Update RPZ zone records
Anvar Kuchkartaev
anvar at aegisnet.eu
Thu Jan 25 00:35:22 UTC 2018
this is my named.rpz file:
$TTL 3600
@ IN SOA ns1.hotspots.network. hostmaster.hotspots.network. (
2015103101 ; serial number YYMMDDNN
3600 ; refresh 1 hour
600 ; retry 10 minutes
86400 ; expiry 1 week
600 ) ; min ttl 10 minutes
@ IN NS ns1.hotspots.network.
*.silktide.com CNAME ads.hotspots.network.
On 24/01/18 22:57, John Miller wrote:
> Hi Anvar,
>
> I see you have your named.conf file listed here; can you please paste
> your named.rpz file as well?
>
> John
>
> On Wed, Jan 24, 2018 at 4:19 PM, Anvar Kuchkartaev via bind-users
> <bind-users at lists.isc.org> wrote:
>> Hello,
>>
>> I am trying to update RPZ zone records dynamically using nsupdate. But
>> unfortunately I am facing with NOTZONE option.
>>
>> nsupdate -k /etc/rndc.key < nsupdate.txt
>>
>> Outgoing update query:
>> ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
>> ;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
>> ;; ZONE SECTION:
>> ;rpz. IN SOA
>>
>> ;; UPDATE SECTION:
>> 32.213.60.86.188.rpz-client-ip. 60 IN CNAME rpz-passtrhu.
>>
>> update failed: NOTZONE
>>
>>
>> nsupdate.txt:
>>
>> server localhost
>> zone rpz
>> update add 32.213.60.86.188.rpz-client-ip. 60 CNAME rpz-passtrhu.
>> show
>> send
>>
>>
>> my rpz zone:
>>
>> zone "rpz" IN {
>> type master;
>> file "named.rpz";
>> allow-query { localhost; };
>> update-policy {
>> grant rndc-key zonesub ANY;
>> };
>> };
>>
>> Any help will be greatly appreciated,
>>
--
Anvar Kuchkartaev
anvar at aegisnet.eu
More information about the bind-users
mailing list