Date: Fri, 2 Jun 2017 09:56:28 +0100 From: Matthew Seaman <matthew@FreeBSD.org> To: freebsd-net@freebsd.org Subject: Re: Ipv6 / DNS questions Message-ID: <7b0eda86-34d3-9bf7-df5f-45060a956942@freebsd.org> In-Reply-To: <759e086e-e6c3-3b3a-1578-834af5adce0d@denninger.net> References: <759e086e-e6c3-3b3a-1578-834af5adce0d@denninger.net>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --BsQ36w94oJ5Rk4M9h2fA0ahX020KUwVAV Content-Type: multipart/mixed; boundary="6JqjUNsLXjU8bKUtuiee5FOqbQ4E3acI0"; protected-headers="v1" From: Matthew Seaman <matthew@freebsd.org> To: freebsd-net@freebsd.org Message-ID: <7b0eda86-34d3-9bf7-df5f-45060a956942@freebsd.org> Subject: Re: Ipv6 / DNS questions References: <759e086e-e6c3-3b3a-1578-834af5adce0d@denninger.net> In-Reply-To: <759e086e-e6c3-3b3a-1578-834af5adce0d@denninger.net> --6JqjUNsLXjU8bKUtuiee5FOqbQ4E3acI0 Content-Type: text/plain; charset=utf-8 Content-Language: en-GB Content-Transfer-Encoding: quoted-printable On 06/02/17 02:49, Karl Denninger wrote: > Is there a dynamic DNS update method associated with Ipv6's address > assignment system? Since the assignment is "stateless" it obviously > (and does, in my experience!) move. I can deal with it via a couple of= > shell scripts, and there are only a couple of hosts where it matters, > but this would dramatically simplify the IPv4 gameplaying that's > necessary to have something behind a gateway router while on a "globall= y > visible", but possibly changing "at whim", IpV6 address. Assuming that you always get the same /64 assigned to your gateway, then the address SLAAC assigns to your server will be constant so long as you're on the same hardware, since the SLAAC address is generated from the network prefix and the MAC address of the NIC. In that case, it often suffices to update the DNS manually. If that doesn't work for you, then while there isn't a DNS update mechanism built into SLAAC, there is one in DHCP6. That relies on the dhcp server being able to make dynamic DNS updates via nsupdate(1). Of course, if you have all the keys etc. set up to be able to use nsupdate(1) you could fairly easily add a 'dns-update' rc script on your host to push the hosts' IPv6 address into the DNS. The other fairly common approach would be to use a network configuration system like ansible or puppet that can gather facts about a machine (such as the IPv6 address) write them into a DNS zone file. Cheers, Matthew --6JqjUNsLXjU8bKUtuiee5FOqbQ4E3acI0-- --BsQ36w94oJ5Rk4M9h2fA0ahX020KUwVAV Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEGfFU7L8RLlBUTj8wAFE/EOCp5OcFAlkxKDwACgkQAFE/EOCp 5OfzMxAAmpU60yn3tJbwPCZURvAcf9G1DSFv82kpmfcRL11giFmlVXoeo8CrjPFY 6Mj3gt7f6iLsgK/egJUotxQjDMySbmmoPXN8uREgQAoXKLOY0eqCSmyiKiWBJBa2 i3yBG0vkCkmpTRlwdvvqqhIlnyD0kP32DC2Gn2G+XN14RcKeJD9Fl9A26yP6KOm5 78zFI1t10MZS+kPNh2AieCY4zytu0wLThC59Hi1r2KUdVPNB10CsY79g0BtBL7fY 5HlDfiSbtO+OT6hWVzSukFRawjoILWIeHyT6WjS4JK2bZ/g2ju6AvI8KlmDg3dS1 ERgU/dHJqPsU8iv+DzI3kfpvqShGSEj1PY8ppP7eFPujFsx00J5KOt3TR15Rn6lc VQjhpc9W9bfmaNqbMPvt6Qj6io1QsvSyx/+NmfVcpgwlPFdpaaZXQsujktfi0hs5 bjsHGoie+h6AlCeLWG1dg8fdnQGiAbv9t2omEpeNp946/qCbe/LOeVe+hmKs82uc D3Y2xBPhJLP8+fhls9rArDlIy3RCIajlSDsLf/yjdh+4rvoIRGY1fwTxVmcbqmga ARwBXItHt7qEXqnfWHfm1CGA3J3RN9OYyE8WxsDrZtKtO406BhdRjAf3S0PDtZtZ FwDyFWYE4/SwSyc8zqT3DgAkBf7KPhSubcuPfQdRxMF5cLpuB9Q= =WZH8 -----END PGP SIGNATURE----- --BsQ36w94oJ5Rk4M9h2fA0ahX020KUwVAV--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?7b0eda86-34d3-9bf7-df5f-45060a956942>