Aggiornamento di una zona DNS dinamica in bind con nsupdate

From RVM Wiki
Revision as of 08:25, 24 January 2024 by Gabriele.vivinetto (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Se una zona riceve aggiornamenti dinamici NON È POSSIBILE EDITARE MANUALMENTE IL FILE DI ZONA, ma bisogna intervernire con nsupdate.

Dopo aver configurato la chiave e la policy di update che deve essere: 

update-policy  { grant acme.example.com wildcard *; };

Usare lo script: 

/usr/local/bin/named-add-record example.com A     www.example.com   1.2.3.4            /etc/bind/zones/Kacme.example.com.+165+54599.key"

/usr/local/bin/named-add-record example.com CNAME cname.example.com aname.example.com. /etc/bind/zones/Kacme.example.com.+165+54599.key"

#!/bin/bash
#set -x

if [[ -z $1 || -z $2 || -z $3  ]]
then 
	echo "Usage: "
	echo "        $0 example.com A     www.example.com   1.2.3.4            /etc/bind/zones/Kacme.example.com.+165+54599.key"
	echo "        $0 example.com CNAME cname.example.com aname.example.com. /etc/bind/zones/Kacme.example.com.+165+54599.key"
	exit 127
fi
#Defining Variables
DNS_SERVER="dns1.rvmgroup.it"
DNS_ZONE="${1}."
R_TYPE=${2}
R_NAME="${3}."
R_DATA=$4
KEY=$5
TTL="60"
RECORD=" ${R_NAME} $TTL ${R_TYPE} $R_DATA"
echo "
server $DNS_SERVER
zone $DNS_ZONE
debug
update add $RECORD
show
send" | nsupdate -v -k ${KEY} && \

	systemctl restart bind9.service && \
	echo "Waiting 20 secs ..." && \
	sleep 20 && \ 
	host ${R_NAME} 8.8.8.8

Riferimenti

Retrieved from "https://kb.rvmgroup.it/index.php?title=Aggiornamento_di_una_zona_DNS_dinamica_in_bind_con_nsupdate&oldid=11069"