[dns-operations] Cleaning up glue with dynamic DNS updates
Mark Andrews
marka at isc.org
Sat Mar 18 20:14:41 UTC 2017
In message <c73ffb32-7b5e-08df-e6a4-12b5477ed5c7 at ripe.net>, Anand Buddhdev writ
es:
> Hello DNS experts,
>
> If I am using dynamic DNS updates with a zone, how do I handle cleaning
> up glue records? For example, suppose I update a zone with the following
> (using nsupdate):
>
> zone example.com.
> update add a.ns.sub.example.com. A 192.0.2.1
> update add b.ns.sub.example.com. A 192.0.2.2
> update add sub.example.com. NS a.ns.sub.example.com.
> update add sub.example.com. NS b.ns.sub.example.com.
> send
>
> At some later time, if I want to change or delete the delegation to
> sub.example.com, how can I ensure that the associated glue records are
> also removed? I don't think nsupdate allows this.
Yes it does. UPDATE specifies the zone you are working on. This
allows you to add/remove data below bottom of zone (NS or DNAME).
You just remove the records.
> Oh, I have considered the setup where I have to remember what I added,
> in some persistent storage, so I can look it up later and remove it.
> However, if I don't have such a record in persistent storage, is there
> any way to reliably delete the glue as well?
Just delete the entire RRset then add in what you want it to be.
update del b.ns.sub.example.com. A
update add b.ns.sub.example.com. 3600 A 1.2.3.4
update add b.ns.sub.example.com. 3600 A 1.2.3.5
The nameserver will (should) covert that to a minimal delta for IXFR.
Mark
> Regards,
> Anand
> _______________________________________________
> dns-operations mailing list
> dns-operations at lists.dns-oarc.net
> https://lists.dns-oarc.net/mailman/listinfo/dns-operations
> dns-operations mailing list
> https://lists.dns-oarc.net/mailman/listinfo/dns-operations
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
More information about the dns-operations
mailing list