Regarding DDNS opeartion

hinetvenkat · 03-08-2006, 07:31 AM

Dear Guys

I am configuring the new Dynamic DNS server. I created the DHCP server with the following configuration.

DHCP server IP : 192.168.1.235/24 ( gateway is 192.168.1.235)

/etc/dhcpd.conf file content is as follows.

server-identifier example.com;
authoritative;
allow client-updates;

ddns-updates on;
ddns-domainname "example.com";
ddns-update-style interim;

zone example.com. { primary 192.168.1.8; }
zone 1.168.192.in-addr.arpa. { primary 192.168.1.8; }

subnet 192.168.1.0 netmask 255.255.255.0 {
range 192.168.1.240 192.168.1.250;
option subnet-mask 255.255.255.0;
option broadcast-address 192.168.1.255;
option domain-name "example.com";
default-lease-time 14400;
max-lease-time 14401;
option ip-forwarding off;
option time-offset -18000;
option routers 192.168.1.235;
option domain-name-servers 192.168.1.8;
}
----
DNS server : 192.168.1.8/24 (GW 192.168.1.235)

I configured the DNS setting as follows

content of /etc/named.conf:

options {
directory "/var/named";
};

zone "." {
type hint;
file "named.ca";
};

zone "0.0.127.in-addr.arpa" {
type master;
file "localhost.rev";
notify no;
};
zone "example.com" {
type master;
file "/var/named/example.com";
};

zone "1.168.192.in-addr.arpa"{
type master;
file "/var/named/example.com.rev";
};

----

I configured these settings without secret key options (plain config) as per the following links.

http://www.mattfoster.clara.co.uk/ddns.htm
http://www.fedoraforum.org/forum/showthread.php?t=25985

Client is getting ip from DHCP server. But It is not adding A or PTR recard to zone files in DNS server.

we added the recard of "DHCP server" in DNS server. From DNS server DHCP server is resolving and viseversa.

logs of DHCP and DNS server as follows:

DHCP server message logs:
Mar 8 17:49:30 testmc dhcpd: DHCPDISCOVER from 00:24:18:22:08:c4 (CNU5800G8Y) via eth0
Mar 8 17:49:31 testmc dhcpd: DHCPOFFER on 192.168.1.245 to 00:24:18:22:08:c4 (CNU5800G8Y) via eth0
Mar 8 17:49:31 testmc dhcpd: Unable to add forward map from CNU5800G8Y.example.com to 192.168.1.245: timed out
Mar 8 17:49:31 testmc dhcpd: DHCPREQUEST for 192.168.1.245 (192.168.1.8) from 00:24:18:22:08:c4 (CNU5800G8Y) via eth0
Mar 8 17:49:31 testmc dhcpd: DHCPACK on 192.168.1.245 to 00:24:18:22:08:c4 (CNU5800G8Y) via eth0
Mar 8 17:49:58 testmc dhcpd: DHCPINFORM from 192.168.1.245 via eth0
Mar 8 17:49:58 testmc dhcpd: DHCPACK to 192.168.1.245
Mar 8 17:50:02 testmc dhcpd: DHCPINFORM from 192.168.1.245 via eth0
Mar 8 17:50:02 testmc dhcpd: DHCPACK to 192.168.1.245

DNS server message logs:

Mar 8 17:49:35 testdnsmc named[9694]: client 192.168.1.235#32783: update denied

Kindly help me for this operation.

ARC1450 · 03-10-2006, 07:07 PM

In your custom zones for example.com in your BIND config, try adding

Code:

allow-update {192.168.1.235;};

And get keys in there as soon as possible so someone doesn't spoof the DHCP server's IP and make it go "boom".

This is my master DNS server config for my zones:

Code:

zone "cruea.net" IN {
        type master;
        file "data/cruea.net";
        allow-update {(dhcpserveraddress);};
        allow-transfer {(secondarydnsaddress);};
        allow-query {(CIDR network); 127.0.0.1;};
        notify yes;
};

zone "0.168.192.in-addr.arpa" IN {
        type master;
        file "data/0.168.192";
        allow-update {(dhcpserveraddress);};
        allow-transfer {(secondarydnsaddress);};
        allow-query {(CIDR network); 127.0.0.1;};
        notify yes;
};

[edit3]

And you'll probably need this, too:

Code:

zone "localhost" IN {
        type master;
        file "pri/localhost.zone";
        allow-update { none; };
        notify no;
};