ddddnnss--ccoonnffggeenn generates a key for use by nnssuuppddaattee and nnaammeedd. It simplifies configuration of dynamic zones by generating a key and providing the nnssuuppddaattee and nnaammeedd..ccoonnff syntax that will be needed to use it, including an example uuppddaattee--ppoolliiccyy statement.
If a domain name is specified on the command line, it will be used in the name of the generated key and in the sample nnaammeedd..ccoonnff syntax. For example, ddddnnss--ccoonnffggeenn eexxaammppllee..ccoomm would generate a key called "ddns-key.example.com", and sample nnaammeedd..ccoonnff command that could be used in the zone definition for "example.com".
Note that nnaammeedd itself can configure a local DDNS key for use with nnssuuppddaattee --ll. ddddnnss--ccoonnffggeenn is only needed when a more elaborate configuration is required: for instance, if nnssuuppddaattee is to be used from a remote system.
-a _a_l_g_o_r_i_t_h_m Specifies the algorithm to use for the TSIG key. Available choices are: hmac-md5, hmac-sha1, hmac-sha224, hmac-sha256, hmac-sha384 and hmac-sha512. The default is hmac-sha256.
-h Prints a short summary of the options and arguments to ddddnnss--ccoonnffggeenn.
-k _k_e_y_n_a_m_e Specifies the key name of the DDNS authentication key. The default is ddddnnss--kkeeyy when neither the --ss nor --zz option is specified; otherwise, the default is ddddnnss--kkeeyy as a separate label followed by the argument of the option, e.g., ddddnnss--kkeeyy..eexxaammppllee..ccoomm.. The key name must have the format of a valid domain name, consisting of letters, digits, hyphens and periods.
-q Quiet mode: Print only the key, with no explanatory text or usage examples.
-r _r_a_n_d_o_m_f_i_l_e Specifies a source of random data for generating the authorization. If the operating system does not provide a _/_d_e_v_/_r_a_n_d_o_m or equivalent device, the default source of randomness is keyboard input. _r_a_n_d_o_m_d_e_v specifies the name of a character device or file containing random data to be used instead of the default. The special value _k_e_y_b_o_a_r_d indicates that keyboard input should be used.
-s _n_a_m_e Single host mode: The example nnaammeedd..ccoonnff text shows how to set an update policy for the specified _n_a_m_e using the "name" nametype. The default key name is ddns-key._n_a_m_e. Note that the "self" nametype cannot be used, since the name to be updated may differ from the key name. This option cannot be used with the --zz option.
-z _z_o_n_e zone mode: The example nnaammeedd..ccoonnff text shows how to set an update policy for the specified _z_o_n_e using the "zonesub" nametype, allowing updates to all subdomain names within that _z_o_n_e. This option cannot be used with the --ss option.
nnssuuppddaattee(1), nnaammeedd..ccoonnff(5), nnaammeedd(8), BIND 9 Administrator Reference Manual.
Internet Systems Consortium