On 08/06/2020 07:16, Software Info wrote: > H All > I am trying to set up kea to dynamically update a BIND-9.16 zone named > home.local. THe error I am getting is below. I would appreciate any > help resolving this error. > > DHCP_DDNS_FORWARD_ADD_REJECTED DNS Request ID > 00010123F7C5108AE5734DE11681A33E491CA0E0EDF5715D273DC032EE8400ADEDFD98: > Server, 127.0.0.1 port:53, rejected a DNS update request to add the > address mapping for FQDN, debian10.home.local., with an RCODE: 4
I'd suggest doing/looking at the following: 1. Remove the "server-ip" and "server-port" from the "dhcp-ddns" configuration in kea-dhcp4.conf. They tell Kea the address and port on which the kea-dhcp-ddns process is listening. By default this is 127.0.0.1 port 53001, and I don't see that you have overridden that in the kea-dhcp-ddns.conf configuration file. 2. In the "forward-ddns" section of the kea-dhcp-ddns.conf configuration file, "key-name" is set to blank, so no key is being used to communicate with the BIND server. However, in the BIND configuration, the "allow-update" clause means that BIND requires a key in order to update the "home.local" zone. 3. The name of the only defined key in the kea-dhcp-ddns configuration is "homelocal.key." (i.e. with a trailing period), but the name of the key in BIND is "homelocal.key" (without the trailing period). Assuming the defined key is the one that should be used to communicate with BIND, the names should match. Stephen _______________________________________________ ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information. To unsubscribe visit https://lists.isc.org/mailman/listinfo/kea-users. Kea-users mailing list [email protected] https://lists.isc.org/mailman/listinfo/kea-users
