dns_update_log shows dynamic entries deleted

Mark Andrews marka at isc.org
Wed Jun 10 00:45:49 UTC 2015 

Changes are PERMANENT until there is another change made to remove
the change.  This is how UPDATE (RFC 2136) is defined to behave.

The journal is there to hold changes until they can be consolidated
into the master file for a zone and to provide a source of data to
answer IXFR requests.

Mark

In message <CY1PR09MB0201D588860A2433E238B165BABE0 at CY1PR09MB0201.namprd09.prod.
outlook.com>, "Cuttler, Brian (HEALTH)" writes:
> Dave,
> 
> I had wondered that myself, but I haven't found any evidence to support the t
> heory (and I would much rather have a theory than an unknown).
> 
> The bind server seemed to check point its leases hourly (seems to slip back j
> ust a little each hour), and while I do see a bind restart in the logs, it wa
> s one I triggered at 09:40, there is nothing to indicate server (host or name
> d) at the time of the event (08:18). Nor any indication that DHCPD restarted 
> prior to my manually restarting it later on.
> 
> Nor have a found a switch to remove (auto-purge) 'old' dynamic entries, in th
> e named.conf, though I could have overlooked it, certainly I did nothing to e
> nable such a switch.
> 
> It's a mystery to me.
> 
> Thanks,
> Brian
> 
> -----Original Message-----
> From: dhcp-users-bounces at lists.isc.org [mailto:dhcp-users-bounces at lists.isc.o
> rg] On Behalf Of dave c
> Sent: Tuesday, June 09, 2015 3:06 PM
> To: Users of ISC DHCP
> Subject: Re: dns_update_log shows dynamic entries deleted
> 
> Well, you are likely asking the wrong side of the equation.
> 
> If I had to venture a guess, your DNS server reloaded itself.
> 
> Dynamic DNS updates are written to a local cache for the zone. I don't know i
> f that cache will always persist through having DNS restarted, but I'd sugges
> t that as it's dynamic, it's not designed to be persistent in the DNS zone. O
> therwise it would be in a DNS zone file :)
> 
> Do you have any info or stats on the DNS side of things?
> 
> If you had said that you started seeing updates not getting through to DNS, t
> hen I'd suggest that the issue might be that the DHCP system and DNS system h
> ad a change in what they used to authenticate updates. But as all dynamic DNS
>  information departed at the same time and is being recreated as systems chec
> k into DHCP, it points to the issue being on the DNS side.
> 
> Dave
> 
> On 6/9/15 13:21, Cuttler, Brian (HEALTH) wrote:
> > I disabled update_optimization and as dhcp releases are renewed (I 
> > already has update_static
> > enabled) we are re-creating the DNS entries.
> >
> > I still have no idea why those entries all got deleted and am rather stress
> ed over it.
> >
> > Please help me to understand what went wrong, and how to prevent or properl
> y fix.
> >
> > Many thanks,
> >
> > Brian
> >
> > *From:* dhcp-users-bounces at lists.isc.org 
> > [mailto:dhcp-users-bounces at lists.isc.org] *On Behalf Of *Cuttler, 
> > Brian (HEALTH)
> > *Sent:* Tuesday, June 09, 2015 12:05 PM
> > *To:* Users of ISC DHCP
> > *Subject:* dns_update_log shows dynamic entries deleted
> >
> > We are running on Centos 7.1 and have dhcp 4.2.5, with bind 9.9.4.
> >
> > We are running dhcp with subnet 10.57.36.0/22 permitted dynamic dns 
> > udpates, except for the last
> > 100 addresses in the pool, which we excluded to allow for static addresses 
> that we needed.
> >
> > Things have been working wonderfully - but at 08:18 this morning a 
> > large number of entries were removed from dynamic dns.
> >
> > The dhcp clients were either, only asleep for the night (Windows, 
> > printers) or actually online (linux).
> >
> > I've no idea why these DNS entries were removed, exactly how to get 
> > them back, and how to prevent them from being removed again.
> >
> > I'd suspect it was a lease expiration issue, but these machines all 
> > check in and renew, at least they should be, I can check the boot.log and s
> ee.
> >
> > Thanks for your help,
> >
> > Brian
> >
> >
> >
> > _______________________________________________
> > dhcp-users mailing list
> > dhcp-users at lists.isc.org
> > https://lists.isc.org/mailman/listinfo/dhcp-users
> >
> 
> --
> Dave Calafrancesco
> _______________________________________________
> dhcp-users mailing list
> dhcp-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/dhcp-users
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
>  from this list
> 
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: marka at isc.org

More information about the bind-users mailing list