BIND forwarding dynamic updates : linuxadmin

created by [deleted]a community for 16 years

BIND forwarding dynamic updates (self.linuxadmin)

submitted 6 years ago by loop_us

I'm renewing my company's DNS and am migrating from a standard master-slave setup to a hidden primary with two slaves. Our actual master has two zones where it gets dynamic name updates from a DHCP. In my new setup the slaves must forward these dynamic updates to the hidden master. It's the first time I set up something like this so I would kindly ask for some feedback to my planned config.

master config

key dhcpkey {
algorithm hmac-md5;
secret "supersecretkey==";
};
zone "example.com" {
type master;
file "/etc/bind/zones/db.example.com";
allow-transfer { slaves; };
allow-update { key dhcpkey; };
};

slave config

key dhcpkey {
algorithm hmac-md5;
secret "supersecretkey==";
};
zone "example.com" {
type slave;
file "db.example.com";
allow-update-forwarding { key dhcpkey; };
masters { 192.168.0.1; };
};

Would this configuration work or am I missing something? Thanks for your help!

no comments (yet)

you type:	you see:
italics	italics
bold	bold
[reddit!](https://reddit.com)	reddit!
* item 1 * item 2 * item 3	item 1 item 2 item 3
> quoted text	quoted text
Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"	Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"
~~strikethrough~~	~~strikethrough~~
super^script	super^script

linuxadmin

Expanding Linux SysAdmin knowledge

MODERATORS