Setting up a LAN with a DHCP server with dynamic DNS update.
\n
\nOS: Slackware 13.37<\/p>\n
A shared secret key is required to allow DHCP server updating zones file in DNS. To create the shared secret key, following command could be use:<\/p>\n
\r\ndnssec-keygen -a HMAC-MD5 -b 128 -n USER DHCP_UPDATER\r\n<\/pre>\nAfter executing the command, a pair of key & private file will be created, you could get the shared secret in the key field of the private file.<\/p>\n
Then you should, include the key in both \/etc\/dhcpd.conf<\/strong> & \/etc\/named.conf<\/strong>, e.g.,<\/p>\n
\r\nkey DHCP_UPDATER {\r\n algorithm HMAC-MD5;\r\n secret vUz0B3SSCPYfWTczJnW4Sw==;\r\n};\r\n<\/pre>\nDNS configuation<\/h1>\n
Suppose your domain in well setup in the DNS, you should allow DHCP to update the zone files, forward and reverse, if the request is send with the above keys.
\n\/etc\/named.conf<\/strong><\/p>\n\r\nzone \"int.q-station.net\" IN {\r\n type master;\r\n file \"domain\/int.q-station.net\";\r\n allow-update { key DHCP_UPDATER; };\r\n};\r\n \r\nzone \"55.168.192.in-addr.arpa\" IN {\r\n type master;\r\n file \"in-addr\/55.168.192.in-addr.arpa\";\r\n allow-update { key DHCP_UPDATER; };\r\n};\r\n<\/pre>\nDHCP server configuration<\/h1>\n
You should setup your DHCP server to update the DNS, too.
\n\/etc\/named.conf<\/strong><\/p>\n\r\nddns-updates on; # required\r\nddns-update-style interim; # required\r\nddns-domainname \"int.q-station.net.\"; # put your domain here\r\nddns-rev-domainname \"in-addr.arpa.\"; # this value should be fine for all ppl\r\n# optional options below\r\none-lease-per-client on;\r\ndeny client-updates;\r\nupdate-optimization false;\r\nuse-host-decl-names on;\r\nddns-ttl 60;\r\n\r\n# tell DHCP server where & what should be update\r\nzone int.q-station.net. {\r\n primary 192.168.1.1;\r\n key DHCP_UPDATER;\r\n}\r\n\r\nzone 55.168.192.in-addr.arpa. {\r\n primary 192.168.1.1;\r\n key DHCP_UPDATER;\r\n}\r\n<\/pre>\nWhen any dhcp client register itself by providing the hostname, the dhcp server will use the provided hostname to update the record in DNS.<\/p>\n
Testing the DNS update<\/h1>\n
You may using nsupdate<\/strong> to test DNS update operation, e.g.,<\/p>\n
\r\n% nsupdate -v -k \/tmp\/Kdhcp_updater.+157+19919.key \r\n> update add testhost.int.q-station.net 120 A 192.168.55.31\r\n> send\r\n\r\nOr\r\n\r\n> update delete testhost.int.q-station.net A\r\n> send\r\n<\/pre>\nNote for MacOS X client<\/h1>\n
The last note for MacOS X client: It seem MacOS won’t send out DHCPREQUEST with hostname instead MacOS X seem to accept the hostname from DHCP server and use it as hostname. So, you may include a host configuration for Mac machine, e.g.,<\/p>\n
\r\nhost macosx1 {\r\n hardware ethernet 08:00:27:05:00:00;\r\n option host-name \"macosx1\";\r\n ddns-hostname \"macosx1\";\r\n}\r\n<\/pre>\nDelete DNS record on release or expiry<\/h1>\n
As the default installation, DHCP server won’t remove the records in DNS if the host release the IP or the registration is expired. In order to implement the removal of expired or released record, I suggest you may study the on event<\/strong> reference in dhcpd.conf man page.<\/p>\n
\r\non release or expiry {\r\n log(debug,ddns-fwd-name);\r\n # execute some nsupdate script to remove the corresponding record\r\n}\r\n<\/pre>\nUpdating dynamic update zone file<\/h1>\n
You may not directly update the zone file which dynamic update enabled, since the *.jnl file of the zone may overwritten your modification. The correct procedure to update dynamic update zone, should,<\/p>\n
\r\n% rndc freeze <zone>\r\n(The journal file will be committed and get remove.)\r\nupdate the zone file now\r\n% rndc thaw <zone>\r\n<\/pre>\n