Knowledge Base ISC Main Website Ask a Question/Contact ISC
Support in ISC DHCP for DDNS (Dynamic DNS) without zone statements
Author: Shawn Routhier Reference Number: AA-01097 Views: 5829 Created: 2014-01-16 14:01 Last Updated: 2014-01-28 12:34 0 Rating/ Voters


ISC DHCP 4.3 returns support for using DDNS without a zone statement in the patch for [RT #30461].  In 4.1 and earlier versions of ISC DHCP if the server was attempting to update the DNS with a name for which it didn't have a zone statement it would attempt to find an appropriate name server to do the update.  In 4.2 as part of the addition of the asynchronous DDNS functionality this feature was lost.  In 4.3 we  have modified the code to once again support this feature.  

This feature doesn't require any changes to your configuration to work and is enabled by default.  If you wish to disable it you may do so by editing the includes/site.h file and commenting out the following line then recompiling your code.  It does require a resolv.conf file that points to a usable resolver, by default this is found in /etc/resolv.conf.

#define DNS_ZONE_LOOKUP

Care should be taken when trying to make use of this feature as it may make your network more fragile and less secure.  By using zone statements with TSIG keys you can direct your DDNS traffic and have it secured. Without the zone statements the server will attempt to find a DNS server to update but it may not find the one you wish to use and the transaction won't include security.  You may be able to secure the channel between the DHCP and DNS servers via another mechanism, such as filtering on the ports of a switch.


© 2001-2016 Internet Systems Consortium

Please help us to improve the content of our knowledge base by letting us know below how we can improve this article.

If you have a technical question or problem on which you'd like help, please don't submit it here as article feedback.

For assistance with problems and questions for which you have not been able to find an answer in our Knowledge Base, we recommend searching our community mailing list archives and/or posting your question there (you will need to register there first for your posts to be accepted). The bind-users and the dhcp-users lists particularly have a long-standing and active membership.

ISC relies on the financial support of the community to fund the development of its open source software products. If you would like to support future product evolution and maintenance as well having peace of mind knowing that our team of experts are poised to provide you with individual technical assistance whenever you call upon them, then please consider our Professional Subscription Support services - details can be found on our main website.

Custom Fields
  • Bug tracking system reference: #30461
Feedback
  • There is no feedback for this article
Info Submit Feedback on this Article
Nickname: Your Email: Subject: Comment:
Enter the code below:
Quick Jump Menu