Bind9 + dhcpd : DDNS how to record both ethernet and wireless adapter

Larkoie · 07-11-2017, 04:36 AM

Hi,

I'm facing a DDNS update issue. Recently when checking the logs I saw lots of lines like this one :

Code:

dhcpd: Forward map from clientxxx.mydomain.local. to 192.168.1.64 FAILED: Has an address record but no DHCID, not mine.

After checking a lot of topics on different forums I understood that these errors are due to the fact that a large part of our clients are laptops (under windows) that are running both ethernet + wireless adapter at the same time (or that they are often switching from one to the other).

on the DNS zone file the client is recorded when he first connects through ethernet adapter, for example :

Quote:

clientxxx A 192.168.1.64
TXT "311f421cf9992ce2faadfa4172fba5c15a"

Then he tries to record with the wireless adapter resulting in the same hostname trying to register with another client ID (based on the mac-address from what I understood), resulting in the DNS server refusing to update the zone file.

I didn't find how could I allow both ethernet and WiFi adapters to register under the same hostname.

We are running DHCP and DNS servers on VyOS.
Here is the DHCP.conf :

Quote:

# The following 9 lines were added as global-parameters in the CLI and have not been validated
include "/etc/bind/rndc.key";
ddns-domainname "mydomain.local.";
ignore client-updates;
ddns-updates on;
ddns-update-style interim;
update-static-leases on;
authoritative;
ddns-rev-domainname "in-addr.arpa.";

shared-network serphydose {
authoritative;
subnet 192.168.1.0 netmask 255.255.255.0 {
option domain-name-servers 192.168.1.250;
# The following 3 lines were added as subnet-parameters in the CLI and have not been validated
zone 1.168.192 { primary 127.0.0.1; key "rndckey"; }
zone mydomain.local { primary 127.0.0.1; key "rndckey"; }
option routers 192.168.1.253;
option domain-name "mydomain.local";
default-lease-time 86400;
max-lease-time 86400;

range 192.168.1.1 192.168.1.220;
}
}

Here is the named.conf.local:

Quote:

include "/etc/bind/named.conf.mydomain.local";

include "/etc/bind/rndc.key";

controls {
inet 127.0.0.1 port 953
allow { 127.0.0.1; } keys { "rndckey"; };
};

here is the named.conf.mydomain.local

Quote:

zone "mydomain.local" in {
type master;
file "/etc/bind/mydomain.local.zone";
allow-update { any; };
forwarders {};
};

zone "1.168.192.in-addr.arpa" in {
type master;
file "/etc/bind/1.168.192.in-addr.arpa.zone";
allow-update { any; };
forwarders {};
};

Thank you for your help

smallpond · 07-21-2017, 03:36 PM

There is nothing wrong with having the same base name on two different subnets, as long as the subnets have different names. Thus:

Code:

mymachine.wifinet.example.com.   192.168.1.1
mymachine.ethnet.example.com.    192.169.1.1

However, if a machine has two interfaces connected to the same subnet, only one will work properly anyway, unless you are doing bonding or some kind of advanced routing.

Larkoie · 07-24-2017, 02:35 AM

Quote:

Originally Posted by smallpond

There is nothing wrong with having the same base name on two different subnets, as long as the subnets have different names. Thus:

Code:

mymachine.wifinet.example.com.   192.168.1.1
mymachine.ethnet.example.com.    192.169.1.1

However, if a machine has two interfaces connected to the same subnet, only one will work properly anyway, unless you are doing bonding or some kind of advanced routing.

OKay I have my answer then. Thank you for your help!