gnoovy
25.07.10, 20:49
hi leutz,
versuche neben meinem anderen Problem einen dns und dhcp-server unter centos oder fedora aufzusetzen, welcher über den dhcp-server den dns-server updatet.
Allerdings erscheint immer beim zonenupdate denied. Was mache ich da noch falsch?
anbei meine konfigurationsdateien:
dhcp:
#
# DHCP Server Configuration file.
# see /usr/share/doc/dhcp*/dhcpd.conf.sample
# see 'man 5 dhcpd.conf'
#
# Test
# include "/etc/rndc.key";
key rndckey {
algorithm hmac-md5;
secret "NRahYlenJpgQInw1gnE5BQ==";
};
ddns-update-style interim;
ddns-updates on;
subnet 192.168.178.0 netmask 255.255.255.0 {
deny unknown-clients;
allow client-updates;
option domain-name-servers 192.168.178.200;
option domain-name "winnet.local";
option routers 192.168.178.254;
ddns-updates on;
range 192.168.178.100 192.168.178.110;
}
host client1 {
hardware ethernet 00:0C:29:FE:8C:15;
}
host sql1 {
hardware ethernet 00:0C:29:94:59:A7;
fixed-address 192.168.178.249;
}
zone winnet.local. {
primary 192.168.178.200;
key rndckey;
}
zone 178.168.192.in-addr.arpa. {
primary 192.168.178.200;
key rndckey;
}
named:
//
// named.conf
//
// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
// server as a caching only nameserver (as a localhost DNS resolver only).
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//
// include "/etc/rndc.key";
key rndckey {
algorithm hmac-md5;
secret "NRahYlenJpgQInw1gnE5BQ==";
};
options {
listen-on port 53 { 192.168.178.200; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { 192.168.178/24; };
recursion yes;
// dnssec-enable yes;
// dnssec-validation yes;
// dnssec-lookaside auto;
// /* Path to ISC DLV key */
// bindkeys-file "/etc/named.iscdlv.key";
forwarders {
192.168.178.254;
};
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "." IN {
type hint;
file "named.ca";
};
include "/etc/named.rfc1912.zones";
zone "winnet.local" {
type master;
file "/var/named/winnet.local.hosts";
allow-update { key rndckey; };
};
zone "178.168.192.in-addr.arpa" {
type master;
file "/var/named/192.168.178.rev";
allow-update { key rndckey; };
};
versuche neben meinem anderen Problem einen dns und dhcp-server unter centos oder fedora aufzusetzen, welcher über den dhcp-server den dns-server updatet.
Allerdings erscheint immer beim zonenupdate denied. Was mache ich da noch falsch?
anbei meine konfigurationsdateien:
dhcp:
#
# DHCP Server Configuration file.
# see /usr/share/doc/dhcp*/dhcpd.conf.sample
# see 'man 5 dhcpd.conf'
#
# Test
# include "/etc/rndc.key";
key rndckey {
algorithm hmac-md5;
secret "NRahYlenJpgQInw1gnE5BQ==";
};
ddns-update-style interim;
ddns-updates on;
subnet 192.168.178.0 netmask 255.255.255.0 {
deny unknown-clients;
allow client-updates;
option domain-name-servers 192.168.178.200;
option domain-name "winnet.local";
option routers 192.168.178.254;
ddns-updates on;
range 192.168.178.100 192.168.178.110;
}
host client1 {
hardware ethernet 00:0C:29:FE:8C:15;
}
host sql1 {
hardware ethernet 00:0C:29:94:59:A7;
fixed-address 192.168.178.249;
}
zone winnet.local. {
primary 192.168.178.200;
key rndckey;
}
zone 178.168.192.in-addr.arpa. {
primary 192.168.178.200;
key rndckey;
}
named:
//
// named.conf
//
// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
// server as a caching only nameserver (as a localhost DNS resolver only).
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//
// include "/etc/rndc.key";
key rndckey {
algorithm hmac-md5;
secret "NRahYlenJpgQInw1gnE5BQ==";
};
options {
listen-on port 53 { 192.168.178.200; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
allow-query { 192.168.178/24; };
recursion yes;
// dnssec-enable yes;
// dnssec-validation yes;
// dnssec-lookaside auto;
// /* Path to ISC DLV key */
// bindkeys-file "/etc/named.iscdlv.key";
forwarders {
192.168.178.254;
};
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "." IN {
type hint;
file "named.ca";
};
include "/etc/named.rfc1912.zones";
zone "winnet.local" {
type master;
file "/var/named/winnet.local.hosts";
allow-update { key rndckey; };
};
zone "178.168.192.in-addr.arpa" {
type master;
file "/var/named/192.168.178.rev";
allow-update { key rndckey; };
};