Hi all
I was abroad for some time. Coming back I realize that local name resolution is limited to static entries only. This >used< to work before I left, for years. I’d like to bring the functionality back again.
The very problem:
systemctl status dhcpd
**●** dhcpd.service - ISC DHCPv4 Server
Loaded: loaded (/usr/lib/systemd/system/dhcpd.service; enabled; vendor preset: disabled)
Active: **active (running)** since Thu 2022-10-13 17:19:05 CEST; 14h ago
Process: 7297 ExecStart=/usr/lib/dhcp/dhcpd -4 start (code=exited, status=0/SUCCESS)
Main PID: 7474 (dhcpd)
Tasks: 1 (limit: 4915)
CGroup: /system.slice/dhcpd.service
└─ 7474 /usr/sbin/dhcpd -4 -cf /etc/dhcpd.conf -pf /var/run/dhcpd.pid -chroot /var/lib/dhcp -lf /db/dhcpd.leases -user dhcpd -group nogroup eth0
Okt 14 08:11:35 intra dhcpd[7474]: **Unable to add forward map from S22-von-Luccas.mydom.lan to 192.168.23.187: tsig indicates error**
Okt 14 08:12:12 intra dhcpd[7474]: DHCPREQUEST for 192.168.23.156 from 00:26:73:79:94:d6 via eth0
Okt 14 08:12:12 intra dhcpd[7474]: DHCPACK on 192.168.23.156 to 00:26:73:79:94:d6 via eth0
Okt 14 08:12:30 intra dhcpd[7474]: DHCPREQUEST for 192.168.23.155 from f8:95:c7:f4:66:27 via eth0
Okt 14 08:12:30 intra dhcpd[7474]: DHCPACK on 192.168.23.155 to f8:95:c7:f4:66:27 via eth0
Okt 14 08:12:44 intra dhcpd[7474]: DHCPREQUEST for 192.168.23.106 from 08:02:8e:8a:fa:e2 via eth0
Okt 14 08:12:44 intra dhcpd[7474]: DHCPACK on 192.168.23.106 to 08:02:8e:8a:fa:e2 via eth0
Okt 14 08:12:57 intra dhcpd[7474]: DHCPREQUEST for 192.168.23.165 from 7c:d3:0a:25:9e:78 (T620B) via eth0
Okt 14 08:12:57 intra dhcpd[7474]: DHCPACK on 192.168.23.165 to 7c:d3:0a:25:9e:78 (T620B) via eth0
Okt 14 08:12:57 intra dhcpd[7474]: **Unable to add forward map from T620B.[FONT=monospace]**mydom**.lan to 192.168.23.165: tsig indicates error**
[/FONT]
Here is what I got:
clients:
- mostly laptops running OS Leap 15.4
- some M$ W10/11 laptops
- a few workshop cnc controllers running Debian with LinuxCNC
- all nics / wlans configured for dhcp ipv4, all with latest updates as per 10-14-22
server:
- OS Leap 15.4, latest updates as per 10-14-22
- intel MoBo with i5 i5-4570S, 32 GB Ram
- dhcp and dns server installed somwhere in 2017
- upgraded from 15.1->15.2->15.3->15.4 all with no issues especially regarding ddns
cat /etc/dhcpd.conf
option domain-name "mydom.lan";
option domain-name-servers 192.168.23.4;
option routers 192.168.23.2;
default-lease-time 172800;
authoritative ;
#include "/etc/named.d/updatedns";
#include "/etc/named.d/updatedns";
include "/etc/named.keys";
ddns-update-style interim;
ignore client-updates;
ddns-updates on;
subnet 192.168.23.0 netmask 255.255.255.0 {
option routers 192.168.23.2;
option netbios-name-servers 192.168.23.4;
option domain-name-servers 192.168.23.4;
option broadcast-address 192.168.23.255;
option subnet-mask 255.255.255.0;
interface eth0;
range 192.168.23.100 192.168.23.200;
default-lease-time 600;
max-lease-time 900;
# zone k23.lan. { primary intra.k23.lan.; key "DHCP_UPDATER"; }
zone k23.lan. { primary intra.k23.lan.; key DHCP_UPDATER; }
