BIND not being updated by ISC DHCP
Alexander Burke
alexander.burke at gmail.com
Mon Mar 13 12:42:35 UTC 2006
I'm having trouble getting DNS to update automatically; neither forward
nor reverse are updating when DHCP leases are handed out. (All of the
hardcoded entries are working, though.)
The packages in question are bind-9.2.5-1 and dhcp-3.0.1-42_FC3.
Can anyone spot where I'm going wrong?
Thanks in advance!
/etc/dhcpd.conf:
## Master DHCP Server Configuration File
authoritative;
server-identifier penguin.home.foobar.ca;
ddns-update-style interim;
## deny client-updates;
default-lease-time 43200;
max-lease-time 43200;
option domain-name "home.foobar.ca";
option domain-name-servers penguin.home.foobar.ca;
option routers router.home.foobar.ca;
option lpr-servers printer.home.foobar.ca;
option tftp-server-name "penguin.home.foobar.ca";
option ntp-servers penguin.home.foobar.ca;
option option-150 code 150 = ip-address;
use-host-decl-names on;
key DHCP_UPDATER {
algorithm hmac-md5;
secret [REMOVED];
};
zone home.foobar.ca. {
primary 127.0.0.1;
key DHCP_UPDATER;
}
zone 0.0.10.in-addr.arpa. {
primary 127.0.0.1;
key DHCP_UPDATER;
}
subnet 10.0.0.0 netmask 255.255.255.0 {
range dynamic-bootp 10.0.0.101 10.0.0.199;
}
host PAP2 {
hardware ethernet 00:12:17:FC:42:46;
fixed-address 10.0.0.51;
}
// Many more hosts exist in the file
/etc/named.conf:
// Custom named.conf
options {
directory "/var/named";
// version statement for security to avoid hacking known
weaknesses
version "get lost";
// optional - disables all transfers - slaves allowed in zone
clauses
allow-transfer {none;};
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
};
include "/etc/rndc.key";
key DHCP_UPDATER {
algorithm hmac-md5;
secret [REMOVED];
};
// required zone for recursive queries
zone "." {
type hint;
file "root.hints";
};
// Somewhat important.
zone "home.foobar.ca" in {
type master;
// notify no;
file "home.foobar.ca.zone";
allow-update { key DHCP_UPDATER; };
};
// reverse map for our RFC1918 space
zone "0.0.10.in-addr.arpa" in {
type master;
// notify no;
file "10.0.0.rev";
allow-update { key DHCP_UPDATER; };
};
// required localhost domain
zone "localhost" in {
type master;
// notify no;
file "localhost.zone";
allow-update { key DHCP_UPDATER; };
};
// localhost reverse map
zone "0.0.127.in-addr.arpa" in {
type master;
// notify no;
file "localhost.rev";
allow-update { key DHCP_UPDATER; };
};
// END OF FILE //
home.foobar.ca.zone:
$TTL 86400
@ IN SOA penguin.home.foobar.ca. dns.foobar.ca.
(
2006031305 ; serial
10800 ; refresh (3 hours)
15 ; retry (15 seconds)
604800 ; expire (1 week)
10800 ; minimum (3 hours)
)
IN NS penguin.home.foobar.ca.
IN MX 10 mail.foobar.ca.
fileserver IN A 10.0.0.11
ftp IN CNAME fileserver
penguin IN A 10.0.0.10
router IN A 10.0.0.1
; There are more, but they don't matter for our purposes.
10.0.0.rev:
$TTL 86400
@ IN SOA penguin.home.foobar.ca. dns.foobar.ca.
(
2006031305 ; serial
10800 ; refresh (3 hours)
15 ; retry (15 seconds)
604800 ; expire (1 week)
10800 ; minimum (3 hours)
)
IN NS penguin.home.foobar.ca.
1 IN PTR router.home.foobar.ca.
10 IN PTR penguin.home.foobar.ca.
11 IN PTR fileserver.home.foobar.ca.
some /var/log/messages output indicating DHCP lease granted but no DNS
activity for it:
Mar 13 06:40:47 penguin named: named startup succeeded
Mar 13 06:41:19 penguin dhcpd: DHCPDISCOVER from 00:12:17:fc:42:46 via
eth0
Mar 13 06:41:19 penguin dhcpd: DHCPOFFER on 10.0.0.51 to
00:12:17:fc:42:46 via eth0
Mar 13 06:41:19 penguin dhcpd: DHCPREQUEST for 10.0.0.51 (10.0.0.10)
from 00:12:17:fc:42:46 via eth0
Mar 13 06:41:19 penguin dhcpd: DHCPACK on 10.0.0.51 to
00:12:17:fc:42:46 via eth0
Mar 13 11:41:26 penguin in.tftpd[5749]: RRQ from 10.0.0.51 filename
/init.cfg
Mar 13 11:41:26 penguin in.tftpd[5749]: sending NAK (1, File not found)
to 10.0.0.51
(Does anyone know why in.tftpd insists upon using GMT, when everything
else on the box recognizes that we're in GMT-0500?)
More information about the bind-users
mailing list