DDNS Updates won't work with Keys....
Alain Vaslet
alain at vaslet.de
Fri Dec 17 11:41:34 UTC 2004
Hi there,
I don't know why my configuration won't work. I searched all over and
read some howtos but I get still the same error message:
[error]
Dec 17 12:22:44 galgnet named[13758]: client 10.0.0.2#1963: updating
zone 'galgnet.home/IN': update failed: 'RRset exists (value dependent)'
prerequisite not satisfied (NXRRSET)
Dec 17 12:22:44 galgnet named[13758]: client 10.0.0.2#1967: update
'galgnet.home/IN' denied
[/error]
[dhcpd.conf]
# dhcpd.conf
#
# Configuration file for ISC dhcpd
#
ddns-updates on;
ddns-update-style interim;
ignore client-updates;
authoritative;
log-facility local7;
option domain-name "galgnet.home";
default-lease-time 6000;
max-lease-time 72000;
key "galgnet.home" {
algorithm hmac-md5;
secret "thisisthesecretkey";
};
zone galgnet.home. {
primary 10.0.0.1;
key "galgnet.home";
}
zone 0.0.10.in-addr.arpa. {
primary 10.0.0.1;
key "galgnet.home";
}
# these addresses will be given out dynamically
subnet 10.0.0.0 netmask 255.255.255.0 {
range 10.0.0.5 10.0.0.97;
# options may also be put here if they are not global
option broadcast-address 10.0.0.255;
option domain-name-servers 10.0.0.1;
ddns-domainname "galgnet.home";
ddns-rev-domainname "in-addr.arpa";
option netbios-name-servers 10.0.0.1;
option netbios-dd-server 10.0.0.1;
option netbios-node-type 8;
option routers 10.0.0.1;
option subnet-mask 255.255.255.0;
}
# these hosts are known by their hardware addresses and we want a
fixed address for them
host franzose {
hardware ethernet 00:55:8D:F1:C6:C6;
fixed-address 10.0.0.2;
}
host drklages {
hardware ethernet 00:60:08:70:88:68;
fixed-address 10.0.0.4;
}
[/dhcpd.conf]
[named.conf]
// secret must be the same as in /etc/rndc.conf
include "/etc/rndc.key";
acl "galgnet" { 10.0.0/24; 127.0.0.1; };
controls {
inet 127.0.0.1 allow { any; } keys { "galgnet.home"; };
};
options {
auth-nxdomain yes;
directory "/var/lib/named";
dump-file "/var/log/named_dump.db";
statistics-file "/var/log/named.stats";
forwarders { 213.148.130.10; 213.148.129.10; };
listen-on port 53 { 127.0.0.1; 10.0.0.1; };
listen-on-v6 { any; };
cleaning-interval 120;
allow-query { "galgnet"; };
notify no;
sortlist {
{ localhost; localnets; };
{ localnets; };
};
};
logging {
# Log queries to a file limited to a size of 10 MB.
channel query_logging {
file "/var/log/named.log"
versions 3 size 10M;
print-time yes; // timestamp log entries
};
category queries {
query_logging;
};
# Log general name server errors to syslog.
channel syslog_errors {
syslog user;
severity debug;
};
category default { syslog_errors; };
};
zone "." in {
type hint;
file "root.hint";
};
zone "localhost" in {
type master;
file "localhost.zone";
allow-update { none; };
};
zone "0.0.127.in-addr.arpa" in {
type master;
file "127.0.0.zone";
allow-update { none; };
};
zone "galgnet.home" in {
type master;
file "galgnet.home";
allow-update { key "galgnet.home"; };
};
zone "0.0.10.in-addr.arpa" in {
type master;
file "10.0.0.zone";
allow-update { key "galgnet.home"; };
};
include "/etc/named.conf.include";
[/named.conf]
Thanks for your help.
Alain
More information about the bind-users
mailing list