<html><head></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">I'm rolling out DDNS in conjunction with 802.1x/Mac authentication. When we role out network authentication in a building, I use IP address pools for the auth and unauth networks.<div>Auth network also uses DDNS to fwd/reverse register the host in an appropriate domain e.g. dhcp-a.b.c.d-<building-name>-dot1x.hull.ac.uk.</div><div><br></div><div>MAC auth for devices such as printers use DDNS to put device in <a href="http://printers.hull.ac.uk">printers.hull.ac.uk</a>.</div><div><br></div><div><br></div><div>Non network auth buildings use our old SQL database system with dns and dhcp config file builds /reloads etc</div><div><br></div><div>Rgds</div><div>Alex</div><div><br></div><div><br><div><div>On 6 Oct 2011, at 10:16, Phil Mayers wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite">
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<meta name="Generator" content="MS Exchange Server version 6.5.7654.12">
<title>Re: Experience with DDNS (RFC 2136)</title>
<div>
<!-- Converted from text/plain format --><p><font size="2">On 10/06/2011 09:44 AM, Jan-Piet Mens wrote:<br>
> [ pardon the possible duplicate ]<br>
><br>
> I'm a fan of RFC 2136 Dynamic DNS and, if I think it appropriate for a<br>
> particular use case, sometimes suggest DDNS to customers. I often have<br>
> a hard time convincing people to use DDNS and am doubted regarding its<br>
> stability and/or performance.<br>
><br>
> I'm looking for success (or failure) stories to back up my statement :)<br>
> For example, I seem to recall hearing the .COM zone uses DDNS for<br>
> updates (90 million records, isn't it?).<br>
><br>
> Are you willing to share the stories of your DDNS deployments, maybe<br>
> including approximate number of zones, records, update frequencies,<br>
> etc.?<br>
<br>
It's a bit of a vague question really.<br>
<br>
We use DDNS to incrementally update our DNS zones from our SQL<br>
registration database. It works fine; there's really nothing to say<br>
about it beyond that.<br>
<br>
(However, a nice property of doing things this way is that, if using<br>
DNSSEC, you get incremental signing rather than have to bulk re-sign a<br>
potentially large zone)<br>
<br>
We don't do any client-initiated (or DHCP-server initiated) DDNS yet.<br>
_______________________________________________<br>
Please visit <a href="https://lists.isc.org/mailman/listinfo/bind-users">https://lists.isc.org/mailman/listinfo/bind-users</a> to unsubscribe from this list<br>
<br>
bind-users mailing list<br>
<a href="mailto:bind-users@lists.isc.org">bind-users@lists.isc.org</a><br>
<a href="https://lists.isc.org/mailman/listinfo/bind-users">https://lists.isc.org/mailman/listinfo/bind-users</a><br>
</font>
</p>
</div>
</blockquote></div><br></div></body></html>