On 22/09/18 17:04, Reindl Harald wrote:
Am 22.09.18 um 17:53 schrieb lejeczek via bind-users:
is it possible to update domain(not hosts of/in the domain) records?
there is nothing like "not hosts of/in the domain"
Something like
domain.local A 10.1.1.100
which is simply an A record and not "not hosts of/in the domain"
simple, right?
I'm trying nsupdate but it refuses to do above
what about provide informations like state of the zone file and
unaltered input/output of "nsupdate" given that crystal balls are out of
order?
from my previous post, (different subject):
..
I do:
> update delete ddd.dom.local. 86400 in a 10.3.1.100
> send
and that works, but when I try:
> update add dom.local. 86400 in a 10.3.1.100
> send
update failed: REFUSED
..and in logs:
client @0x7fd7a40f2e40 127.0.0.1#9489/key nsupdate_key: updating zone
'dom.local/IN': update failed: rejected by secure update (REFUSED)
..and zone:
zone "dom.local" IN {
auto-dnssec maintain;
key-directory "myZones";
allow-query { localhost; dom.local; };
#allow-update { key dhcpd; key nsupdate_key; };
update-policy {
grant dhcpd wildcard *.dom.local. A CNAME TXT;
grant nsupdate_key wildcard *.dom.local. A CNAME TXT;
};
# below line would be for a slave/stub secondary server
#allow-transfer { localbox; 172.25.12.203; };
type master;
file "myZones/dom.local.signed";
};
thanks, L
_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
from this list
bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users
