dynamic dns, secure

The Gimp gimpmstr at sbcglobal.net
Fri Feb 20 22:14:11 UTC 2004


"dave" <dmehler26 at woh.rr.com> wrote in message
news:aThZb.1$6t5.0 at fe3.columbus.rr.com...
> Hello,
>     Looking for a howto on getting secure ddns going. So far what i've
found
> isn't working. If anyone has a procedure let me know.
> Thanks.
> Dave.
>
>

Dumb Outlook Express sent a blank message..I hate MS

Dave,

I don't think there is a good how-to out there, or at least I never found
one. It took me a week or so to figure out how to get this to work. Here are
my config files, just add in your info:

#
# named.conf file
#

options {
        directory "/var/named";
};

include "/etc/rndc.key";

key UPDATER.KEY {
        algorithm hmac-md5;
        secret Your_key_here;
};

controls {
        inet 127.0.0.1 port 953 allow { localhost; } keys { "rndckey"; };
};

zone "." IN {
        type hint;
        file "root.hints";
};

zone "0.0.127.in-addr.arpa" IN {
        type master;
        file "0.0.127.zone";
};

zone "localhost" IN {
        type master;
        file "localhost.zone";
};

zone "main.zone" IN {
        type master;
        file "master/main.zone";
        allow-update { localhost; key UPDATER.KEY; };
};

zone "1.168.192..in-addr.arpa" IN {
        type master;
        file "master/1.168.192.zone";
        allow-update { localhost; key UPDATER.KEY; };
};

******************************

#
# rndc.conf file
#

options {
        default-server localhost;
        default-key "rndckey";
        default-port 953;
};

server localhost {
        key "rndckey";
};

include "/etc/rndc.key";

******************************

#
#rndc.key file
#

key "rndckey" {
        algorithm hmac-md5;
        secret "Your_key_here";
};

******************************

#
# dhcpd.conf file
#

authoritative;

key UPDATER.KEY {
        algorithm hmac-md5;
        secret Your_key_here;
};

subnet 192.168.1.0 netmask 255.255.255.0 {
        range 192.168.1.100 192.168.1.199;
                option domain-name "Your_domain-name";
                option domain-name-servers DNS_IP_here;
                option subnet-mask 255.255.255.0;
                option broadcast-address 192.168.1.255;
                option routers Default_Gateway_IP_here;
                default-lease-time 864000;
                max-lease-time 259200;
}

ddns-domainname "Your_domain-name";
ddns-update-style interim;
ignore client-updates;
default-lease-time 864000;
max-lease-time 259200;

zone main.zone. {
primary DNS_IP_here;
key UPDATER.KEY;
}

zone 1.168.192.in-addr.arpa. {
primary DNS_IP_here;
key UPDATER.KEY;
}

******************************
If you need more info just let me know.

The Gimp





More information about the bind-users mailing list