Concerns about DNS & DHCP integration

W.C.A. Wijngaards wouter at nlnetlabs.nl
Fri Jan 29 12:50:15 UTC 2016


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Hi Hernan,

On 29/01/16 13:23, Hernan Saltiel via Unbound-users wrote:
> 
> 
> On Fri, Jan 29, 2016 at 4:24 AM, A. Schulze via Unbound-users 
> <unbound-users at unbound.net <mailto:unbound-users at unbound.net>>
> wrote:
> 
> 
> Hernan Saltiel via Unbound-users:
> 
> just to let those users connect to their PCs using DNS records, and
> not IP addresses,
> 
> 
> one possibility would be a dyndns service.
> 
> 
> Hi Andreas, I was thinking about something that would be internally
> available. Don't know if unbound could provide such a service based
> on some config.

You could make a script to do things:
unbound-control local_data_remove <name>
unbound-control local_data <name> A <ip4 address>
echo 'local-data: "<name> A <ip4address"' > somedir/<name>.loc

Unbound-control instructs the running daemon what to do; the .loc
files are meant for server restarts, and you include them in unbound.con
f:
server:
include: "somedir/*.loc"

An in dhcpd.conf this looks like this (from
http://jpmens.net/2011/07/06/execute-a-script-when-isc-dhcp-hands-out-a-
new-lease/):
on commit {
        set clip = binary-to-ascii(10, 8, ".", leased-address);
        set clhw = binary-to-ascii(16, 8, ":", substring(hardware, 1, 6)
);
        execute("/usr/local/sbin/dhcpevent", "commit", clip, clhw,
host-decl-name);
}
Which passes "commit" "192.0.2.1" "11:aa:bb:cc:dd:ee" "name"

You might check the ip address for IPv6 and then commit 'AAAA' records
instead.  You can also load PTR records into unbound if you wish.

Best regards, Wouter


> Thanks, and best regards,
> 
> HeCSa.
> 
> 
> 
> 
> 
> Andreas
> 
> 
> 
> 
> 
> -- HeCSa

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQIcBAEBCAAGBQJWq2ABAAoJEJ9vHC1+BF+NqgIP/3mw0i4kszqIPZjGSjswaU3n
+iQM1g1xz6cO3PLlX2Tn6RBs+vwkemBMGW0w/yAa9a48Mj/yrHc1a9sXC3Dweuo0
GmTPN/oJo3SdVf4FJDz03i+rE7HfmLZ0YwC6QCOYyaFImBPojvI5dzO4SBagUZaR
U3nsNuPJQLQCXle9K1EWD0tmVIWlYJxrqYUN4UYy7WXeFjGEYYPGf7uS1NRqDQAs
AsRHqJKtl4mnHBSWIq8ulvE3QsXeOnrDHIMWP5VZzW+YSEV1LWuoWjGf/uqGJfn/
oEgwAlSSfLLy+L1Hl/VXEPY5xF/MsRMBRxu2jLoaP38oA51SiCHRi9x4KZV6UawL
gtJAGUUuhxY2ALuYzwoWQvRVWjkF/sf1+Z1iy7QamSNZu5d1a9jJ05ijAzHiE91w
2FJVd5erIhjPfZ4AxlwYXYaHJ5vCqyeneH0mkRrBRmDm4AJJeOzVJ0tKrBbgB3DT
k4gFzVfa190yKcfzGFYG4XuAoYLnUXtZZK4ei+tbTvhKCYpK2Ter+FjFMtoZ+2bw
ip+SkcIHbISiurJ3bH+hwdXlRSTGiIAaoK/aZYP+mVfHjPw8ccEs1hQ85D2NBs5s
FwVq7sQtNSuflmPWbPjt8kfO6NC1yJ/xviGmpl9K1b7zecijxwVTrZve0UMGSR+u
TYBKfgUEG4RAizHew0ME
=1PBc
-----END PGP SIGNATURE-----



More information about the Unbound-users mailing list