Re: Update DNS from DHCP problem

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

> On Tuesday 30 August 2005 17:25, Tim wrote:
>> I do something similar on Red Hat 9.0 Linux.  I had to add specific zone
>> details to the dhcpd.conf file (as per the manual), with a common
>> rndc.key file being used between the DNS and DHCP servers.  Older
>> versions (of the servers) would allow transfers from predetermined IPs,
>> later versions insisted on using a keyfile.
>
> I changed my config files, but still the same. Here are relevant parts:
>
> zone "pmsl.sd" {
>         type master;
>         file "pmsl.sd.zone";
>         allow-update { key "rndckey"; };
>         allow-transfer { lan; };
>         notify yes;
>
> };
> zone "212.29.158.in-addr.arpa" {
>         type master;
>         file "212.29.158.in-addr.arpa.zone";
>         allow-update { key "rndckey"; };
>         allow-transfer { lan; };
>         notify yes;
> };
>
> dhcpd.conf:
> zone pmsl.com {
>         primary 158.29.212.26;
>         key rndckey;
> }
>
> zone 212.29.158.in-addr.arpa. {
>         primary 158.29.212.26;
>         key rndckey;
> }
>
> Of course, generated key and put the same key in both config files using
> key
> {}, but still the same. Still I have the same error.
>
> Any more ideas ?
>
> --
> Dusan Djordjevic
> Senior Linux Consultant/Project Manager
> Opennet MEA, Red Hat Master Distributor
> Dubai Internet City, Dubai, UAE
> Office no: +971 4 390 1943
> Mobile no: +971 50 24 21 108
>
> --
> fedora-list mailing list
> fedora-list@xxxxxxxxxx
> To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
>


like i did: i have the key in /etc/dhcpd.conf

here a snipplet of my dhcpd.conf:

allow unknown-clients;

subnet [network] netmask 255.0.0.0 {
        ddns-updates on;
        ddns-domainname "[domainname]";
        ddns-rev-domainname "in-addr.arpa";
        option domain-name "domainname";
        option domain-name-servers [dns1], [dns2];
        option routers [default gateway];
        range [from] [to];
        allow unknown-clients;
        allow client-updates;
        authoritative;
        }

ddns-update-style interim;

key DHCP_UPDATER {
        algorithm hmac-md5;
        secret [encrypted_secret];
}

zone mydomain.tld. {
        primary 127.0.0.1;
        key DHCP_UPDATER;
}

zone 0.0.10.in-addr.arpa. {
        primary 127.0.0.1;
        key DHCP_UPDATER;
}

this key is also mentionned in named.conf (by zone):

include "/etc/dhcpd.key";

zone "mydomain.tld" IN {
        type master;
        file "zone.db";
        allow-update { key DHCP_UPDATER; };
};


and thus, i have /etc/dhcpd.key:

key DHCP_UPDATER {
        algorithm hmac-md5;
        secret [encrypted secret];
};
[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux