Re: Looking for a pointer on getting reverse mapping with DDNS to work with DHCPD & Named.

Jim Bucks Thu, 28 Mar 2013 13:00:41 -0700

Hi All,

Alan, I looked that doc over and the only thing I found different than what
I used the key string from the .private key file.


Jim, thanks for the nsupdate pointer.  I've never had to delve into that
level of debugging.

When using nsupdate, I was able to update the forward and reverse zones
files.  I've looked over what I did interactively, and am not seeing a
difference from what I'm wanting to do "automatically" (but I'll admit I'm
getting some sort of cross-eyed over this).  Here's my interactive output
(that worked).

[root@dns04 chroot]# nsupdate -d
> server 127.0.0.1
> key DHCP_UPDATER TrlaHSJXel+L5hqtfev5Gdlwj7B+
HqcXQiqXMdZ/8mGXhznkRXf6yMDaQ9rXbx45gFgVpW7PFRHXGsZfUKrFlw==
> update add 101.20.10.172.in-addr.arpa. 3600 in ptr
dhcp.coloradostudios.com.
>
Reply from SOA query:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id:  31481
;; flags: qr aa ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; QUESTION SECTION:
;101.20.10.172.in-addr.arpa.    IN    SOA

;; AUTHORITY SECTION:
20.10.172.in-addr.arpa.    0    IN    SOA    dns04.coloradostudios.com.
sysmgr.hd.net. 2013032600 10800 3600 604800 86400

;; TSIG PSEUDOSECTION:
dhcp_updater.        0    ANY    TSIG    hmac-md5.sig-alg.reg.int.
1364498781 300 16 ZQBZwvuMnMJmgF3exPs7Nw== 31481 NOERROR 0

Found zone name: 20.10.172.in-addr.arpa
The master is: dns04.coloradostudios.com
Sending update to 127.0.0.1#53
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  22770
;; flags:; ZONE: 1, PREREQ: 0, UPDATE: 1, ADDITIONAL: 1
;; UPDATE SECTION:
101.20.10.172.in-addr.arpa. 3600 IN    PTR    dhcp.coloradostudios.com.

;; TSIG PSEUDOSECTION:
dhcp_updater.        0    ANY    TSIG    hmac-md5.sig-alg.reg.int.
1364498781 300 16 SyvXSO/PE5Gr/LrR0Cw9nQ== 22770 NOERROR 0


Reply from update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  22770
;; flags: qr ra; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1
;; ZONE SECTION:
;20.10.172.in-addr.arpa.        IN    SOA

;; TSIG PSEUDOSECTION:
dhcp_updater.        0    ANY    TSIG    hmac-md5.sig-alg.reg.int.
1364498781 300 16 AllUYyqyOwwMkv2SMfcyHg== 22770 NOERROR 0

>











> server 127.0.0.1
> key DHCP_UPDATER
TrlaHSJXel+L5hqtfev5Gdlwj7B+HqcXQiqXMdZ/8mGXhznkRXf6yMDaQ9rXbx45gFgVpW7PFRHXGsZfUKrFlw==
>
> update add dhcp-172-10-20-101.dhcp.coloradostudios.com 3600 IN A
dhcp.coloradostudios.com.
28-Mar-2013 13:36:40.447 dns_rdata_fromtext: buffer-0x7f302626f710:1: near
'dhcp.coloradostudios.com.': bad dotted quad
invalid rdata format: bad dotted quad
> update add proccilap.dhcp.coloradostudios.com 86400 A 172.10.20.101
> send
Reply from SOA query:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id:  12184
;; flags: qr aa ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; QUESTION SECTION:
;proccilap.dhcp.coloradostudios.com. IN    SOA

;; AUTHORITY SECTION:
dhcp.coloradostudios.com. 0    IN    SOA    dns04.coloradostudios.com.
sysmgr.axs.tv. 2013032801 10800 3600 604800 86400