# zone 23.168.192.in-addr.arpa. { primary intra.k23.lan.; key "DHCP_UPDATER"; }
zone 23.168.192.in-addr.arpa. { primary 127.0.0.1; key DHCP_UPDATER; }
host gateway {
fixed-address 192.168.23.1;
hardware ethernet b8:27:eb:d2:44:b7;
}
host intra {
fixed-address 192.168.23.4;
hardware ethernet 88:07:4B:E6:BC:A3;
}
host mpc5503 {
fixed-address 192.168.23.156;
hardware ethernet 00:26:73:79:94:D6;
}
host gw {
fixed-address 192.168.23.2;
hardware ethernet 00:e0:4c:68:03:ca;
}
}
cat /etc/sysconfig/dhcpd | grep INCLUDE_FILES=
DHCPD_CONF_**INCLUDE_FILES=**"/etc/dhcpd.d /etc/named.d/updatedns /etc/named.keys"
DHCPD6_CONF_**INCLUDE_FILES=**"/etc/dhcpd6.d"
cat /etc/named.conf
options {
directory "/var/lib/named";
managed-keys-directory "/var/lib/named/dyn/";
dump-file "/var/log/named_dump.db";
statistics-file "/var/log/named.stats";
listen-on-v6 { any; };
notify no;
disable-empty-zone "1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA";
include "/etc/named.d/forwarders.conf";
listen-on { 127.0.0.1; 192.168.23.4; };
};
[FONT=monospace]# Include the meta include file generated by ***createNamedConfInclude***. This
# includes all files as configured in ***NAMED_CONF_INCLUDE_FILES*** from
# ***/etc/sysconfig/named***
#include "/etc/named.keys"
zone "." in {
type hint;
file "root.hint";
};
zone "localhost" in {
type master;
file "localhost.zone";
};
zone "0.0.127.in-addr.arpa" in {
type master;
file "127.0.0.zone";
};
zone "0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa" in {
type master;
file "127.0.0.zone";
};
zone "mydom.lan" in {
allow-transfer { none; };
file "dyn/k23.lan";
type master;
# allow-update { key "DHCP_UPDATER"; };
allow-update { key DHCP_UPDATER; };
};
zone "23.168.192.in-addr.arpa" in {
file "dyn/23.168.192.in-addr.arpa";
type master;
# allow-update { key "DHCP_UPDATER"; };
allow-update { key DHCP_UPDATER; };
allow-transfer { none; };
};
logging {
category xfer-in { log_file; };
channel log_file { file "/var/log/zoneupdates" size 10M; };
category default { log_file; };
};
acl goodclients { 192.168.0.0/24; localhost; localnets; }; [/FONT]
cat /etc/sysconfig/named | grep NAMED_CONF_INCLUDE_FILES=
**NAMED_CONF_INCLUDE_FILES=**"/etc/named.d/updatedns /etc/named.keys"
The lines commented out are the only manual changes I did, as I usually use Yast to manga my stuff. Note the line ># zone k23.lan. { primary intra.k23.lan.; key “DHCP_UPDATER”; }< , where I deleted the quotes in an attempt to bring the functionality back up - in vain. The key DHCP_UPDATER was created yesterday, following this guide. The mentionned script >genDDNSkey< was used, which is what I guess also the case if using through “YAST DNS| TSig keys | generate new TSIG key” (not sure, if I am right, though).
I ask myself,
- named.conf: if >managed-keys-directory “/var/lib/named/dyn/”;< has something to do with my problem?
- do I have to copy “/etc/named.keys” somewhere?
In short, I need help to resolve this.
Thanks a ton in advance
chris