Looking for a pointer on getting reverse mapping with DDNS to work with DHCPD & Named.
Jim Bucks
jbucks at coloradostudios.com
Thu Mar 28 19:59:19 UTC 2013
Hi All,
Alan, I looked that doc over and the only thing I found different than what
I used the key string from the .private key file.
Jim, thanks for the nsupdate pointer. I've never had to delve into that
level of debugging.
When using nsupdate, I was able to update the forward and reverse zones
files. I've looked over what I did interactively, and am not seeing a
difference from what I'm wanting to do "automatically" (but I'll admit I'm
getting some sort of cross-eyed over this). Here's my interactive output
(that worked).
[root at dns04 chroot]# nsupdate -d
> server 127.0.0.1
> key DHCP_UPDATER TrlaHSJXel+L5hqtfev5Gdlwj7B+
HqcXQiqXMdZ/8mGXhznkRXf6yMDaQ9rXbx45gFgVpW7PFRHXGsZfUKrFlw==
> update add 101.20.10.172.in-addr.arpa. 3600 in ptr
dhcp.coloradostudios.com.
>
Reply from SOA query:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31481
;; flags: qr aa ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; QUESTION SECTION:
;101.20.10.172.in-addr.arpa. IN SOA
;; AUTHORITY SECTION:
20.10.172.in-addr.arpa. 0 IN SOA dns04.coloradostudios.com.
sysmgr.hd.net. 2013032600 10800 3600 604800 86400
;; TSIG PSEUDOSECTION:
dhcp_updater. 0 ANY TSIG hmac-md5.sig-alg.reg.int.
1364498781 300 16 ZQBZwvuMnMJmgF3exPs7Nw== 31481 NOERROR 0
Found zone name: 20.10.172.in-addr.arpa
The master is: dns04.coloradostudios.com
Sending update to 127.0.0.1#53
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 22770
;; flags:; ZONE: 1, PREREQ: 0, UPDATE: 1, ADDITIONAL: 1
;; UPDATE SECTION:
101.20.10.172.in-addr.arpa. 3600 IN PTR dhcp.coloradostudios.com.
;; TSIG PSEUDOSECTION:
dhcp_updater. 0 ANY TSIG hmac-md5.sig-alg.reg.int.
1364498781 300 16 SyvXSO/PE5Gr/LrR0Cw9nQ== 22770 NOERROR 0
Reply from update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 22770
;; flags: qr ra; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1
;; ZONE SECTION:
;20.10.172.in-addr.arpa. IN SOA
;; TSIG PSEUDOSECTION:
dhcp_updater. 0 ANY TSIG hmac-md5.sig-alg.reg.int.
1364498781 300 16 AllUYyqyOwwMkv2SMfcyHg== 22770 NOERROR 0
>
> server 127.0.0.1
> key DHCP_UPDATER
TrlaHSJXel+L5hqtfev5Gdlwj7B+HqcXQiqXMdZ/8mGXhznkRXf6yMDaQ9rXbx45gFgVpW7PFRHXGsZfUKrFlw==
>
> update add dhcp-172-10-20-101.dhcp.coloradostudios.com 3600 IN A
dhcp.coloradostudios.com.
28-Mar-2013 13:36:40.447 dns_rdata_fromtext: buffer-0x7f302626f710:1: near
'dhcp.coloradostudios.com.': bad dotted quad
invalid rdata format: bad dotted quad
> update add proccilap.dhcp.coloradostudios.com 86400 A 172.10.20.101
> send
Reply from SOA query:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12184
;; flags: qr aa ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; QUESTION SECTION:
;proccilap.dhcp.coloradostudios.com. IN SOA
;; AUTHORITY SECTION:
dhcp.coloradostudios.com. 0 IN SOA dns04.coloradostudios.com.
sysmgr.axs.tv. 2013032801 10800 3600 604800 86400
;; TSIG PSEUDOSECTION:
dhcp_updater. 0 ANY TSIG hmac-md5.sig-alg.reg.int.
1364499508 300 16 Exdx5vgPto6sSf2nNau9iQ== 12184 NOERROR 0
Found zone name: dhcp.coloradostudios.com
The master is: dns04.coloradostudios.com
Sending update to 127.0.0.1#53
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 22408
;; flags:; ZONE: 1, PREREQ: 0, UPDATE: 1, ADDITIONAL: 1
;; UPDATE SECTION:
proccilap.dhcp.coloradostudios.com. 86400 IN A 172.10.20.101
;; TSIG PSEUDOSECTION:
dhcp_updater. 0 ANY TSIG hmac-md5.sig-alg.reg.int.
1364499508 300 16 hREc0P/HnhR/ynAe09xELw== 22408 NOERROR 0
Reply from update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 22408
;; flags: qr ra; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1
;; ZONE SECTION:
;dhcp.coloradostudios.com. IN SOA
;; TSIG PSEUDOSECTION:
dhcp_updater. 0 ANY TSIG hmac-md5.sig-alg.reg.int.
1364499508 300 16 /bLrKPzY8+pUuw8RM2MPQA== 22408 NOERROR 0
>
[root at dns04 chroot]# rndc freeze
[root at dns04 chroot]# rndc thaw
[root at dns04 keys]# ll ../../var/named/slaves/
total 24
-rw-r--r-- 1 named named 390 Mar 28 13:40 db.172.10.20
-rw-r--r-- 1 named named 792 Mar 28 13:26 db.172.10.20.jnl
-r--r--r-- 1 named named 7346 Feb 15 09:06 db.den.coloradostudios.com
-rw-r--r-- 1 named named 362 Mar 28 13:41 db.dhcp.coloradostudios.com
-rw-r--r-- 1 named named 782 Mar 28 13:38 db.dhcp.coloradostudios.com.jnl
[root at dns04 keys]# ll ../../var/named/slaves/
total 16
-rw-r--r-- 1 named named 390 Mar 28 13:40 db.172.10.20
-r--r--r-- 1 named named 7346 Feb 15 09:06 db.den.coloradostudios.com
-rw-r--r-- 1 named named 362 Mar 28 13:41 db.dhcp.coloradostudios.com
[root at dns04 keys]# cat ../../var/named/slaves/db.dhcp.coloradostudios.com
$ORIGIN .
