peach-dyndns-server/docs/setting-up-bind-specific-su...

This file contains notes which may be relevant for setting up bind, 
and are not directly necessary for running the code in this repository.


Add the following to /etc/bind/named.conf.local:
```
key "ddns-key.dyn.commoninternet.net" {
	algorithm hmac-sha256;
	secret "yoursecrethere";
};

zone "dyn.commoninternet.net" {
type master;
file "/var/lib/bind/dyn.commoninternet.net";
     update-policy {
	grant ddns-key.dyn.commoninternet.net subdomain dyn.commoninternet.net;
        };
};
```

For each subdomain, 
- generate a new ddns key (tsig-keygen -a hmac-md5 {{subdomain}}.dyn.commoninternet.net) and append it to /etc/bind/dyn.commoninternet.net.keys
- add a zone section to named.conf.local, associating the key with the subdomain  [B]
- add a zone file to /var/lib/bind/subdomain.dyn.commoninternet.net [C]
- reload bind and return the secret key to the client 

Add the following to /var/lib/bind/{{subdomain}}.dyn.commoninternet.net: [C]
```
$ORIGIN      .
$TTL 30      ; 30 seconds
{{subdomain}}.dyn.commoninternet.net              IN SOA  ns.commoninternet.net. root.commoninternet.net. (
                             2016062801 ; serial
                             3600       ; refresh (1 hour)
                             600        ; retry (10 minutes)
                             2600       ; expire (43 minutes 20 seconds)
                             30         ; minimum (30 seconds)
                             )
                     NS      ns.commoninternet.net.
```

Append the following to /etc/bind/named.conf.local: [B]
```
zone "{{subdomain}}.dyn.commoninternet.net" {
type master;
file "/var/lib/bind/{{subdomain}}.dyn.commoninternet.net";
     update-policy {
	grant {{subdomain}}.dyn.commoninternet.net self {{subdomain}}.dyn.commoninternet.net;
     };
};
```


Questions:
- an easy way to delete a subdomain?
Add documentation 2021-05-19 09:03:16 +00:00			`This file contains notes which may be relevant for setting up bind,`
			`and are not directly necessary for running the code in this repository.`
Slowly working on updating bind configs using rust 2021-05-16 11:18:55 +00:00

			`Add the following to /etc/bind/named.conf.local:`
			```
			`key "ddns-key.dyn.commoninternet.net" {`
			`algorithm hmac-sha256;`
			`secret "yoursecrethere";`
			`};`

			`zone "dyn.commoninternet.net" {`
			`type master;`
			`file "/var/lib/bind/dyn.commoninternet.net";`
			`update-policy {`
			`grant ddns-key.dyn.commoninternet.net subdomain dyn.commoninternet.net;`
			`};`
			`};`
			```

			`For each subdomain,`
			`- generate a new ddns key (tsig-keygen -a hmac-md5 {{subdomain}}.dyn.commoninternet.net) and append it to /etc/bind/dyn.commoninternet.net.keys`
			`- add a zone section to named.conf.local, associating the key with the subdomain [B]`
			`- add a zone file to /var/lib/bind/subdomain.dyn.commoninternet.net [C]`
			`- reload bind and return the secret key to the client`

			`Add the following to /var/lib/bind/{{subdomain}}.dyn.commoninternet.net: [C]`
			```
			`$ORIGIN .`
			`$TTL 30 ; 30 seconds`
			`{{subdomain}}.dyn.commoninternet.net IN SOA ns.commoninternet.net. root.commoninternet.net. (`
			`2016062801 ; serial`
			`3600 ; refresh (1 hour)`
			`600 ; retry (10 minutes)`
			`2600 ; expire (43 minutes 20 seconds)`
			`30 ; minimum (30 seconds)`
			`)`
			`NS ns.commoninternet.net.`
			```

			`Append the following to /etc/bind/named.conf.local: [B]`
			```
			`zone "{{subdomain}}.dyn.commoninternet.net" {`
			`type master;`
			`file "/var/lib/bind/{{subdomain}}.dyn.commoninternet.net";`
			`update-policy {`
			`grant {{subdomain}}.dyn.commoninternet.net self {{subdomain}}.dyn.commoninternet.net;`
			`};`
			`};`
			```


			`Questions:`
			`- an easy way to delete a subdomain?`