[dns-operations] differ
Matthew Richardson
matthew-l at itconsult.co.uk
Mon Nov 13 10:26:15 UTC 2023
Randy Bush <randy at psg.com> wrote:-
>it occurred to me that it migh tme wise to have a rancid like
>(https://shrubbery.net/rancid/) equivalent for critical domains.
>i.e. to git record changes and warn of radical diffs.
>
>is there any foss tooling in this space?
For the recording, I do something similar within our systems which is
really simple, and roughly:-
cd $repodir
foreach $zone {
dig +nocmd +nostats +onesoa @$master $zone axfr > $zone.zone
}
git add -A
git commit -m "cron script"
which runs as a daily job via cron. Obviously, this only does the
recording into a git repo, but does not do any alerting.
--
Best wishes,
Matthew
More information about the dns-operations
mailing list