;; TSIG PSEUDOSECTION:
dhcp_updater.        0    ANY    TSIG    hmac-md5.sig-alg.reg.int.
1364499508 300 16 Exdx5vgPto6sSf2nNau9iQ== 12184 NOERROR 0

Found zone name: dhcp.coloradostudios.com
The master is: dns04.coloradostudios.com
Sending update to 127.0.0.1#53
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  22408
;; flags:; ZONE: 1, PREREQ: 0, UPDATE: 1, ADDITIONAL: 1
;; UPDATE SECTION:
proccilap.dhcp.coloradostudios.com. 86400 IN A    172.10.20.101

;; TSIG PSEUDOSECTION:
dhcp_updater.        0    ANY    TSIG    hmac-md5.sig-alg.reg.int.
1364499508 300 16 hREc0P/HnhR/ynAe09xELw== 22408 NOERROR 0


Reply from update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  22408
;; flags: qr ra; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1
;; ZONE SECTION:
;dhcp.coloradostudios.com.    IN    SOA

;; TSIG PSEUDOSECTION:
dhcp_updater.        0    ANY    TSIG    hmac-md5.sig-alg.reg.int.
1364499508 300 16 /bLrKPzY8+pUuw8RM2MPQA== 22408 NOERROR 0

>



[root@dns04 chroot]# rndc freeze
[root@dns04 chroot]# rndc thaw



[root@dns04 keys]# ll ../../var/named/slaves/
total 24
-rw-r--r-- 1 named named  390 Mar 28 13:40 db.172.10.20
-rw-r--r-- 1 named named  792 Mar 28 13:26 db.172.10.20.jnl
-r--r--r-- 1 named named 7346 Feb 15 09:06 db.den.coloradostudios.com
-rw-r--r-- 1 named named  362 Mar 28 13:41 db.dhcp.coloradostudios.com
-rw-r--r-- 1 named named  782 Mar 28 13:38 db.dhcp.coloradostudios.com.jnl
[root@dns04 keys]# ll ../../var/named/slaves/
total 16
-rw-r--r-- 1 named named  390 Mar 28 13:40 db.172.10.20
-r--r--r-- 1 named named 7346 Feb 15 09:06 db.den.coloradostudios.com
-rw-r--r-- 1 named named  362 Mar 28 13:41 db.dhcp.coloradostudios.com
[root@dns04 keys]# cat ../../var/named/slaves/db.dhcp.coloradostudios.com
$ORIGIN .
$TTL 86400    ; 1 day
dhcp.coloradostudios.com IN SOA    dns04.coloradostudios.com. sysmgr.axs.tv.
(
                2013032802 ; serial
                10800      ; refresh (3 hours)
                3600       ; retry (1 hour)
                604800     ; expire (1 week)
                86400      ; minimum (1 day)
                )
            NS    dns04.coloradostudios.com.
$ORIGIN dhcp.coloradostudios.com.
proccilap        A    172.10.20.101
[root@dns04 keys]# cat ../../var/named/slaves/db.172.10.20
$ORIGIN .
$TTL 86400    ; 1 day
20.10.172.in-addr.arpa    IN SOA    dns04.coloradostudios.com. sysmgr.hd.net.
(
                2013032601 ; serial
                10800      ; refresh (3 hours)
                3600       ; retry (1 hour)
                604800     ; expire (1 week)
                86400      ; minimum (1 day)
                )
            NS    dns04.den.coloradostudios.com.
$ORIGIN 20.10.172.in-addr.arpa.
$TTL 3600    ; 1 hour
101            PTR    dhcp.coloradostudios.com.
[root@dns04 keys]#




On Thu, Mar 28, 2013 at 1:05 PM, Jim Bucks <jbu...@coloradostudios.com>wrote:

