0

I have a gateway running both isc-dhcp-server and bind9 on Debian. Hosts that are assigned IP addresses in the DHCP range are added to the DNS zone; however, devices that I assign a static lease on the DHCP server are not added to the zone. I looked over the documentation, but can't tell if I'm doing something wrong or if this is expected behavior.

dhcpd.conf

# dhcpd.conf

# option definitions common to all supported networks...
option domain-name "rockgdn.lan";
option domain-name-servers 10.100.0.1;

default-lease-time 600;
max-lease-time 600;

# The ddns-updates-style parameter controls whether or not the server will
# attempt to do a DNS update when a lease is confirmed. We default to the
# behavior of the version 2 packages ('none', since DHCP v2 didn't
# have support for DDNS.)
ddns-updates on;
ddns-update-style standard;

# If this DHCP server is the official DHCP server for the local
# network, the authoritative directive should be uncommented.
authoritative;

# ddns config
include "/etc/dhcp/rndc.key";

zone rockgdn.lan {
    primary 10.100.0.1;
    key rndc-key;
}

zone 100.10.in-addr-arpa. {
    primary 10.100.0.1;
    key rndc-key;
}

#log-facility local7;

subnet 10.100.0.0 netmask 255.255.0.0 {
  range 10.100.0.100 10.100.0.200;
  option routers 10.100.0.1;
  option domain-name-servers 10.100.0.1;
}

include "/etc/dhcp/dhcpd.static-leases";

named.conf

include "/etc/bind/named.conf.options";
include "/etc/bind/named.conf.local";
include "/etc/bind/named.conf.default-zones";

named.conf.local

include "/etc/bind/rndc.key";

zone "rockgdn.lan" {
    type master;
    file "/var/lib/bind/zones/db.rockgdn.lan";
    allow-update { key rndc-key; };
};

zone "100.10.in-addr-arpa" {
    type master;
    file "/var/lib/bind/zones/db.10.100";
    allow-update { key rndc-key; };
};

named.conf.options

acl "trusted" {
    127.0.0.1;
    10.100.0.0/16;
    };
    

options {
    directory "/var/cache/bind";

    forwarders {
        193.138.218.74;
    };

    recursion yes;
    allow-recursion { trusted; };

    listen-on { 10.100.0.1; };

    allow-transfer { none; };

    //========================================================================
    // If BIND logs error messages about the root key being expired,
    // you will need to update your keys.  See https://www.isc.org/bind-keys
    //========================================================================

    dnssec-validation auto;

};
phaedrusschmaedrus
  • 73
  • 6

0 Answers0