Talk:BIND, dynamic DNS
From FreeBSDwiki
(Difference between revisions)
(len) |
(nope. see '''man nsupdate''') |
||
| Line 8: | Line 8: | ||
par non, complimenteré? | par non, complimenteré? | ||
| + | |||
| + | == nope. see '''man nsupdate''' == | ||
| + | |||
| + | nsupdate uses the -y or -k option (with an HMAC-MD5 key) to provide the | ||
| + | shared secret needed to generate a TSIG record for authenticating | ||
| + | Dynamic DNS update requests. These options are mutually exclusive. With | ||
| + | the -k option, nsupdate reads the shared secret from the file keyfile, | ||
| + | whose name is of the form '''K{name}.+157.+{random}.private'''. | ||
| + | |||
| + | Kinda confusing, I know, but I'm not the one who made the confusion. (Note how the manpage itself refers to the file as "keyfile" in the argument examples; I'm just following the existing conventions by naming my own variable $KEYFILE.) | ||
| + | |||
| + | Reading on in the manpage: | ||
| + | |||
| + | For historical reasons, the file K{name}.+157.+{random}.key must also be | ||
| + | present. | ||
| + | |||
| + | So, there ya have it. =) | ||
| + | |||
| + | --[[User:Jimbo|Jimbo]] 22:59, 19 August 2008 (EDT) | ||
Revision as of 22:59, 19 August 2008
in set-ddns.pl:
$KEYFILE should probably point to the key file, not the private file.
$KEYFILE = 'Kclient.server.net.+157+15661.private'; should read $KEYFILE = 'Kclient.server.net.+157+15661.key';
par non, complimenteré?
nope. see man nsupdate
nsupdate uses the -y or -k option (with an HMAC-MD5 key) to provide the
shared secret needed to generate a TSIG record for authenticating
Dynamic DNS update requests. These options are mutually exclusive. With
the -k option, nsupdate reads the shared secret from the file keyfile,
whose name is of the form K{name}.+157.+{random}.private.
Kinda confusing, I know, but I'm not the one who made the confusion. (Note how the manpage itself refers to the file as "keyfile" in the argument examples; I'm just following the existing conventions by naming my own variable $KEYFILE.)
Reading on in the manpage:
For historical reasons, the file K{name}.+157.+{random}.key must also be
present.
So, there ya have it. =)
--Jimbo 22:59, 19 August 2008 (EDT)
