Hi All, Alan, I looked that doc over and the only thing I found different than what I used the key string from the .private key file.
Jim, thanks for the nsupdate pointer. I've never had to delve into that level of debugging. When using nsupdate, I was able to update the forward and reverse zones files. I've looked over what I did interactively, and am not seeing a difference from what I'm wanting to do "automatically" (but I'll admit I'm getting some sort of cross-eyed over this). Here's my interactive output (that worked). [root@dns04 chroot]# nsupdate -d > server 127.0.0.1 > key DHCP_UPDATER TrlaHSJXel+L5hqtfev5Gdlwj7B+ HqcXQiqXMdZ/8mGXhznkRXf6yMDaQ9rXbx45gFgVpW7PFRHXGsZfUKrFlw== > update add 101.20.10.172.in-addr.arpa. 3600 in ptr dhcp.coloradostudios.com. > Reply from SOA query: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31481 ;; flags: qr aa ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1 ;; QUESTION SECTION: ;101.20.10.172.in-addr.arpa. IN SOA ;; AUTHORITY SECTION: 20.10.172.in-addr.arpa. 0 IN SOA dns04.coloradostudios.com. sysmgr.hd.net. 2013032600 10800 3600 604800 86400 ;; TSIG PSEUDOSECTION: dhcp_updater. 0 ANY TSIG hmac-md5.sig-alg.reg.int. 1364498781 300 16 ZQBZwvuMnMJmgF3exPs7Nw== 31481 NOERROR 0 Found zone name: 20.10.172.in-addr.arpa The master is: dns04.coloradostudios.com Sending update to 127.0.0.1#53 Outgoing update query: ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 22770 ;; flags:; ZONE: 1, PREREQ: 0, UPDATE: 1, ADDITIONAL: 1 ;; UPDATE SECTION: 101.20.10.172.in-addr.arpa. 3600 IN PTR dhcp.coloradostudios.com. ;; TSIG PSEUDOSECTION: dhcp_updater. 0 ANY TSIG hmac-md5.sig-alg.reg.int. 1364498781 300 16 SyvXSO/PE5Gr/LrR0Cw9nQ== 22770 NOERROR 0 Reply from update query: ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 22770 ;; flags: qr ra; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1 ;; ZONE SECTION: ;20.10.172.in-addr.arpa. IN SOA ;; TSIG PSEUDOSECTION: dhcp_updater. 0 ANY TSIG hmac-md5.sig-alg.reg.int. 1364498781 300 16 AllUYyqyOwwMkv2SMfcyHg== 22770 NOERROR 0 > > server 127.0.0.1 > key DHCP_UPDATER TrlaHSJXel+L5hqtfev5Gdlwj7B+HqcXQiqXMdZ/8mGXhznkRXf6yMDaQ9rXbx45gFgVpW7PFRHXGsZfUKrFlw== > > update add dhcp-172-10-20-101.dhcp.coloradostudios.com 3600 IN A dhcp.coloradostudios.com. 28-Mar-2013 13:36:40.447 dns_rdata_fromtext: buffer-0x7f302626f710:1: near 'dhcp.coloradostudios.com.': bad dotted quad invalid rdata format: bad dotted quad > update add proccilap.dhcp.coloradostudios.com 86400 A 172.10.20.101 > send Reply from SOA query: ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12184 ;; flags: qr aa ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1 ;; QUESTION SECTION: ;proccilap.dhcp.coloradostudios.com. IN SOA ;; AUTHORITY SECTION: dhcp.coloradostudios.com. 0 IN SOA dns04.coloradostudios.com. sysmgr.axs.tv. 2013032801 10800 3600 604800 86400 ;; TSIG PSEUDOSECTION: dhcp_updater. 0 ANY TSIG hmac-md5.sig-alg.reg.int. 1364499508 300 16 Exdx5vgPto6sSf2nNau9iQ== 12184 NOERROR 0 Found zone name: dhcp.coloradostudios.com The master is: dns04.coloradostudios.com Sending update to 127.0.0.1#53 Outgoing update query: ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 22408 ;; flags:; ZONE: 1, PREREQ: 0, UPDATE: 1, ADDITIONAL: 1 ;; UPDATE SECTION: proccilap.dhcp.coloradostudios.com. 86400 IN A 172.10.20.101 ;; TSIG PSEUDOSECTION: dhcp_updater. 0 ANY TSIG hmac-md5.sig-alg.reg.int. 1364499508 300 16 hREc0P/HnhR/ynAe09xELw== 22408 NOERROR 0 Reply from update query: ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 22408 ;; flags: qr ra; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1 ;; ZONE SECTION: ;dhcp.coloradostudios.com. IN SOA ;; TSIG PSEUDOSECTION: dhcp_updater. 