TSIG problems DHCP, DNS

Jozef Skvarcek jozef at photonfield.net
Tue Oct 17 17:32:44 UTC 2000 

Hello,

 	I am experiencing the following problem:
 	
 	I have DNS server (RH 6.2 and BIND 9.0.0) and a DHCP 
 server (RH 7.0 and dhcp 3.0b2pl6) with W2k clients.  Dynamic 
 DNS update works fine normally, but when I try to add TSIG 
 into the mix, and dhcp attempts to update DNS, I receive the 
 following error in /var/log/messages on the DHCP server:
 
 Oct 17 12:53:01 dhcpserver dhcpd: if IN A dhcpclient.test.com 
 doesn't exist add 60 IN A dhcpclient.test.com 10.0.0.6: 
 resolver failed.	
 
 Listed below are /etc/named.conf on the DNS server and 
 /etc/dhcpd.conf on the DHCP server.
 
Could someone help, please?

Jozef Skvarcek _________________________________________________________
                         jozef at photonfield.net 

*** named.conf
options {
        directory "/var/named";
        notify yes;
};

logging {
        channel mylog {
                file "log.msgs";
                severity debug 3;
                print-category yes;
                print-severity yes;
                print-time yes;
};
        channel sec_info {
                file "sec.msgs";
                severity info;
                print-category yes;
                print-severity yes;
                print-time yes;
};


        category update { mylog; };
        category security { sec_info; };
};

key update {
        algorithm hmac-md5;
        secret "3+YqTQgS5Yxp+JgK+jukxA==";
};

server 10.0.0.3 {
        keys { update; };
};


zone "test.com" {
        type master;
        file "db.test";
#       allow-update { 10.0.0.3; };
        allow-update { key update; };
};

zone "0.0.10.in-addr.arpa" {
        type master;
        file "db.10.0.0";
#       allow-update { 10.0.0.3; };
        allow-update { key update; };
};

zone "0.0.127.in-addr.arpa" {
        type master;
        file "db.127.0.0";
};


*** dhcpd.conf
option domain-name "test.com";
option domain-name-servers 10.0.0.1;

max-lease-time 120;
default-lease-time 120;

subnet 10.0.0.0 netmask 255.0.0.0 {
        ddns-domainname "test.com";
        ddns-rev-domainname "in-addr.arpa";
        one-lease-per-client on;
        range 10.0.0.6 10.0.0.15;
}

key update {
        algorithm hmac-md5;
        secret "3+YqTQgS5Yxp+JgK+jukxA==";
}

zone test.com. {
        primary 10.0.0.1;
        key update;
}

zone 0.0.10.in-addr.arpa. {
        primary 10.0.0.1;
        key update;
}

*** end

More information about the bind-users mailing list