Send dhcp-users mailing list submissions to
dhcp-users@lists.isc.org
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.isc.org/mailman/listinfo/dhcp-users
or, via email, send a message with subject or body 'help' to
dhcp-users-requ...@lists.isc.org
You can reach the person managing the list at
dhcp-users-ow...@lists.isc.org
When replying, please edit your Subject line so it is more specific
than "Re: Contents of dhcp-users digest..."
Today's Topics:
1. Can you somehow send DDNS update twice for zone? (SoLoR)
2. Re: Can you somehow send DDNS update twice for zone? (Tony Finch)
3. Re: Can you somehow send DDNS update twice for zone?
(Simon Hobson)
----------------------------------------------------------------------
Message: 1
Date: Wed, 5 Dec 2018 03:32:37 -0600 (CST)
From: SoLoR <so...@outlook.com>
To: dhcp-users@lists.isc.org
Subject: Can you somehow send DDNS update twice for zone?
Message-ID: <1544002357210-0.p...@n4.nabble.com>
Content-Type: text/plain; charset=us-ascii
Hey, hope someone can help or at least tell me its not possible because im
going crazy already :)
Here is the scenario.
Im runing both DHCPv4 and DHCPv6 server, v4 is serving local IPs and v6 is
serving public ips. Both are currently updating in to lets say
lan.domain.com and everything is working as it suppose to however i dont
like that if you resolve host from outside (lets say test.lan.domain.com)
you will get local A and public AAAA record. So i decided it would be good
to split configuration in bind in to internal and public view for that
doimain. In internal view resolving hosts in lan.domain.com would give both
A and AAAA records, but in public view you would only get AAAA. However here
is a problem, to get this to work i would need to somehow convince dhcpv6
server to send AAAA record update TWICE, one for public and one for
internal, however since its technically same domain i cant find combination
that would work. I tried adding 2 ips in to primary, in hope it will update
both primary and i can separate them in bind with proper matching key/ip,
without success, i tried double zone statements with different key/primary
combination, no luck...
So bottom line, is there a way for dhcp to send dns update for same zone
twice? Or i guess other option would be to somehow pass update from one view
to the other in bind...
--
Sent from: http://isc-dhcp-users.2343191.n4.nabble.com/
------------------------------
Message: 2
Date: Wed, 5 Dec 2018 11:15:46 +0000
From: Tony Finch <d...@dotat.at>
To: Users of ISC DHCP <dhcp-users@lists.isc.org>
Subject: Re: Can you somehow send DDNS update twice for zone?
Message-ID: <alpine.deb.2.20.1812051110480.2...@grey.csi.cam.ac.uk>
Content-Type: text/plain; charset=US-ASCII
SoLoR <so...@outlook.com> wrote:
> Or i guess other option would be to somehow pass update from one view
> to the other in bind...
If your zone isn't very big or updated very frequently, and if you are up
for a bit of duct-tape-and-string scripting, you can sort of do this with
a couple of my tools:
Get BIND to send NOTIFY messages to `nsnotifyd` when the internal view is
updated. `nsnotifyd` is a tiny server which fires off a script when it is
notified:
http://www.dotat.at/prog/nsnotifyd/
Write a script to `dig axfr` the internal zone and create the external
version.
Use `nsdiff` to update the live external zone based on the version your
script created.
https://dotat.at/prog/nsdiff/
Tony.
--
f.anthony.n.finch <d...@dotat.at> http://dotat.at/
Sole, Lundy, Fastnet: Southwest 5 to 7, perhaps gale 8 later in west Sole.
Moderate or rough, occasionally very rough in Sole. Rain or showers. Good,
occasionally poor.
------------------------------
Message: 3
Date: Wed, 5 Dec 2018 11:23:49 +0000
From: Simon Hobson <dh...@thehobsons.co.uk>
To: Users of ISC DHCP <dhcp-users@lists.isc.org>
Subject: Re: Can you somehow send DDNS update twice for zone?
Message-ID: <b43d8ec1-01e4-49c6-bf9a-ffd838eb5...@thehobsons.co.uk>
Content-Type: text/plain; charset=us-ascii
SoLoR <so...@outlook.com> wrote:
> Im runing both DHCPv4 and DHCPv6 server, v4 is serving local IPs and v6 is
> serving public ips. Both are currently updating in to lets say
> lan.domain.com and everything is working as it suppose to however i dont
> like that if you resolve host from outside (lets say test.lan.domain.com)
> you will get local A and public AAAA record. So i decided it would be good
> to split configuration in bind in to internal and public view for that
> doimain. In internal view resolving hosts in lan.domain.com would give both
> A and AAAA records, but in public view you would only get AAAA. However here
> is a problem, to get this to work i would need to somehow convince dhcpv6
> server to send AAAA record update TWICE, one for public and one for
> internal, however since its technically same domain i cant find combination
> that would work. I tried adding 2 ips in to primary, in hope it will update
> both primary and i can separate them in bind with proper matching key/ip,
> without success, i tried double zone statements with different key/primary
> combination, no luck...
>
> So bottom line, is there a way for dhcp to send dns update for same zone
> twice? Or i guess other option would be to somehow pass update from one view
> to the other in bind...
AFAIK there is no way to do this directly - there will be other ways such as
that suggested by Tony.
However, I would question whether this is actually what you want to do.
For services which are to be externally accessible, I would expect those to
have static entries. In general, I would expect other internal host to not
appear in the DNS at all - so they would not have AAAA record in your public
view.
Also, what are you doing for reverse lookups ? The same problem would apply
there unless you configure the relevant ip6.arpa zone in one view to be a
forwarder or slave of the same zone in the other view. But from a privacy
perspective, having public reverse lookups gives a name to each IP address -
making the use of privacy addressing moot.
------------------------------
Subject: Digest Footer
_______________________________________________
dhcp-users mailing list
dhcp-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/dhcp-users
------------------------------
End of dhcp-users Digest, Vol 122, Issue 1
******************************************
