Dynamic dns that supports RFC 3007

Apple's manual for Dynamic Host Configuration seems simple enough. Just find a dynamic DNS host that supports RFC 3007, log in, and you're ready.
My problem is, after talking with dozens of Dynamic DnS providers, none support the RFC 3007 spec.
Does anyone know or an RFC service provider that supports Apple Airport/Lion Dynamic.Host Configuration with firmware 7.x or higher and Airport Utility 6.x or higher?
-Chris

Have you come across a provider which supports RFC 3007 yet?

Similar Messages

Dynamic DNS (via DHCP) out of the box?

Greetings!
I was just wondering... Does OS X support Dynamic DNS updates out of the box?
I can't seem to find any confirmation if 10.5 uses bootpd (which I think it does), and if bootpd supports dynamic DNS updates with the named service built into Leopard Server. There don't seem to be any options in Server Admin to enable this... So I'm a little hazy as how to enable dynamic DNS without compiling my own version of ISC-DHCP.
Just for clarification here; what I'm looking for is the ability to update a DNS zone with a PTR/A record(s) of machines that send a hostname as a part of retrieving a IP address from a DDNS-enabled DHCP server. Ie, "mybox" requests IP from DHCP server, DHCP server updates "mydomain.tld" with a record for "mybox", so that "mybox.mydomain.tld" is resolvable afterwards by the machines on this subnet.
Cheers,
-SC

This is a strange topic because implementing Dynamic DNS on Mac OS X Server looks like it should be child's play... so why hasn't Apple done it? Could it simply be that Apple sees no need for it at this time? Mac OS X clients don't need it to sit happy with a Mac OS X Server. Neither do Windows clients using a Mac OS X Server PDC.
Apple has implemented Dynamic DNS client support into the Active Directory Plug-in in Leopard. In this environment, of course, the client's DNS server is most likely to be an Active Directory-integrated DNS server which happily support DDNS. Unfortunately this Dynamic DNS facility is not immediately available to those not using the Active Directory plug-in.

Domain hosting provider that supports Dynamic Global Hostname?

Is there any domain hosting provider that supports dynamic DNS of the variety that supports "dynamic global hostname" used by Mac OS X, accessed in the Sharing control panel, and used by AirPort Express and Time Machine? I am referring to the Dynamic DNS method specified by IETF RFC 2136.

Any VPS provider will give you full control over your BIND installation.

No-ip dynamic DNS for routers that won't accept no...

For those of you who have abandoned the hopeless BT hub and have gone for another router that doesn't offer no-ip as a dynamic DNS server (e.g. the Netgear DGN1000 router) there is a simple solution. Go to http://no-ip-duc.software.informer.com/4.0/ and download the app. Set it up as per the help instructions and use the File menu to make it a server and also to operate when you log on to yoour PC. Make sure you select your free no-ip address (i.e. make sure all 3 items on its screen have green ticks). It will take care of updating your WAN IP address at no-ip. For no-ip free users you can't change the update rate to automatically update other than every 5 minutes but, for free, that's pretty good!
For those of you who don't know, BT change your WAN IP address at arbitrary intervals - a free account with no-ip allows you to access a PC, webcam, whatever on your home network from the internet despite the changes to your WAN IP address.

I currently use cloudflare as the DNS servers for my domain as it's free and allows to update certain records with their API. I only use it for IPv4, but since they support AAAA records, I assume it will work for IPv6 just as well. It should be quite simple for you to update the script to get the ip of a given interface instead of fetching it from the net.
#!/bin/sh
# modified by jfro from http://www.cnysupport.com/index.php/linode-dynamic-dns-ddns-update-script
# Uses curl to be compatible with machines that don't have wget by default
# modified by Ross Hosman for use with cloudflare.
cfkey=<your api key>
cfuser=<your username>
cfhost=<hostname you want to update>
WAN_IP=`curl -s http://icanhazip.com/`
if [ -f $HOME/.wan_ip-cf.txt ]; then
OLD_WAN_IP=`cat $HOME/.wan_ip-cf.txt`
else
OLD_WAN_IP=""
fi
perl -i -pe 'chomp if eof' /var/log/cfclient.log
if [ "$WAN_IP" = "$OLD_WAN_IP" ]; then
echo -ne "." >> /var/log/cfclient.log
else
echo $WAN_IP > $HOME/.wan_ip-cf.txt
echo -ne "\nUpdating IP to $WAN_IP\n" >> /var/log/cfclient.log
curl -s https://www.cloudflare.com/api.html?a=DIUP\&hosts="$cfhost"\&u="$cfuser"\&tkn="$cfkey"\&ip="$WAN_IP" >> /var/log/cfclient.log
fi
echo -ne "\n" >> /var/log/cfclient.log

Compatible Dynamic DNS Services

Does anyone know about ANY FREE Dynamic DNS service compatible with the Dynamic Global Hostname settings in Airport Extreme (MC340LL/A A1354)?
My registar/hosting (DreamHost) doesn't allow dynamic dns updates, except through local shell or perl scripts, or APIs on the web server — as far as I know. Dyndns.com only allows it with Custom DNS Zones, which are not free. And I would rather not use those silly update clients.
Oh, and I'm not willing to pay $99/yr for a MobileMe account just to have my home.owndomain.com pointed to my dynamic IP. Ain't gonna happen!
Thanks in advance!

