Can I change the zone file from command line?

Manish Rane manishr78 at gmail.com
Tue Jul 23 11:00:13 UTC 2013 

Well, I am trying to configure DNS System Monitoring stuff with Nagios
plugins. This monitor the server status and if any of th link fails remove
the said IP from zone and reload the zone. This entry would have low TTL so
that traffic would be routed to new entry instantly.

Lets say I have two ISPs terminated on my firewall and www.example.com with
private IP 172.16.3.10 is natted with 1.2.3.4 and 5.6.7.8 with TTL value 300
Nagios plugin check_tcp would monitor those links or IPs on port 80 and if
any of the link fails I can have by any mean edit the zone file and remove
the IP associated with failed link so that traffic would never reach to
that IP.

Upon recovery the plugin will show the result GREEN and I can again have
the A record added in zone file, thus reload the zone. Due to the low TTL I
believe there shouldn't be any issue for populating those changes faster.

What say guys?




--------------------------------------------------------------------------
Thanks and Regards,
Manish R


On Tue, Jul 23, 2013 at 11:46 AM, Mark Andrews <marka at isc.org> wrote:

>
> In message <
> CAN3um4yrT+t7Cp2EZYWq-rM5eWx3-ygOK9VKxVUG4qbxcbpzcA at mail.gmail.com>
> , Mike Hale writes:
> > This seems pretty straight forward.
> >
> > Use your standard bash tools to modify the file when necessary, then
> > you should simply be able to call rndc reload ZONENAME in the script.
>
> Though why one would want to do this rather than just updating the
> zone using DDNS is beyond me.   It's not like DDNS can't be made
> secure by using TSIG.
>
> Normalize the zone file using named-checkzone.
> Use awk or similar to change the relevent entries and update the SOA
> serial.
> Use named-checkzone to confirm that the resulting file is still valid then
> if it is rename it and reload the zone.
>
> named-checkzone -D -q zone file |
> awk '$1 == "server" && $4 == "A" { print $1, $2, $3, $4, NEWIP}
> $4 == "SOA" { $7 = $7 + 1; print }' > temp
> named-checkzone -q zone temp && mv temp file && rndc reload zone
>
> Mark
>
> > On Mon, Jul 22, 2013 at 10:28 PM, Mihamina Rakotomandimby
> > <mihamina at rktmb.org> wrote:
> > > Hello,
> > >
> > > I did not catch what you're trying to achieve.
> > > Please give more details.
> > >
> > >
> > > On 2013-07-23 08:25, Manish Rane wrote:
> > >
> > > Hi Folks,
> > >
> > > Wondering if I can edit/change the static zone file as a result of
> certain
> > > bash script. Well, I am trying to write a script which will monitor the
> > > server on certain ports and it if fails to connect to the server it
> will
> > > delete or add the entry from zone file so that traffic will be routed
> to
> > > another server, possible?
> > >
> > > OR does any one aware of such solution available in open source?
> > >
> > >
> > >
> > > _______________________________________________
> > > Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> > > unsubscribe from this list
> > >
> > > bind-users mailing list
> > > bind-users at lists.isc.org
> > > https://lists.isc.org/mailman/listinfo/bind-users
> > >
> > >
> > >
> > > --
> > > RMA.
> > >
> > >
> > > _______________________________________________
> > > Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> > > unsubscribe from this list
> > >
> > > bind-users mailing list
> > > bind-users at lists.isc.org
> > > https://lists.isc.org/mailman/listinfo/bind-users
> >
> >
> >
> > --
> > 09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0
> > _______________________________________________
> > Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> unsubscribe
> >  from this list
> >
> > bind-users mailing list
> > bind-users at lists.isc.org
> > https://lists.isc.org/mailman/listinfo/bind-users
> --
> Mark Andrews, ISC
> 1 Seymour St., Dundas Valley, NSW 2117, Australia
> PHONE: +61 2 9871 4742                 INTERNET: marka at isc.org
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> unsubscribe from this list
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20130723/46515bf2/attachment.html>

More information about the bind-users mailing list