Hello list,
I'm trying to implement a DNS update policy script in PDNS Auth 4.1.1-1
(Ubuntu 18.04 LTS).
# Enable DNS update, allow updates from everywhere, but restrict
# changes via policy script
dnsupdate=yes
allow-dnsupdate-from=0.0.0.0/0,::/0
Hi Kevin,
the lua-dnsupdate-policy-script sound like something I can use. Thanks
for the pointer.
Kind Regards,
Dominik Menke
On 7/8/19 12:18 PM, Kevin P. Fleming wrote:
It is not necessary to use the web/API server for DNS-01 challenges; I
use them all the time and don't have either
Hi Brian,
On 7/8/19 12:17 PM, Brian Candler wrote:
To ease future TLS deployments, I'd like to use something like lego
[2] to get certificates from Let's Encrypt using the dns-01 challenge
[3]; which requires me to enable the web/api server.
Or you can use dynamic DNS updates with TSIG:
cords (plus a separate
server/IP just for ACME challenges)...
I'd be grateful for any input.
Kind Regards,
Dominik Menke
[1]: https://github.com/digineo/dnsgit
[2]: https://go-acme.github.io/lego/dns/pdns/
[3]: https://letsencrypt.org/docs/challenge-types/#dns-01-challenge
[4]: https://doc.p