0 ANY TSIG hmac-md5.sig-alg.reg.int. 1364499508 300 16 /bLrKPzY8+pUuw8RM2MPQA== 22408 NOERROR 0 > [root@dns04 chroot]# rndc freeze [root@dns04 chroot]# rndc thaw [root@dns04 keys]# ll ../../var/named/slaves/ total 24 -rw-r--r-- 1 named named 390 Mar 28 13:40 db.172.10.20 -rw-r--r-- 1 named named 792 Mar 28 13:26 db.172.10.20.jnl -r--r--r-- 1 named named 7346 Feb 15 09:06 db.den.coloradostudios.com -rw-r--r-- 1 named named 362 Mar 28 13:41 db.dhcp.coloradostudios.com -rw-r--r-- 1 named named 782 Mar 28 13:38 db.dhcp.coloradostudios.com.jnl [root@dns04 keys]# ll ../../var/named/slaves/ total 16 -rw-r--r-- 1 named named 390 Mar 28 13:40 db.172.10.20 -r--r--r-- 1 named named 7346 Feb 15 09:06 db.den.coloradostudios.com -rw-r--r-- 1 named named 362 Mar 28 13:41 db.dhcp.coloradostudios.com [root@dns04 keys]# cat ../../var/named/slaves/db.dhcp.coloradostudios.com $ORIGIN . $TTL 86400 ; 1 day dhcp.coloradostudios.com IN SOA dns04.coloradostudios.com. sysmgr.axs.tv. ( 2013032802 ; serial 10800 ; refresh (3 hours) 3600 ; retry (1 hour) 604800 ; expire (1 week) 86400 ; minimum (1 day) ) NS dns04.coloradostudios.com. $ORIGIN dhcp.coloradostudios.com. proccilap A 172.10.20.101 [root@dns04 keys]# cat ../../var/named/slaves/db.172.10.20 $ORIGIN . $TTL 86400 ; 1 day 20.10.172.in-addr.arpa IN SOA dns04.coloradostudios.com. sysmgr.hd.net. ( 2013032601 ; serial 10800 ; refresh (3 hours) 3600 ; retry (1 hour) 604800 ; expire (1 week) 86400 ; minimum (1 day) ) NS dns04.den.coloradostudios.com. $ORIGIN 20.10.172.in-addr.arpa. $TTL 3600 ; 1 hour 101 PTR dhcp.coloradostudios.com. [root@dns04 keys]# On Thu, Mar 28, 2013 at 1:05 PM, Jim Bucks <jbu...@coloradostudios.com>wrote: > Hi All (sorry for the top-posting).... > > Alan - thanks for the link. I'll be checking it out / looking it over. > > Jim, > > Based on the nsupdate output (below), it looks like I've hosed up > something in my "key". I used the key string from the .private key file > (I've found some search results that say to use the .key and others say to > use the .private). > > Jim > > [root@dns04 chroot]# nsupdate -d > > server 127.0.0.1 > > key DHCP_UPDATE > TrlaHSJXel+L5hqtfev5Gdlwj7B+HqcXQiqXMdZ/8mGXhznkRXf6yMDaQ9rXbx45gFgVpW7PFRHXGsZfUKrFlw== > > update add 101.20.10.172.in-addr.arpa. 3600 in ptr > dhcp.coloradostudios.com. > > > > Reply from SOA query: > ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11212 > ;; flags: qr aa ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 > ;; QUESTION SECTION: > ;101.20.10.172.in-addr.arpa. IN SOA > > ;; AUTHORITY SECTION: > 20.10.172.in-addr.arpa. 0 IN SOA dns04.coloradostudios.com. > sysmgr.hd.net. 2013032600 10800 3600 604800 86400 > > Found zone name: 20.10.172.in-addr.arpa > The master is: dns04.coloradostudios.com > Sending update to 127.0.0.1#53 > Outgoing update query: > ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 25308 > ;; flags:; ZONE: 1, PREREQ: 0, UPDATE: 1, ADDITIONAL: 1 > ;; UPDATE SECTION: > 101.20.10.172.in-addr.arpa. 3600 IN PTR dhcp.coloradostudios.com. > > ;; TSIG PSEUDOSECTION: > dhcp_update. 0 ANY TSIG hmac-md5.sig-alg.reg.int. > 1364496936 300 16 qUBZdqVmksNQtmb1mb9gNQ== 25308 NOERROR 0 > > ; TSIG error with server: tsig indicates error > > Reply from update query: > ;; ->>HEADER<<- opcode: UPDATE, status: NOTAUTH, id: 25308 > ;; flags: qr ra; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1 > ;; ZONE SECTION: > ;20.10.172.in-addr.arpa. IN SOA > > ;; TSIG PSEUDOSECTION: > dhcp_update. 0 ANY TSIG hmac-md5.sig-alg.reg.int. > 1364496936 300 0 25308 BADKEY 0 > > > quit > [root@dns04 chroot]# > > > On Thu, Mar 28, 2013 at 12:03 PM, Jim Glassford <jmgl...@iup.edu> wrote: > >> Hi Jim, >> >> No, sorry, wrong IP address, the real IP address of the dns server, not >> the client. >> >> zone dhcp.coloradostudios.com. { >> primary your_dns_server_IP_address; <----- >> change from 127.0.0.1 >> key DHCP_UPDATER; >> } >> >> Also do you have a /var/log/named.log file or debug log file for named, >> other than messages, might have more information. >> Can try nsupdate with debug to see if this gives any clue also. >> nsupdate -d >> > server your_dns_server_here >> > key your_key_here >> > update add 101.20.10.172.in-addr.arpa. 3600 in ptr >> dhcp-172-10-20-101.coloradostudios.com. >> > do extra CR to get it to go >> >> should see lots of debug information here >> > >> > quit >> >> man nsupdate >> >> best! >> jim >> >> -- Jim Bucks - IT Director Colorado Studios <http://www.coloradostudios.com>, Mobile TV Group<http://www.mobiletvgroup.com>, HDNet <http://www.hd.net>, AXS.tv <http://www.axs.tv/> 8269 E. 23rd Ave. Denver, CO 80238 Main 303-388-8500 jbu...@coloradostudios.com Direct 303-542-5520
_______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users