BIND not being updated by ISC DHCP

Merton Campbell Crockett m.c.crockett at adelphia.net
Tue Mar 14 03:43:07 UTC 2006


You never instructed DHCPD to perform any updates.  Also, you might  
want to set the domain name.

ddns-updates on;
ddns-domainname "home.foobar.ca";

Also, to inform Windows systems that DHCPD is performing the updates  
add the following.

deny client-updates;

Not all versions of Windows pay attention to the option so it's  
primary function is to cut down on the number of requests to update  
the DNS zone files.

Merton Campbell Crockett


On 13 Mar 2006, at 04:42 PST, Alexander Burke wrote:

> I'm having trouble getting DNS to update automatically; neither  
> forward
> nor reverse are updating when DHCP leases are handed out. (All of the
> hardcoded entries are working, though.)
>
> The packages in question are bind-9.2.5-1 and dhcp-3.0.1-42_FC3.
>
> Can anyone spot where I'm going wrong?
>
> Thanks in advance!
>
>
>
> /etc/dhcpd.conf:
>
> ## Master DHCP Server Configuration File
> authoritative;
> server-identifier penguin.home.foobar.ca;
> ddns-update-style interim;
> ## deny client-updates;
> default-lease-time      43200;
> max-lease-time          43200;
> option domain-name      "home.foobar.ca";
> option domain-name-servers penguin.home.foobar.ca;
> option routers router.home.foobar.ca;
> option lpr-servers printer.home.foobar.ca;
> option tftp-server-name "penguin.home.foobar.ca";
> option ntp-servers penguin.home.foobar.ca;
> option option-150 code 150 = ip-address;
> use-host-decl-names on;
>
>
> key DHCP_UPDATER {
>         algorithm hmac-md5;
>         secret [REMOVED];
>         };
>
>
> zone home.foobar.ca. {
>         primary 127.0.0.1;
>         key DHCP_UPDATER;
>         }
>
> zone 0.0.10.in-addr.arpa. {
>         primary 127.0.0.1;
>         key DHCP_UPDATER;
>         }
>
>
> subnet 10.0.0.0 netmask 255.255.255.0 {
>         range dynamic-bootp 10.0.0.101 10.0.0.199;
>         }
>
>
> host PAP2 {
>         hardware ethernet 00:12:17:FC:42:46;
>         fixed-address 10.0.0.51;
>         }
>
> // Many more hosts exist in the file
>
>
>
>
> /etc/named.conf:
>
> // Custom named.conf
>
> options {
>         directory "/var/named";
>         // version statement for security to avoid hacking known
> weaknesses
>         version "get lost";
>         // optional - disables all transfers - slaves allowed in zone
> clauses
>         allow-transfer {none;};
>         dump-file "/var/named/data/cache_dump.db";
>         statistics-file "/var/named/data/named_stats.txt";
> };
> include "/etc/rndc.key";
>
> key DHCP_UPDATER {
>         algorithm hmac-md5;
>         secret [REMOVED];
> };
>
> // required zone for recursive queries
> zone "." {
>         type hint;
>         file "root.hints";
>         };
>
> // Somewhat important.
> zone "home.foobar.ca" in {
>         type master;
> //      notify no;
>         file "home.foobar.ca.zone";
>         allow-update { key DHCP_UPDATER; };
>         };
>
> // reverse map for our RFC1918 space
> zone "0.0.10.in-addr.arpa" in {
>         type master;
> //      notify no;
>         file "10.0.0.rev";
>         allow-update { key DHCP_UPDATER; };
>         };
>
> // required localhost domain
> zone "localhost" in {
>         type master;
> //      notify no;
>         file "localhost.zone";
>         allow-update { key DHCP_UPDATER; };
>         };
>
> // localhost reverse map
> zone "0.0.127.in-addr.arpa" in {
>         type master;
> //      notify no;
>         file "localhost.rev";
>         allow-update { key DHCP_UPDATER; };
>         };
>
> // END OF FILE //
>
>
>
>
>
> home.foobar.ca.zone:
>
> $TTL 86400
> @                       IN SOA  penguin.home.foobar.ca. dns.foobar.ca.
> (
>                                 2006031305 ; serial
>                                 10800      ; refresh (3 hours)
>                                 15         ; retry (15 seconds)
>                                 604800     ; expire (1 week)
>                                 10800      ; minimum (3 hours)
>                                 )
>                         IN      NS      penguin.home.foobar.ca.
>                         IN      MX      10 mail.foobar.ca.
> fileserver              IN      A       10.0.0.11
> ftp                     IN      CNAME   fileserver
> penguin                 IN      A       10.0.0.10
> router                  IN      A       10.0.0.1
> ; There are more, but they don't matter for our purposes.
>
>
>
>
> 10.0.0.rev:
>
> $TTL 86400
> @                       IN SOA  penguin.home.foobar.ca. dns.foobar.ca.
> (
>                                 2006031305 ; serial
>                                 10800      ; refresh (3 hours)
>                                 15         ; retry (15 seconds)
>                                 604800     ; expire (1 week)
>                                 10800      ; minimum (3 hours)
>                                 )
>                         IN      NS      penguin.home.foobar.ca.
> 1                       IN      PTR     router.home.foobar.ca.
> 10                      IN      PTR     penguin.home.foobar.ca.
> 11                      IN      PTR     fileserver.home.foobar.ca.
>
>
>
>
>
> some /var/log/messages output indicating DHCP lease granted but no DNS
> activity for it:
>
> Mar 13 06:40:47 penguin named: named startup succeeded
> Mar 13 06:41:19 penguin dhcpd: DHCPDISCOVER from 00:12:17:fc:42:46 via
> eth0
> Mar 13 06:41:19 penguin dhcpd: DHCPOFFER on 10.0.0.51 to
> 00:12:17:fc:42:46 via eth0
> Mar 13 06:41:19 penguin dhcpd: DHCPREQUEST for 10.0.0.51 (10.0.0.10)
> from 00:12:17:fc:42:46 via eth0
> Mar 13 06:41:19 penguin dhcpd: DHCPACK on 10.0.0.51 to
> 00:12:17:fc:42:46 via eth0
> Mar 13 11:41:26 penguin in.tftpd[5749]: RRQ from 10.0.0.51 filename
> /init.cfg
> Mar 13 11:41:26 penguin in.tftpd[5749]: sending NAK (1, File not  
> found)
> to 10.0.0.51
>
> (Does anyone know why in.tftpd insists upon using GMT, when everything
> else on the box recognizes that we're in GMT-0500?)
>
>

Merton Campbell Crockett
m.c.crockett at adelphia.net





More information about the bind-users mailing list