I would suggest:
tsig-keygen your-key-name
It does not need any options, the defaults are fine.
--
Bob Harold
On Fri, Apr 10, 2020 at 7:52 PM moo can via bind-users <
bind-users@lists.isc.org> wrote:
> Hello,
>
> For educational purpose I need to setup an DDNS between DCHPD and BIND
Use tsig-keygen.
--
Mark Andrews
> On 11 Apr 2020, at 09:52, moo can via bind-users
> wrote:
>
>
> Hello,
>
> For educational purpose I need to setup an DDNS between DCHPD and BIND.
>
> Everywhere, debian, zytrax, freeipa, veritas ... use dnssec-keygen.
> Zytrax:
> dnssec-keygen -a HMAC
Hello,
For educational purpose I need to setup an DDNS between DCHPD and BIND.
Everywhere, debian, zytrax, freeipa, veritas ... use dnssec-keygen.Zytrax:
dnssec-keygen -a HMAC-SHA512 -b 512 -n HOST keyname
Veritas:
dnssec-keygen -a HMAC-MD5 -b 128 -n HOST example.com.
Debian:
dnssec-keygen -a
On 15/10/15 16:01, Niall O'Reilly wrote:
On 15 October 2015 15:56:42 BST, lejeczek wrote:
hi everybody
I'm trying a bind setup which could be talked to by dhcpd.
I've bind setup with virtual zones and now trying to set up
dhcpd so it would be updating DNS, but... but.
In
On 15 October 2015 15:56:42 BST, lejeczek wrote:
>hi everybody
>
>I'm trying a bind setup which could be talked to by dhcpd.
>I've bind setup with virtual zones and now trying to set up
>dhcpd so it would be updating DNS, but... but.
>
>In dhcpd.conf I&
hi everybody
I'm trying a bind setup which could be talked to by dhcpd.
I've bind setup with virtual zones and now trying to set up
dhcpd so it would be updating DNS, but... but.
In dhcpd.conf I'm trying:
subnet 192.168.4.64 netmask 255.255.255.224 {
ddns-domainname
On 03/29/2013 05:39 AM, Mark Elkins wrote:
Try using a more simple MD5, short key.
Seem to remember that DHCP doesn't like non-MD5 keys (eg SHA)
There was also some sort of length bug? - try 128 bit length.
The ARM explains this correctly. It has to be HMAC-MD5, but the 512
length is just fin
10-20-101.dhcp.coloradostudios.com
> > but it's trying to add dhcp-172-10-20-101.coloradostudios.com
>
> So by default (someone can correct me if I'm wrong) DHCPD will use the
> domain-name that you have configured in DHCP for the client (or will
> failback to the do
studios.com IN SOAdns04.coloradostudios.com.
> > sysmgr.axs.tv. (
> > 2013032804 ; serial
> > 10800 ; refresh (3 hours)
> > 3600 ; retry (1 hour)
> > 604800 ; expire (1 week)
> >
2013032804 ; serial
> 10800 ; refresh (3 hours)
> 3600 ; retry (1 hour)
> 604800 ; expire (1 week)
> 86400 ; minimum (1 day)
> )
> NSdns04.coloradostudios.co
On 29 March 2013 12:19, Jim Bucks wrote:
> Any ideas (and yes, I did do over the "semicomplete" URL provided by
> ?Alex?"). The only difference I can see is that I used a 512 bit key vs the
> examples 128bit key. And, I'm using a slaves/ directory vs internal/
> directory for the "zones" files.
[root@dns04 slaves]#
IPCONFIG /RELEASE & /RENEW DOES NOT WORK
----
Mar 29 06:10:33 dns04 dhcpd: Wrote 2 leases to leases file.
