NAME

ddns-confgen - ddns key generation tool

SYNOPSIS

ddddnnss--ccoonnffggeenn [--aa _a_l_g_o_r_i_t_h_m] [--hh] [--kk _k_e_y_n_a_m_e] [--rr _r_a_n_d_o_m_f_i_l_e] [-s _n_a_m_e | -z _z_o_n_e] [--qq] [name]

DESCRIPTION

ddddnnss--ccoonnffggeenn generates a key for use by nnssuuppddaattee and nnaammeedd. It simplifies configuration of dynamic zones by generating a key and providing the nnssuuppddaattee and nnaammeedd..ccoonnff syntax that will be needed to use it, including an example uuppddaattee--ppoolliiccyy statement.

If a domain name is specified on the command line, it will be used in the name of the generated key and in the sample nnaammeedd..ccoonnff syntax. For example, ddddnnss--ccoonnffggeenn eexxaammppllee..ccoomm would generate a key called "ddns-key.example.com", and sample nnaammeedd..ccoonnff command that could be used in the zone definition for "example.com".

Note that nnaammeedd itself can configure a local DDNS key for use with nnssuuppddaattee --ll. ddddnnss--ccoonnffggeenn is only needed when a more elaborate configuration is required: for instance, if nnssuuppddaattee is to be used from a remote system.

OPTIONS

-a _a_l_g_o_r_i_t_h_m Specifies the algorithm to use for the TSIG key. Available choices are: hmac-md5, hmac-sha1, hmac-sha224, hmac-sha256, hmac-sha384 and hmac-sha512. The default is hmac-sha256.

-h Prints a short summary of the options and arguments to ddddnnss--ccoonnffggeenn.

-k _k_e_y_n_a_m_e Specifies the key name of the DDNS authentication key. The default is ddddnnss--kkeeyy when neither the --ss nor --zz option is specified; otherwise, the default is ddddnnss--kkeeyy as a separate label followed by the argument of the option, e.g., ddddnnss--kkeeyy..eexxaammppllee..ccoomm.. The key name must have the format of a valid domain name, consisting of letters, digits, hyphens and periods.

-q Quiet mode: Print only the key, with no explanatory text or usage examples.

-r _r_a_n_d_o_m_f_i_l_e Specifies a source of random data for generating the authorization. If the operating system does not provide a _/_d_e_v_/_r_a_n_d_o_m or equivalent device, the default source of randomness is keyboard input. _r_a_n_d_o_m_d_e_v specifies the name of a character device or file containing random data to be used instead of the default. The special value _k_e_y_b_o_a_r_d indicates that keyboard input should be used.

-s _n_a_m_e Single host mode: The example nnaammeedd..ccoonnff text shows how to set an update policy for the specified _n_a_m_e using the "name" nametype. The default key name is ddns-key._n_a_m_e. Note that the "self" nametype cannot be used, since the name to be updated may differ from the key name. This option cannot be used with the --zz option.

-z _z_o_n_e zone mode: The example nnaammeedd..ccoonnff text shows how to set an update policy for the specified _z_o_n_e using the "zonesub" nametype, allowing updates to all subdomain names within that _z_o_n_e. This option cannot be used with the --ss option.

SEE ALSO

nnssuuppddaattee(1), nnaammeedd..ccoonnff(5), nnaammeedd(8), BIND 9 Administrator Reference Manual.

AUTHOR

Internet Systems Consortium

Copyright © 2009 Internet Systems Consortium, Inc. ("ISC")