dhcpd and ddns: updating only certain dns servers

[Simon Hobson]

Christoph Kaegi wrote:

>  > I think what most people do is to statically configure publically
>>  accessible devices (or at least use fixed addresses) and manually
>>  configure their DNS records. Since most people are using NAT, and
>>  even if they don't do NAT will have to configure a firewall to allow
>  > inbound connections, then this isn't normally an issue.



>We do that too for servers. But we also have quite a lot of
>students who get dynamic addresses and are able to connect
>directly to internet hosts (and therefor should get public
>DNS names).

You mean they can be connected TO as public hosts ?

I suggest that for this class of machines you have a different dns 
zone and don't do split horizon dns for that zone. It also gives some 
differentiation between your official hosts and anything a student 
might put up - bearing in mind that someone can give their machine 
any official sounding name and that's what will go in the DNS !