Mar 29 06:10:33 dns04 dhcpd: DHCPRELEASE of 172.10.20.101 from
00:0b:cd:33:b6:49
up providing free DNS service to all takers
//
//// These are your "authoritative" external zones, and would probably
//// contain entries for just your web and mail servers:
//
//zone "my.external.zone" {
//type master;
//fil
127.0.0.1
key DHCP_UPDATER;
}
best!
jim
On 3/28/2013 1:31 PM, Jim Bucks wrote:
Hi Sten,
Thanks for the response, I only dabble in DNS setups every
5 years (or so). I really thought this would be a "no
brainer",
Hi All,
Alan, I looked that doc over and the only thing I found different than what
I used the key string from the .private key file.
Jim, thanks for the nsupdate pointer. I've never had to delve into that
level of debugging.
When using nsupdate, I was able to update the forward and reverse zon
;>
>>
>> best!
>> jim
>>
>>
>> On 3/28/2013 1:31 PM, Jim Bucks wrote:
>>
>> Hi Sten,
>>
>> Thanks for the response, I only dabble in DNS setups every 5 years (or
>> so). I really thought this would be a "no brainer", and m
s.isc.org
> *Sent:* Thursday, March 28, 2013 10:50 AM
> *Subject:* Re: Looking for a pointer on getting reverse mapping with DDNS
> to work with DHCPD & Named.
>
> Here's from a recent re-start of the named service. There were no
> additional log entries when the dhcp
1:31 PM, Jim Bucks wrote:
Hi Sten,
Thanks for the response, I only dabble in DNS setups every 5
years (or so). I really thought this would be a "no brainer",
and most likely have some simple command / syntax error causing
all of this.
From /var/log/messages
I'm completely unable to fix the top-post/body comments here, so my comments
are at the bottom:
On Mar 28, 2013, at 1:52 PM, Jim Bucks wrote:
> No I have not tried that, but .101 is a leased IP address for a Windows
> workstation.
>
> I'm willing to try it, but it seems like that would mean I
gt;
> best!
> jim
>
>
> On 3/28/2013 1:31 PM, Jim Bucks wrote:
>
> Hi Sten,
>
> Thanks for the response, I only dabble in DNS setups every 5 years (or
> so). I really thought this would be a "no brainer", and most likely have
> some simple command / synta
chable)
resolving 'dns04.den.coloradostudios.com//IN': 2001:503:ba3e::2:30#53
Mar 28 11:38:30 dns04 named-sdb[3710]: error (network unreachable)
resolving 'dns04.den.coloradostudios.com/A/IN': 2001:500:2d::d#53
Mar 28 11:38:30 dns04 named-sdb[3710]: error (network unreachable)
res
3 1:31 PM, Jim Bucks wrote:
Hi Sten,
Thanks for the response, I only dabble in DNS setups every 5 years
(or so). I really thought this would be a "no brainer", and most
likely have some simple command / syntax error causing all of this.
From /var/log/messages
Mar 28 11:22:5
Hi Sten,
Thanks for the response, I only dabble in DNS setups every 5 years (or
so). I really thought this would be a "no brainer", and most likely have
some simple command / syntax error causing all of this.
>From /var/log/messages
Mar 28 11:22:57 dns04 dhcpd: DHCPOFFER on 172
mmary of what I tried/changed.
>- Added the group named to the dhcpd user
>- moved the two zones files into
> /var/named/chroot/var/named/slaves/ (was internal/)
>- added ENABLE_ZONE_WRITE=yes to /etc/sysconfig/named
>- grabbed a current version named.conf file a
Here is a grief summary of what I tried/changed.
- Added the group named to the dhcpd user
- moved the two zones files into /var/named/chroot/var/named/slaves/
(was internal/)
- added ENABLE_ZONE_WRITE=yes to /etc/sysconfig/named
- grabbed a current version named.conf file and added
from 127.0.0.1.
> Mar 26 14:18:24 dns04 dhcpd: DHCPRELEASE of 172.10.20.51 from
> 00:0b:cd:33:b6:49 (proccilapxp) via eth1 (found)
> Mar 26 14:18:31 dns04 dhcpd: DHCPDISCOVER from 00:0b:cd:33:b6:49 via eth1
> Mar 26 14:18:32 dns04 dhcpd: DHCPOFFER on 172.10.20.51 to 00:0b:cd:33:b6:49
&
Thanks Graham,
I appreciate the hints. However, I'm still having problems (after finding
a few more "how-to's"). Any other pointers / tips on what to look for?