Hi, Tesserax. Thanks for the welcome!
I've been using DynDNS with a D-Link router, but it got replaced.
Their words:

Which means it CAN be done, but only with Custom DNS. First, I think $29.95 for just a pointer is a little expensive; second, I would have to move my DNS services from my hosting. Too much ado, so I'm looking for an alternative — without success so far. I just want something that uses DNS Update protocol and TSIG security.
Meanwhile, I set up an API from my hosting and a perl script running on the boot to check if DNS is pointing to the right IP. It just works, clean and simple. But it's not a built-in solution and I cannot take advantage of wide area Bonjour, for example.
So, if does anyone know about it — a free dynamic dns service that uses DNS Update protocol and TSIG security —, please let me know.
Thanks,
Gui

Powerdns pkgbuild - a dns deamon supporting many backends

I made this some time ago and almost forgot to post it :-)
It's a very nice dns daemon with support for many many backends like postgresql, mysql, sqlite, ldap, bind, pipes and even more (like random backend :-)). You can read all about it in powerdns docs on their website.
Currently I removed sqlite support from pkgbuild because of this http://bugs.archlinux.org/index.php?do=details&id=1134 When sqlite2 will come out of testing to other repos it will be possible to add gsqlite module (and probably its include path - check it in ./configure --help output what to add). The modules are configured to be loaded dynamically. If you change --with-dynmodules to --with-modules then they will be builtin.
Meanwhile arch glibc package was updated which unfortunatelly made me unable to recompile powerdns :-( (notice the lack of the depends line in the pkgbuild - I'll change it when I'm able to recompile it again). ATM If you want to compile it you will have to probably downgrade your glibc or check if someone finds a solution on powerdns-users mailing list (http://mailman.powerdns.com/pipermail/p … 01806.html) or use black magic... (tell me if you know the correct spell please).
powerdns PKGBUILD
pkgname=powerdns
pkgver=2.9.16
pkgrel=1
pkgdesc="DNS daemon supporting many backends including sql databases, ldap and bind"
url="http://www.powerdns.com"
makedepends=('libpqpp' 'mysql' 'openldap')
source=(http://downloads.powerdns.com/releases/pdns-${pkgver}.tar.gz)
md5sums=('7e9a859a5a21996dbf7b31cd61731dbc')
build() {
cd $startdir/src/pdns-$pkgver
./configure --prefix=/usr --enable-recursor
--sysconfdir=/etc
--with-pgsql-includes=/usr/include
--with-dynmodules="gpgsql gmysql ldap pipe pdns"
make || return 1
make DESTDIR=$startdir/pkg install
mv $startdir/pkg/etc/pdns.conf-dist $startdir/pkg/etc/pdns.conf
install -D -m755 $startdir/src/pdns-$pkgver/pdns/pdns
$startdir/pkg/etc/rc.d/pdns
install -D -m755 $startdir/src/pdns-$pkgver/pdns/precursor
$startdir/pkg/etc/rc.d/precursor
You will need libpqpp if you want to build postgresql backend module
libpqpp PKGBUILD
pkgname=libpqpp
pkgver=4.0
pkgrel=1
pkgdesc="Old C++ wrapper for the libpq Postgresql library"
url="http://gborg.postgresql.org/project/libpqpp/projdisplay.php"
depends=('gcc' 'postgresql')
install=install.libpqpp
source=(ftp://gborg.postgresql.org/pub/libpqpp/stable/libpq++-4.0.tar.gz)
md5sums=('da71cb79ef45cef55f4bc97a33a0857d')
build() {
cd $startdir/src/libpq++-4.0
sed -i "s/POSTGRES_HOME=/usr/local/pgsql/POSTGRES_HOME=/usr/g"
$startdir/src/libpq++-4.0/Makefile
make || return 1
install -D -m755 $startdir/src/libpq++-4.0/libpq++.so.4.0
$startdir/pkg/usr/lib/libpq++.so.4.0
install -D -m644 $startdir/src/libpq++-4.0/libpq++.h
$startdir/pkg/usr/include/libpq++.h
install -D -m644 $startdir/src/libpq++-4.0/pgconnection.h
$startdir/pkg/usr/include/libpq++/pgconnection.h
install -D -m644 $startdir/src/libpq++-4.0/pgdatabase.h
$startdir/pkg/usr/include/libpq++/pgdatabase.h
install -D -m644 $startdir/src/libpq++-4.0/pgtransdb.h
$startdir/pkg/usr/include/libpq++/pgtransdb.h
install -D -m644 $startdir/src/libpq++-4.0/pgcursordb.h
$startdir/pkg/usr/include/libpq++/pgcursordb.h
install -D -m644 $startdir/src/libpq++-4.0/pglobject.h
$startdir/pkg/usr/include/libpq++/pglobject.h
libpqpp.install
post_install() {
cd /usr/lib
ln -s /usr/lib/libpq++.so.4.0 libpq++.so
post_upgrade() {
cd /usr/lib
rm -f /usr/lib/libpq++.so
ln -s /usr/lib/libpq++.so.4.0 libpq++.so
pre_remove() {
/bin/true
post_remove() {
rm -f /usr/lib/libpq++.so
op=$1
shift
$op $*

