Re: [Pdns-users] Best way to setup pdns for ACME challenges and "virtual" entries

2020-03-01 Thread Chris via Pdns-users
Hi, On 2/3/20 3:28 am, Michael Rommel via Pdns-users wrote: > I read that I can use three different ways to accomplish that: > b) the HTTP API I wrote a quick Perl script which calls the HTTP API (I use the Opera DNS UI - https://github.com/operasoftware/dns-ui - so I use the API provided by t

Re: [Pdns-users] Internal DNS for .LAN Domain

2020-03-01 Thread Daniel Miller via Pdns-users
No disrespect intended - but based on your post I'm inferring you're very new to PowerDNS. There's a separation between the authoritative server and the recursor. These are totally separate processes. You *must* understand that before proceeding. Read the PowerDNS docs for these servers until

Re: [Pdns-users] Best way to setup pdns for ACME challenges and "virtual" entries

2020-03-01 Thread Kevin P. Fleming via Pdns-users
I have Certbot configured with the RFC2136 (DNSUPDATE) plugin configured on a dozen machines, all of which send DNSUPDATE queries to my pdns-auth server; works perfectly. I created a TSIG key, configured the zones to allow that key, and enabled dynamic updates in the pdns-auth configuration. If yo

Re: [Pdns-users] Best way to setup pdns for ACME challenges and "virtual" entries

2020-03-01 Thread Michael Rommel via Pdns-users
> On 1. Mar 2020, at 21:13, Brian Candler wrote: > > Depends on what your letsencrypt software uses. I use the bind backend with > DDNS updates, with dehydrated. There are some sample challenge hooks for > dehydrated here , and I see > all y

Re: [Pdns-users] Best way to setup pdns for ACME challenges and "virtual" entries

2020-03-01 Thread Brian Candler via Pdns-users
On 01/03/2020 19:28, Michael Rommel via Pdns-users wrote: 1. the easy one: put the challenge of ACME into the DNS at runtime. Now, I did this previously with isc-bind and used the dynamic dns update feature for the relevant zone. Since I have not yet hands-on-experience with pdsn, I am asking f

[Pdns-users] Best way to setup pdns for ACME challenges and "virtual" entries

2020-03-01 Thread Michael Rommel via Pdns-users
Dear all, I have an application that would benefit from a setup like Plex' Secure Server connections. In short words, they use wildcard DNS records where the name of the resource record conforms to a syntax conveying the IP address, the record shall resolve to, for instance 10-0-1-13.someuuidf