> Hi All (sorry for the top-posting)....
>
> Alan - thanks for the link.  I'll be checking it out / looking it over.
>
> Jim,
>
> Based on the nsupdate output (below), it looks like I've hosed up
> something in my "key".  I used the key string from the .private key file
> (I've found some search results that say to use the .key and others say to
> use the .private).
>
> Jim
>
> [root@dns04 chroot]# nsupdate -d
> > server 127.0.0.1
> > key DHCP_UPDATE
> TrlaHSJXel+L5hqtfev5Gdlwj7B+HqcXQiqXMdZ/8mGXhznkRXf6yMDaQ9rXbx45gFgVpW7PFRHXGsZfUKrFlw==
> > update add 101.20.10.172.in-addr.arpa. 3600 in ptr
> dhcp.coloradostudios.com.
>
> >
> Reply from SOA query:
> ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id:  11212
> ;; flags: qr aa ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
> ;; QUESTION SECTION:
> ;101.20.10.172.in-addr.arpa.    IN    SOA
>
> ;; AUTHORITY SECTION:
> 20.10.172.in-addr.arpa.    0    IN    SOA    dns04.coloradostudios.com.
> sysmgr.hd.net. 2013032600 10800 3600 604800 86400
>
> Found zone name: 20.10.172.in-addr.arpa
> The master is: dns04.coloradostudios.com
> Sending update to 127.0.0.1#53
> Outgoing update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  25308
> ;; flags:; ZONE: 1, PREREQ: 0, UPDATE: 1, ADDITIONAL: 1
> ;; UPDATE SECTION:
> 101.20.10.172.in-addr.arpa. 3600 IN    PTR    dhcp.coloradostudios.com.
>
> ;; TSIG PSEUDOSECTION:
> dhcp_update.        0    ANY    TSIG    hmac-md5.sig-alg.reg.int.
> 1364496936 300 16 qUBZdqVmksNQtmb1mb9gNQ== 25308 NOERROR 0
>
> ; TSIG error with server: tsig indicates error
>
> Reply from update query:
> ;; ->>HEADER<<- opcode: UPDATE, status: NOTAUTH, id:  25308
> ;; flags: qr ra; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1
> ;; ZONE SECTION:
> ;20.10.172.in-addr.arpa.        IN    SOA
>
> ;; TSIG PSEUDOSECTION:
> dhcp_update.        0    ANY    TSIG    hmac-md5.sig-alg.reg.int.
> 1364496936 300 0  25308 BADKEY 0
>
> > quit
> [root@dns04 chroot]#
>
>
> On Thu, Mar 28, 2013 at 12:03 PM, Jim Glassford <jmgl...@iup.edu> wrote:
>
>>  Hi Jim,
>>
>> No, sorry, wrong IP address, the real IP address of the dns server, not
>> the client.
>>
>> zone dhcp.coloradostudios.com. {
>>    primary your_dns_server_IP_address;                         <-----
>> change from 127.0.0.1
>>    key DHCP_UPDATER;
>> }
>>
>> Also do you have a /var/log/named.log file or debug log file for named,
>> other than messages, might have more information.
>> Can try nsupdate with debug to see if this gives any clue also.
>> nsupdate -d
>> > server your_dns_server_here
>> > key  your_key_here
>> > update add 101.20.10.172.in-addr.arpa. 3600 in ptr
>> dhcp-172-10-20-101.coloradostudios.com.
>> >  do extra CR to get it to go
>>
>> should see lots of debug information here
>> >
>> > quit
>>
>> man nsupdate
>>
>> best!
>> jim
>>
>>
-- 
Jim Bucks - IT Director
Colorado Studios <http://www.coloradostudios.com>, Mobile TV
Group<http://www.mobiletvgroup.com>,
HDNet <http://www.hd.net>, AXS.tv <http://www.axs.tv/>
8269 E. 23rd Ave. Denver, CO 80238 Main  303-388-8500
jbu...@coloradostudios.com            Direct 303-542-5520

_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Looking for a pointer on getting reverse mapping with DDNS to work with DHCPD & Named.

Reply via email to