$TTL 86400 ; 1 day
dhcp.coloradostudios.com IN SOA dns04.coloradostudios.com. sysmgr.axs.tv.
(
2013032802 ; serial
10800 ; refresh (3 hours)
3600 ; retry (1 hour)
604800 ; expire (1 week)
86400 ; minimum (1 day)
)
NS dns04.coloradostudios.com.
$ORIGIN dhcp.coloradostudios.com.
proccilap A 172.10.20.101
[root at dns04 keys]# cat ../../var/named/slaves/db.172.10.20
$ORIGIN .
$TTL 86400 ; 1 day
20.10.172.in-addr.arpa IN SOA dns04.coloradostudios.com. sysmgr.hd.net.
(
2013032601 ; serial
10800 ; refresh (3 hours)
3600 ; retry (1 hour)
604800 ; expire (1 week)
86400 ; minimum (1 day)
)
NS dns04.den.coloradostudios.com.
$ORIGIN 20.10.172.in-addr.arpa.
$TTL 3600 ; 1 hour
101 PTR dhcp.coloradostudios.com.
[root at dns04 keys]#
On Thu, Mar 28, 2013 at 1:05 PM, Jim Bucks <jbucks at coloradostudios.com>wrote:
> Hi All (sorry for the top-posting)....
>
> Alan - thanks for the link. I'll be checking it out / looking it over.
>
> Jim,
>
> Based on the nsupdate output (below), it looks like I've hosed up
> something in my "key". I used the key string from the .private key file
> (I've found some search results that say to use the .key and others say to
> use the .private).
>
> Jim
>
> [root at dns04 chroot]# nsupdate -d
> > server 127.0.0.1
> > key DHCP_UPDATE
> TrlaHSJXel+L5hqtfev5Gdlwj7B+HqcXQiqXMdZ/8mGXhznkRXf6yMDaQ9rXbx45gFgVpW7PFRHXGsZfUKrFlw==
> > update add 101.20.10.172.in-addr.arpa. 3600 in ptr
> dhcp.coloradostudios.com.
>
> >
> Reply from SOA query:
> ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11212
> ;; flags: qr aa ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
> ;; QUESTION SECTION:
> ;101.20.10.172.in-addr.arpa. IN SOA
>
> ;; AUTHORITY SECTION:
> 20.10.172.in-addr.arpa. 0 IN SOA dns04.coloradostudios.com.
> sysmgr.hd.net. 2013032600 10800 3600 604800 86400
>
> Found zone name: 20.10.172.in-addr.arpa
> The master is: dns04.coloradostudios.com
> Sending update to 127.0.0.1#53
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 25308
> ;; flags:; ZONE: 1, PREREQ: 0, UPDATE: 1, ADDITIONAL: 1
> ;; UPDATE SECTION:
> 101.20.10.172.in-addr.arpa. 3600 IN PTR dhcp.coloradostudios.com.
>
> ;; TSIG PSEUDOSECTION:
> dhcp_update. 0 ANY TSIG hmac-md5.sig-alg.reg.int.
> 1364496936 300 16 qUBZdqVmksNQtmb1mb9gNQ== 25308 NOERROR 0
>
> ; TSIG error with server: tsig indicates error
>
> Reply from update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOTAUTH, id: 25308
> ;; flags: qr ra; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1
> ;; ZONE SECTION:
> ;20.10.172.in-addr.arpa. IN SOA
>
> ;; TSIG PSEUDOSECTION:
> dhcp_update. 0 ANY TSIG hmac-md5.sig-alg.reg.int.
> 1364496936 300 0 25308 BADKEY 0
>
> > quit
> [root at dns04 chroot]#
>
>
> On Thu, Mar 28, 2013 at 12:03 PM, Jim Glassford <jmglass at iup.edu> wrote:
>
>> Hi Jim,
>>
>> No, sorry, wrong IP address, the real IP address of the dns server, not
>> the client.
>>
>> zone dhcp.coloradostudios.com. {
>> primary your_dns_server_IP_address; <-----
>> change from 127.0.0.1
>> key DHCP_UPDATER;
>> }
>>
>> Also do you have a /var/log/named.log file or debug log file for named,
>> other than messages, might have more information.
>> Can try nsupdate with debug to see if this gives any clue also.
>> nsupdate -d
>> > server your_dns_server_here
>> > key your_key_here
>> > update add 101.20.10.172.in-addr.arpa. 3600 in ptr
>> dhcp-172-10-20-101.coloradostudios.com.
>> > do extra CR to get it to go
>>
>> should see lots of debug information here
>> >
>> > quit
>>
>> man nsupdate
>>
>> best!
>> jim
>>
>>
--
Jim Bucks - IT Director
Colorado Studios <http://www.coloradostudios.com>, Mobile TV
Group<http://www.mobiletvgroup.com>,
HDNet <http://www.hd.net>, AXS.tv <http://www.axs.tv/>
8269 E. 23rd Ave. Denver, CO 80238 Main 303-388-8500
jbucks at coloradostudios.com Direct 303-542-5520
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20130328/261ee0a8/attachment.html>
More information about the bind-users
mailing list