Jim
Mar 26 14:18:24 dns04 dhcpd: DHCPRELEASE of 172.10.20.51 from
00:0b:cd:33:b6:49 (proccilapxp) via eth1 (fo
Hi Jim,
> I'm getting either of the following errors:
> dhcpd: unable to add reverse map from 51.20.10.172.in-addr.arpa. to
> proccilapxp.dhcp.coloradostudios.com
> <http://proccilapxp.dhcp.coloradostudios.com>: bad DNS key
> dhcpd: unable to add reverse map from 51.
expected.
After a couple of days of fiddling with this (and lots of Google / ISC
searches), I'm
still unable to get the IP address lease for a workstation to be
auto-entered into
my reverse db.dhcp.coloradostudios.com "zones" file.
I'm getting either of the following
[ Not sure why this thread started on BIND-users:
please continue on DHCP-users! ]
On 18 Oct 2012, at 13:42, Dwayne Hottinger wrote:
> I checked the mac addresses of these clients and thus far they are all ipads,
> ipods or iphones.
We see BOOTP transactions here at UC
.
> We just continue to deny bootp for subnets that have no need for it and
> ignore them. Five doing it so far today out of 4200.
>
> dhcpd: BOOTREQUEST from 14:5a:05:eb:dc:f3 via 144.80.36.19: bootp
> disallowed
>
> jim
>
> On 10/18/2012 8:42 AM, Dwayne Hottinger wrote:
and ignore them. Five doing it so far today out of 4200.
dhcpd: BOOTREQUEST from 14:5a:05:eb:dc:f3 via 144.80.36.19: bootp disallowed
jim
On 10/18/2012 8:42 AM, Dwayne Hottinger wrote:
I recently setup a new dhcp server. In my logfiles yesterday I noticed
the following message:
BOOTP from
they work correctly. Im running dhcpd version 3.0.5 built from rpm on
Centos 6.
--
Dwayne Hottinger
Network Administrator
Harrisonburg City Public Schools
___
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this
> Here's a possibly wrong assumption: there are BIND deployments that
> use openldap (or an RDBMS, or something else) rather than zone files
> to hold DNS mappings (name to ip address & vice versa), and these
> alternative backends are updated when the DHCP server hands out or
> revokes a lease.
>
Hi Evan,
Thanks for your reply. I must confess that I am working on my first
DHCP and BIND deployment and I'm sure that I don't yet understand
everything. So it's likely that I'm working with some wrong
assumptions.
On 25 September 2012 04:01, Evan Hunt wrote:
> I'm not aware of such a DLZ dr
> My main question is about dynamic updates from the DHCP server. I
> would like to know if bind 9.9 can update
> an openldap DLZ with dynamic updates from a DHCP server.
Given an openldap DLZ driver that can accept dynamic updates, yes.
I'm not aware of such a DLZ driver existing yet, but there'
Hello List,
I would like to use openldap to store DHCP config and DNS zones.
I've scoured the web for howtos and I've learned a lot.
For openldap backed DNS it seems that DLZ is the best option (faster,
and the data is better organised in ldap).
My main question is about dynamic updates from the
In message <4c90847e.4000...@powercraft.nl>, Jelle de Jong writes:
> Hello everybody,
>
> bind9 1:9.6.ESV.R1+dfsg-0+lenny2
> dhcp3-server 3.1.1-6+lenny4
>
> I am having a lot of "timed out" errors in my syslogs, that I want to
> solve. Below is t
Hello everybody,
bind9 1:9.6.ESV.R1+dfsg-0+lenny2
dhcp3-server3.1.1-6+lenny4
I am having a lot of "timed out" errors in my syslogs, that I want to
solve. Below is the output of egrep 'named|dhcpd' /var/log/syslog
http://debian.pastebin.com/hyD915BA
I kno
39 matches
Mail list logo
