ddns-dhcp 9.1.0
Jim Reid
jim at rfc1035.com
Mon May 14 19:40:05 UTC 2001
>>>>> "Charles" == Charles Bodley <Bodley at tflogic.com> writes:
Charles> Does anyone have a working ddns setup for a 9.1.x named
Charles> server. The documentation for dhcp mentions a program
Charles> called dnskeygen. This was used in 8.2.x but is not used
Charles> any longer apparently.
A DDNS setup from BIND8 will work just fine with BIND9. Just add a
key{} statement containing the shared secret and set up an
allow-update ACL for the zone to be updated that references that key{}
statement. ie If someone doesn't know the shared secret, they can't do
dynamic updates. The replacement for dnskeygen in BIND9 is called
dnssec-keygen. [It's still possible, but not recommended, to use
dnskeygen to generate DNSSEC keys.] There is plenty of documentation
on how to use dnssec-keygen. It's described in the Administrator's
Reference Manual and there's a man page too. Typing "dnssec-keygen -h"
produces a quick summary of the tool's command-line arguments and
options.
More information about the bind-users
mailing list