Linux DHPC+DNS搭建的DDNS的问题

viacky

使用一台RHEL 5.2安装了DHCP, DNS搭建DDNS,

dhcp, dns的工作正常.  dhcp能正常分配IP地址,  手工在正/反向文件中添加的记录dns能正常解析.

我在配置成ddns后,发现在/var/named中生成只生成了反向解析文件的.jnl临时文件,而没有生成正向解析文件的.jnl临时文件.

所有反向解析式能动态更新的, 但是正向就不能更新, 解析的时候就存在问题...

不知道是什么原因.

我的named.conf配置如下:
options {
        listen-on port 53 { 192.168.1.254; };
        listen-on-v6 port 53 { ::1; };
        directory       "/var/named";
        dump-file       "/var/named/data/cache_dump.db";
        statistics-file "/var/named/data/named_stats.txt";
        memstatistics-file "/var/named/data/named_mem_stats.txt";
        query-source    port 53;
        query-source-v6 port 53;
        allow-query     { any; };
};
logging {
        channel default_debug {
                file "data/named.run";
                severity dynamic;
        };
};

zone "." IN {
        type hint;
        file "named.ca";
};

key secddns {
    Algorithm HMAC-MD5;
    secret qTYjpAoxpYFXIYcZOBIwWw==;
};

zone "gzproxy.com" IN {
        type master;
        file "gzproxy.com.zero";
        allow-update { key secddns; };
};

zone "1.168.192.in-addr.arpa" IN {
        type master;
        file "1.168.192.local";
        allow-update { key secddns; };
};

dhcpd.conf的配置如下:
ddns-update-style interim;
#ignore client-updates;
allow client-updates;
ddns-updates true;
ddns-domainname "gzproxy.com";

key secddns {
        Algorithm HMAC-MD5;
        secret qTYjpAoxpYFXIYcZOBIwWw==;
}

zone gzproxy.com. {
     primary 192.168.1.254;
     key secddns;
}

zone 1.168.192.in-addr.arpa. {
     primary 192.168.1.254;
     key secddns;
}


subnet 192.168.1.0 netmask 255.255.255.0 {

# --- default gateway
        option routers                      192.168.1.254;
        option subnet-mask              255.255.255.0;

#       option nis-domain               "domain.org";
        option domain-name              "gzproxy.com";
        option domain-name-servers      192.168.1.254;

        option time-offset              -18000; # Eastern Standard Time
#       option ntp-servers              192.168.1.1;
#       option netbios-name-servers     192.168.1.1;
# --- Selects point-to-point node (default is hybrid). Don't change this unless
# -- you understand Netbios very well
#       option netbios-node-type 2;

        range 192.168.1.10 192.168.1.200;
        default-lease-time 21600;
        max-lease-time 43200;
}

viacky

up,,,

nagaregawa

看看日志，有没有记录

viacky

/var/log/message下有提示说update denied错误:

Dec 10 12:53:38 dns named[32137]: client 192.168.1.20#56591: update 'gzproxy.com/IN' denied



/var/lib/dhcpd/dhcpd.lease的信息信息:

lease 192.168.1.20 {
  starts 5 2010/12/10 04:53:38;
  ends 5 2010/12/10 10:53:38;
  binding state active;
  next binding state free;
  hardware ethernet 00:0c:29:25:97:0d;
  uid "\001\000\014)%\227\015";
  set ddns-client-fqdn = "work1.gzproxy.com";
  set ddns-rev-name = "20.1.168.192.in-addr.arpa.";
  client-hostname "work1";
}

viacky

我重启named,在/var/log/messages发现以下信息:

Dec 10 12:58:31 dns named[5927]: starting BIND 9.3.4-P1 -u named -t /var/named/chroot
Dec 10 12:58:31 dns named[5927]: found 1 CPU, using 1 worker thread
Dec 10 12:58:31 dns named[5927]: loading configuration from '/etc/named.conf'
Dec 10 12:58:31 dns named[5927]: listening on IPv4 interface eth0, 192.168.1.254#53
Dec 10 12:58:31 dns named[5927]: command channel listening on 127.0.0.1#953
Dec 10 12:58:31 dns named[5927]: command channel listening on ::1#953
Dec 10 12:58:31 dns named[5927]: zone 0.in-addr.arpa/IN: loaded serial 42
Dec 10 12:58:31 dns named[5927]: zone 0.0.127.in-addr.arpa/IN: loaded serial 1997022700
Dec 10 12:58:31 dns named[5927]: zone 1.168.192.in-addr.arpa/IN: loaded serial 1997022703
Dec 10 12:58:31 dns named[5927]: zone 255.in-addr.arpa/IN: loaded serial 42
Dec 10 12:58:31 dns named[5927]: zone 0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 1997022700
Dec 10 12:58:31 dns named[5927]: zone gzproxy.com/IN: loaded serial 42
Dec 10 12:58:31 dns named[5927]: zone localdomain/IN: loaded serial 42
Dec 10 12:58:31 dns named[5927]: zone localhost/IN: loaded serial 42
Dec 10 12:58:31 dns named[5927]: running
Dec 10 12:58:50 dns dhcpd: DHCPDISCOVER from 00:0c:29:25:97:0d via eth0
Dec 10 12:58:51 dns dhcpd: DHCPOFFER on 192.168.1.20 to 00:0c:29:25:97:0d (work1) via eth0
Dec 10 12:58:51 dns named[5927]: client 192.168.1.254#32770: updating zone '1.168.192.in-addr.arpa/IN': deleting rrset at '20.1.168.192.in-addr.arpa' PTR
Dec 10 12:58:51 dns named[5927]: client 192.168.1.254#32770: updating zone '1.168.192.in-addr.arpa/IN': adding an RR at '20.1.168.192.in-addr.arpa' PTR
Dec 10 12:58:51 dns dhcpd: added reverse map from 20.1.168.192.in-addr.arpa. to work1.gzproxy.com
Dec 10 12:58:51 dns dhcpd: DHCPREQUEST for 192.168.1.20 (192.168.1.254) from 00:0c:29:25:97:0d (work1) via eth0
Dec 10 12:58:51 dns dhcpd: DHCPACK on 192.168.1.20 to 00:0c:29:25:97:0d (work1) via eth0
Dec 10 12:58:53 dns named[5927]: client 192.168.1.20#50732: update 'gzproxy.com/IN' denied