Hello,
is it possible to restrict dynamic dns updates to one domain?
Allow this:
update add host1.example.de 86400 a 1.1.1.1
update add host2.example.de 86400 a 2.2.2.2
Deny this:
update add host1.subdomain1.example.de 86400 a 1.1.1.1
update add host2.anysubdomain.example.de 86400 a 2.2.2.2
is it possible to restrict dynamic dns updates to one domain?
I think 'name' is what you're after:
grant key-name name host1.example.de. A;
You will be aware that the type list can take multiple space-separated values.
-JP
--
Visit https://lists.isc.org/mailman/listinfo/bind-u
But i don't want to specify all possible hostnames in the update-policy
settings .
there are more than 350 hosts in the example.de domain.
Am 13.02.2023 um 20:06 schrieb Jan-Piet Mens:
is it possible to restrict dynamic dns updates to one domain?
I think 'name' is what you're after:
gr
Step back and tell us what you are attempting to achieve.
e.g. I want my hosts to be able to update their address records.
grant admin-key subzone ANY;
grant * self . A ;
and use SIG(0) to sign the updates. The admin adds the public KEY record for
the machine
using ‘admin-ke
I want an external server to be able to update all the hosts (A) records
inside the example.de domain.
But i don't want that the external server can create subdomain entries
inside the example.de domain.
Is this possible? What grant/deny rule must i use?
-André
Am 13.02.2023 um 23:33 schrieb
Use external. You can create any rule you can think of with that.
> On 14 Feb 2023, at 20:29, André Steden wrote:
>
> I want an external server to be able to update all the hosts (A) records
> inside the example.de domain.
> But i don't want that the external server can create subdomain entrie
I solved the problem with a small daemon and grant external.
It was not easy for me since I am not a C programmer.
It would be nice if there would be some examples in C or Python in the
future.
regex support for grant rules would also be nice.
André
Am 14.02.2023 um 14:18 schrieb Mark Andre
7 matches
Mail list logo