Update DNS from DHCP problem
Roger Grosswiler
roger at gwch.net
Wed Aug 31 07:39:21 UTC 2005
> On Tuesday 30 August 2005 17:25, Tim wrote:
>> I do something similar on Red Hat 9.0 Linux. I had to add specific zone
>> details to the dhcpd.conf file (as per the manual), with a common
>> rndc.key file being used between the DNS and DHCP servers. Older
>> versions (of the servers) would allow transfers from predetermined IPs,
>> later versions insisted on using a keyfile.
>
> I changed my config files, but still the same. Here are relevant parts:
>
> zone "pmsl.sd" {
> type master;
> file "pmsl.sd.zone";
> allow-update { key "rndckey"; };
> allow-transfer { lan; };
> notify yes;
>
> };
> zone "212.29.158.in-addr.arpa" {
> type master;
> file "212.29.158.in-addr.arpa.zone";
> allow-update { key "rndckey"; };
> allow-transfer { lan; };
> notify yes;
> };
>
> dhcpd.conf:
> zone pmsl.com {
> primary 158.29.212.26;
> key rndckey;
> }
>
> zone 212.29.158.in-addr.arpa. {
> primary 158.29.212.26;
> key rndckey;
> }
>
> Of course, generated key and put the same key in both config files using
> key
> {}, but still the same. Still I have the same error.
>
> Any more ideas ?
>
> --
> Dusan Djordjevic
> Senior Linux Consultant/Project Manager
> Opennet MEA, Red Hat Master Distributor
> Dubai Internet City, Dubai, UAE
> Office no: +971 4 390 1943
> Mobile no: +971 50 24 21 108
>
> --
> fedora-list mailing list
> fedora-list at redhat.com
> To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
>
like i did: i have the key in /etc/dhcpd.conf
here a snipplet of my dhcpd.conf:
allow unknown-clients;
subnet [network] netmask 255.0.0.0 {
ddns-updates on;
ddns-domainname "[domainname]";
ddns-rev-domainname "in-addr.arpa";
option domain-name "domainname";
option domain-name-servers [dns1], [dns2];
option routers [default gateway];
range [from] [to];
allow unknown-clients;
allow client-updates;
authoritative;
}
ddns-update-style interim;
key DHCP_UPDATER {
algorithm hmac-md5;
secret [encrypted_secret];
}
zone mydomain.tld. {
primary 127.0.0.1;
key DHCP_UPDATER;
}
zone 0.0.10.in-addr.arpa. {
primary 127.0.0.1;
key DHCP_UPDATER;
}
this key is also mentionned in named.conf (by zone):
include "/etc/dhcpd.key";
zone "mydomain.tld" IN {
type master;
file "zone.db";
allow-update { key DHCP_UPDATER; };
};
and thus, i have /etc/dhcpd.key:
key DHCP_UPDATER {
algorithm hmac-md5;
secret [encrypted secret];
};
More information about the fedora-list
mailing list