block ddns by name
Chris Buxton
chris.p.buxton at gmail.com
Fri Feb 17 15:02:50 UTC 2012
On Feb 16, 2012, at 7:22 AM, Tom Schmitt wrote:
>> Von: Tony Finch <dot at dotat.at>
>
>>> Does anyone know if there is a way to prevent the creation of certain
>>> records - by name?
>>
>> update-policy {
>> deny "*" name "internal.example.com";
>> # ...
>> };
>
> Hi,
>
> I have a quite similar question but can't figure it out from the doc for update-policy:
>
> I have a few DHCP-clients which are sending really stupid hostnames to the DHCP and via DHCP they got into my DNS zones.
>
> Example: A few IP-phones are sending as their hostname eight times xFF. And this not printable name is then in DNS where I (and a few older nameserver) don't want it.
>
> So is there something possible like
> update-policy { deny "*" name /^a-zA-Z0-9_\-/; };
> ?
>
> (For thos who don't speak regex: deny all names with something in it what is no letter or digit or underscore or dash.
Does a check-names policy achieve this? I'm honestly not sure.
BTW: _ is not a valid hostname character. And your regex needs brackets:
/[^a-zA-Z0-9_-]/
But no, update-policy doesn't support regular expressions.
Regards,
Chris Buxton
BlueCat Networks
More information about the bind-users
mailing list