Thanks. I was going to provide a new pkgbuild because now powerdns compiles fine with the latest gcc but unfortunatelly last friday my wireless internet connection from home was completly destroyed by a snow strom :-( (I really hate winter...). Since it's cold and snowing/raining all the time and provider's access point/antenna (which is most probably broken) is located in a place hard to reach I have no idea when I'll have internet (if at all...).
Once I get back fully online I'll try to check the new package.
BTW There is also another interesting project for dns database backends. It's called bind-dlz
http://bind-dlz.sourceforge.net/
DLZ (Dynamically Loadable Zones) is a patch for BIND version 9 that simplifies BIND administration and reduces memory usage and startup time. DLZ allows you to store your zone data in a database. Unlike using scripts, the changes in your database are immediately reflected in BIND's response to DNS queries, so there is no need to reload or restart BIND. You see, BIND "dynamically loads" the "zone" data it needs to answer a query from the database.
DLZ currently supports postgreSQL, MySQL, Berkeley DB, ODBC, LDAP and a "file system" database.
Because of DLZ's support for ODBC and flexible schema support, virtually any modern relational database could be used with DLZ.
The "file system" database allows the hierarchal nature of a standard file system to be used as a database for DNS data. This driver is extremely simple to set up--it is also quite performant when used with a high performance file system, like the memory file system or ReiserFS.
So far I didn't have time to try it though.

LAP dynamic DNS record

Hi,
I'm facing some issues to populate dynamically DNS record of APs. The IPs addressing of APs are configured via DHCP servers (MS). The DHCP server is not configured to register automatically record against DNS (MS on the same server); as said by system administrator. The problem is that some APs record are populated on the DNS and some not (even in the same subnet).
So the question is : Does LAP supports DDNS or the record needs to be done by the DHCP ?
Thanks a lot
Vincent

Does it simply check AP reachability or will that collect information via SNMP from AP directly.
If SNMP, this will simply duplicate monitoring (as you already doing it via PI) & could impact the AP performance.
I would simply give "read-only" view to Prime & briefing them what/how to look something on Prime.
Not sure how many AP you got, we have close to 2K & I do not want to administer anything like what you are going to do.
HTH
Rasika

RV320 Dynamic DNS failing

I have an RV320 I am testing in order to determine if it's suitable for use in the company I work for. We have several remote offices, and will be using IPSEC tunnels, VPN for IT troubleshooting and other features.
Dynamic DNS is returning
"Authorization failed(username or password)." error, although I think it's properly configured and works on
error, although I think it's properly configured and works on other firewall/router units. I have reentered the user, password and domain several times, each time it returns the same error.
Can anyone provide insight into the problem?
I also notice the options do not seem to include any way to use a Custom DNS, that is instead of xxx.dyndns.org it would be myhost.TLD. We have a bunch of xxx.dyndns.org, but do have a few myhost.tld. I hope this is something that could be fixed.
Thanks,
Jeff

Hi Jeff,
I think that the issue is that the PW is too long. I recall a case a while back where a customer had a passord over 20 characters and he had to shorten it. My recollection is not great, but I think that 18 was the limit. A feature request was made to lengthen the password field but no change was made due to hardware or maybe OS limitation. I think that the router was the RV042, which has similar code to the RV320. Sorry I can't be more specific. I would try changing the password at least temporarily to see if it works.
If you would like to make a feature request, please call support and open a case.
www.cisco.com/go/sbsc
- Marty

