Aggiornamento di una zona DNS dinamica in bind con nsupdate
Jump to navigation
Jump to search
Se una zona riceve aggiornamenti dinamici NON È POSSIBILE EDITARE MANUALMENTE IL FILE DI ZONA, ma bisogna intervernire con nsupdate.
Dopo aver configurato la chiave e la policy di update che deve essere:
update-policy { grant acme.example.com wildcard *; };
Usare lo script:
/usr/local/bin/named-add-record example.com A www.example.com 1.2.3.4 /etc/bind/zones/Kacme.example.com.+165+54599.key"
/usr/local/bin/named-add-record example.com CNAME cname.example.com aname.example.com. /etc/bind/zones/Kacme.example.com.+165+54599.key"
#!/bin/bash
#set -x
if [[ -z $1 || -z $2 || -z $3 ]]
then
echo "Usage: "
echo " $0 example.com A www.example.com 1.2.3.4 /etc/bind/zones/Kacme.example.com.+165+54599.key"
echo " $0 example.com CNAME cname.example.com aname.example.com. /etc/bind/zones/Kacme.example.com.+165+54599.key"
exit 127
fi
#Defining Variables
DNS_SERVER="dns1.rvmgroup.it"
DNS_ZONE="${1}."
R_TYPE=${2}
R_NAME="${3}."
R_DATA=$4
KEY=$5
TTL="60"
RECORD=" ${R_NAME} $TTL ${R_TYPE} $R_DATA"
echo "
server $DNS_SERVER
zone $DNS_ZONE
debug
update add $RECORD
show
send" | nsupdate -v -k ${KEY} && \
systemctl restart bind9.service && \
echo "Waiting 20 secs ..." && \
sleep 20 && \
host ${R_NAME} 8.8.8.8