Forward map update unsuccessful from windows - IPv6

Cathy Almond cathya at isc.org
Thu Aug 19 08:51:08 UTC 2010 

The named log shows two attempts to add AAAA records.  The first
succeeds the second fails due to the prerequisite check.  Looking at the
reverse address request that succeeds we have an address of:
fd80:1010::de74
While the dhcpd log message has an address of:
fd80:1010::f274

Are you perhaps looking at slightly different instances of tests in the
same log?

But on the face of it, the log looks like you are giving the same name
out multiple times and the id (txt record) check is doing what it is
supposed to do - avoiding overwriting one record with a conflicting one.

It's coded like this because it was part of the spec at the time for
handing IPv6 DDNS updates.  (Future versions of ISC DHCP may handle this
differently as the protocol evolves).

If you're sure that the second entry is the correct one then you can try
adding this to your dhcpd.conf:
update-conflict-detection false;

This will disable the id check and dhcpd will just ask to delete the
records.

Hope this helps

Christopher D Haakinson wrote:
> 
> Hello, I am having an issue with DDNS, IPv6 and Windows clients. I am
> trying to setup DHCPv6 and DDNS for IPv6, and so far I have DHCPv6 working
> properly and handing out addresses from the range6. I have reverse IPv6
> working. I can get a SuSE linux client to update their forward record using
> NSUPDATE with no issues. But I can't get a Windows 2008 client to work.
> I am using Bind 9.7.1-P2 and DHCP 4.2.0
> 
> Here's a list of the errors I am getting:
> 	From dhcp:
> 	Forward map from chrisipv6.serv6.com to fd80:1010::f274 FAILED: Has
> an address record but no DHCID, not mine.
> 
> 	From named
> 	10-Aug-2010 09:37:56.111 update: info: client 127.0.0.1#19475:
> updating zone 'serv6.com/IN': adding an RR at 'chrisipv6.serv6.com' AAAA
> 	10-Aug-2010 09:37:56.111 update: info: client 127.0.0.1#19475:
> updating zone 'serv6.com/IN': adding an RR at 'chrisipv6.serv6.com' TXT
> 	10-Aug-2010 09:37:56.113 update-security: info: client
> 127.0.0.1#19475: signer "rndc-key" approved
> 	10-Aug-2010 09:37:56.113 update: info: client 127.0.0.1#19475:
> updating zone '0.0.0.0.0.0.0.0.0.1.0.1.0.8.d.f.ip6.arpa/IN': deleting rrset
> at
> '4.7.e.d.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.1.0.8.d.f.ip6.arpa'
> PTR
> 	10-Aug-2010 09:37:56.113 update: info: client 127.0.0.1#19475:
> updating zone '0.0.0.0.0.0.0.0.0.1.0.1.0.8.d.f.ip6.arpa/IN': adding an RR
> at
> '4.7.e.d.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.0.1.0.8.d.f.ip6.arpa'
> PTR
> 	10-Aug-2010 09:37:56.116 notify: info: zone
> 0.0.0.0.0.0.0.0.0.1.0.1.0.8.d.f.ip6.arpa/IN: sending notifies (serial
> 201009897)
> 	10-Aug-2010 09:38:11.555 update: info: client 127.0.0.1#19475:
> updating zone 'serv6.com/IN': update unsuccessful: chrisipv6.serv6.com:
> 'name not in use' prerequisite not satisfied (YXDOMAIN)
> 	10-Aug-2010 09:38:11.556 update: info: client 127.0.0.1#19475:
> updating zone 'serv6.com/IN': update unsuccessful: chrisipv6.serv6.com/TXT:
> 'RRset exists (value dependent)' prerequisite not satisfied (NXRRSET)
> 
> 
> -----------------dhcpd.conf:
> dynamic-bootp-lease-length 600;
> use-host-decl-names on;
> allow client-updates;
> ddns-updates on;
> ddns-update-style interim;
> ddns-domainname "serv6.com";
> filename "pxelinux.0";
> option dhcp-lease-time 3600;
> option domain-name "serv6.com";
> option dhcp6.domain-search "serv6.com", "serv.com";
> option dhcp6.name-servers fd80:1010::2;
> default-lease-time 3600;
> max-lease-time 3900;
> 
> key "rndc-key" {
> 	algorithm hmac-md5;
> 	secret "123456789";
> };
> 
> zone 0.0.0.0.0.0.0.0.0.1.0.1.0.8.d.f.ip6.arpa. {
> 	primary 127.0.0.1;
> 	key rndc-key;
> }
> 
> zone serv6.com. {
> 	primary 127.0.0.1;
> 	key rndc-key;
> }
> 
> 
> subnet6 fd80:1010::/64 {
> 	range6 fd80:1010::dddd fd80:1010::ffff;
> 	one-lease-per-client true;
> 	update-static-leases on;
> }
> 
> 
> ---------------- named.conf:
> acl "rndc-users" {
>      127.0.0.1;
>      fd80:1010::/64;
>      10.10/16;
>  };
> 
> 
> logging {
> 	channel simple_log {
> 		file "/var/log/bind.log" versions 3 size 5m;
> 		print-time yes;
> 		print-severity yes;
> 		print-category yes;
> 	};
> 	category default {
> 		simple_log;
> 	};
> };
> 
> options {
> 	directory "/var/named";
> 	dump-file "/var/named/data/cache_dump.db";
>         statistics-file "/var/named/data/named_stats.txt";
> 	listen-on-v6 { any; };
> };
> 
> controls {
> 	inet 127.0.0.1 allow { localhost; } keys { rndc-key; };
> };
> 
> include "/etc/rndc.key";
> 
> zone "." IN {
> 	type hint;
> 	file "named.ca";
> };
> 
> zone "localdomain" IN {
> 	type master;
> 	file "localdomain.zone";
> 	allow-update { key "rndc-key"; };
> 	notify yes;
> };
> 
> zone "localhost" IN {
> 	type master;
> 	file "localhost.zone";
> 	allow-update { key "rndc-key"; };
>         notify yes;
> };
> 
> zone "0.0.0.0.0.0.0.0.0.1.0.1.0.8.d.f.ip6.arpa" {
> 	type master;
> 	file "reverse-fd80-1010_64.IP6.ARPA";
> 	allow-update { key "rndc-key"; };
>         notify yes;
> };
> 
> key rndc-key {
> 	algorithm hmac-md5;
> 	secret "123456789";
> 	};
> 
> zone "serv6.com" {
> 	type master;
> 	file "/var/named/serv6.com.hosts";
> 	allow-update { key "rndc-key"; };
> 	notify yes;
> 	};
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users

More information about the bind-users mailing list