-why-do-i-get-update-faile
- http://www.zytrax.com/books/dns/ch7/xfer.html#update-policy
Discussions
Dynamic DNS update with ISC DHCP server
- Use case: DHCP server without fixed addresses
ddns_update
(or something like that) in ISC DHCP Server is something to look into- https://flylib.com/books/en/2.684.1/configuring_a_dhcp_server_to_update_a_bind_name_server.html
- is it required? see 8.10.3