BIND DHCP dynamic update reverse zone if algin is non octet problem
-
Hello
I have installed BIND package on pfSense 2.6 community on my testing evironment Hyper-V machine.My WAN is from DHCP my ISP provider.
My LAN is 192.168.192.1/18 DHCP
My DHCP server scope 192.168.192.100-192.168.192.200,
Enable registration of DHCP client names in DNS. DDNS domain example.com./var/dhcpd/etc/dhcpd.conf has section
zone 192-255.168.192.in-addr.arpa. {
primary 192.168.192.1;
key "rndc-key";
}My client is Windows 10 DHCP enabled.
If my client release and renev ipaddres DHCP log
Added new forward map from DESKTOP-GBII3C8.example.com to 192.168.192.100
not add to reverse zone.BIND configuration reverse zone from /var/etc/named/etc/namedb/named.conf
zone "168.192.in-addr.arpa" { type master; file "/etc/namedb/master/default/168.192.DB"; allow-query { any; localhost; localnets; }; allow-transfer { any; localhost; localnets; }; allow-update { any; }; };File zone /var/etc/named/etc/namedb/master/default/168.192.DB
$TTL 43200 ; $ORIGIN 168.192.in-addr.arpa. ; Database file 168.192.DB for 168.192 zone. ; Do not edit this file!!! ; Zone version 2664371513 ; @ IN SOA 192.168.192.1. zonemaster.168.192. ( 2664371513 ; serial 1d ; refresh 2h ; retry 4w ; expire 1h ; default_ttl ) ; ; Zone Records ; IN NS 192.168.192.1. 1.192 IN PTR router.example.com.When I change LAN addresation to 192.168.0.1/16 DHCP adds record to reverse zone correctly.
What is wrong?
Is any solutions for my problem? -
Is it possible not to use /16 or worse, use /18 ?
Your pool is only "100" wide. Do you relly need a 254 x 254 x 4 => 260k network ?
Use a /24 "like everybody else" and call it a day ;) -
@milew you can only use /24 or /16 or /8 for reverse zones.
There is a bit of hack and cnames for smaller then /24s see rfc 2317
If you have say a /22, this would be 4 different /24 zones.
-
@gertjan I need more adresses than /24
my pool 100 is only for test. -
@milew see my post, use multiple /24 zones, or just use a /16.. Its not like with rfc1918 there is going to be any other place authoritative for parts of the /16 your not using.
-
@johnpoz I remove reverse zone 168.192.in-addr.arpa
and add
192.168.192.in-addr.arpa
zone file /var/etc/named/etc/namedb/master/default/192.168.192.DB$TTL 43200 ; $ORIGIN 192.168.192.in-addr.arpa. ; Database file 192.168.192.DB for 192.168.192 zone. ; Do not edit this file!!! ; Zone version 2664446401 ; @ IN SOA router.example.com. zonemaster.192.168.192. ( 2664446401 ; serial 1d ; refresh 2h ; retry 4w ; expire 1h ; default_ttl ) ; ; Zone Records ; IN NS router.example.com. 1 IN PTR router.example.com.and /var/etc/named/etc/namedb/named.conf
#Do not edit this file!!! key "rndc-key" { algorithm hmac-sha256; secret "W1+lueh/DCHHqUxXe9j+bfD+p48yqCgcZUEjeAoZ/Rs="; }; controls { inet 127.0.0.1 port 8953 allow { 127.0.0.1; } keys { "rndc-key"; }; }; options { directory "/etc/namedb"; pid-file "/var/run/named/pid"; statistics-file "/var/log/named.stats"; max-cache-size 384M; dnssec-validation auto; listen-on-v6 port 53 { any; }; listen-on port 53 { any; }; }; logging { channel custom { syslog daemon; print-time no; print-severity yes; print-category yes; severity debug 5; }; category update { custom; }; }; view "default" { recursion yes; match-clients { any; }; allow-recursion { any; }; zone "example.com" { type master; file "/etc/namedb/master/default/example.com.DB"; allow-query { any; localhost; localnets; }; allow-transfer { any; localhost; localnets; }; allow-update { any; localhost; localnets; }; }; zone "192.168.192.in-addr.arpa" { type master; file "/etc/namedb/master/default/192.168.192.DB"; allow-query { any; }; allow-transfer { any; }; allow-update { any; }; }; zone "." { type hint; file "/etc/namedb/named.root"; }; };and working
Sep 29 10:18:10 dhcpd 14875 Added reverse map from 100.192.168.192.in-addr.arpa. to DESKTOP-GBII3C8.example.com
Sep 29 10:18:10 dhcpd 14875 Added new forward map from DESKTOP-GBII3C8.example.com to 192.168.192.100@johnpoz Thank you very much.