[Kea-users] kea not updating bind9
Charles Curley
charlescurley at charlescurley.com
Tue Sep 23 18:39:30 UTC 2025
On Tue, 23 Sep 2025 02:05:40 -0500
Doug Freed <dwfreed at isc.org> wrote:
> Kea does not use DNS-aware name comparisons, but simple
> case-insensitive string comparisons, when attempting to locate a
> matching domain in your configuration for a DDNS update request.
> FQDNs in update requests will always end with a trailing period, but
> your domain name in your DDNS config does not, which is what's
> causing the error.
Ah, thank you.
So this:
"forward-ddns" : {
"ddns-domains" : [
{
"name": "localdomain",
should be this:
"forward-ddns" : {
"ddns-domains" : [
{
"name": "localdomain.", <---
and I (now) see the . after the arpa in the reverse domain. I applied
that, and will await the next request.
I did get a "successful" lease removal request. I say successful in
quotes because the entry wasn't actually in DNS, so named didn't have
anything to do. After several hours, there was nothing else, so I
shut down all three servers, moved aside the two kea-leases4.csv files,
and restarted all three servers. I got two successful adds. So I think
that solved that. Thank you.
>
> Note that while you redacted your TSIG key from your BIND config
> before posting, you did not do the same for your DDNS config. Since
> you're using RFC 1918 IP addresses, this may not be a real concern,
> but I thought I'd point it out just in case.
Thank you for pointing that out. As you say, probably not an issue.
Still, I created a new key with tsig-keygen. Easy enough. Paranoids
live longer. :-)
>
> -Doug
--
Does anybody read signatures any more?
https://charlescurley.com
https://charlescurley.com/blog/
More information about the Kea-users
mailing list