Programming error in HH2 software: Dynamic DNS

Advanced Settings >>Broadband >> Dynamic DNS
When you try to add multiple hosts the behaviour is very erratic.
I am testing some websites I am building and need to have 3 host names in the list of multiple hosts.
The first two went in OK ... after some funny behaviour.
They have been working fine for months: keeping DynDNS informed of changing IP addresses whenever I restart my HH2.
But the third one ...
I can add it to the list of supported hosts successfully ... for a mo ... by using the text field under "hosts supported".
It gets added to the list but then it disappears as soon as the "Apply" button is clicked.
At the same time the HH2 admin program won't forget an old hostname in the "Host" text field which I have not been using for weeks; have deleted from the list of multiple hosts and have deleted from my DynDNS account.
The routing via DynDNS works fine for all 3 current hostnames, but I just can't get the HH2 to accept the third one which means that when I next restart my HH2 I'll have to go to DynDNS website and update the IP address of the 3rd host myself manually.
I've tried every thing I can think of; also tried it in several browsers: Safari, Firefox, Opera and IE8; emptying browser cache. Finally concluded that there is a programming error in the hub software (Software version 8.1.H.J - Type A) on this page.
Shame ... in all other respects the HH2 is truly a brilliant piece of equipment.

I have tried that already, as well, and it did not work. However, the error message now tells me that the cabinet file "iTunes.cab" (rather than "QuickTime.cab" as it did before) required for this installation is corrupt and cannot be used. This could indicate a network error, and error from reading the CD-ROM, or a problem with the package.

[SOLVED] Local Hosting Using a Dynamic DNS

I've been trying to self host a domain to use owncloud with, through www.mydomainname/owncloud.com or something similar. I've gotten a LAMP set up with a virtual host, have signed up with https://freedns.afraid.org/, set the afraid nameservers, set my IP as an A record through my domain provider and have tried to install a dynamic DNS client on my server computer, though I have not gotten successful results. On my LAMP I've set a virtual host for my domain and I've been able to connect to it locally but not outside of my network. I was able to ping my domain that would in result ping my home IP address but now I get an unknown host. I've also tried to set up my DDWRT router with the provided dyndns. At this point I'm not sure what I'm doing incorrectly.
Another issue I've been having has been finding a working dyndns client, afraid-dyndns-uv from the AUR gives me a hash error, and the only promising client I've been able to find is freedns-afraid, but it's an RPM package and I don't know how to make use of the files in the tarball.
I can provide any needed configs, though I don't think that a config would be an error as I've been able to start up my httpd service and connect to it locally perfectly fine. I would greatly appreciate any help c:
Last edited by 0X1A (2013-06-16 20:19:10)

0X1A wrote:Alright, so the problem with not being able to ping my IP again was with my registrar nameservers, I had to remove the provided nameservers from them and only use the afraid ones. Now I can ping my IP address but I still can't connect to my domain through my LAMP so now I'm guessing it's either a port forwarding issue or a issue with my apache configuration. What exactly should I have on my httpd conf? I have the ServerName set to my domain name, is there something I'm missing?
My "ServerName" isn't set to anything particularly special. It's "archsystem:80", which is what I call my computer locally. Here's the entire file for reference:
# This is the main Apache HTTP server configuration file. It contains the
# configuration directives that give the server its instructions.
# See <URL:http://httpd.apache.org/docs/2.2> for detailed information.
# In particular, see
# <URL:http://httpd.apache.org/docs/2.2/mod/directives.html>
# for a discussion of each configuration directive.
# Do NOT simply read the instructions in here without understanding
# what they do. They're here only as hints or reminders. If you are unsure
# consult the online docs. You have been warned.
# Configuration and logfile names: If the filenames you specify for many
# of the server's control files begin with "/" (or "drive:/" for Win32), the
# server will use that explicit path. If the filenames do *not* begin
# with "/", the value of ServerRoot is prepended -- so 'log/access_log'
# with ServerRoot set to '/www' will be interpreted by the
# server as '/www/log/access_log', where as '/log/access_log' will be
# interpreted as '/log/access_log'.
# ServerRoot: The top of the directory tree under which the server's
# configuration, error, and log files are kept.
# Do not add a slash at the end of the directory path. If you point
# ServerRoot at a non-local disk, be sure to point the LockFile directive
# at a local disk. If you wish to share the same ServerRoot for multiple
# httpd daemons, you will need to change at least LockFile and PidFile.
ServerRoot "/etc/httpd"
# Listen: Allows you to bind Apache to specific IP addresses and/or
# ports, instead of the default. See also the <VirtualHost>
# directive.
# Change this to Listen on specific IP addresses as shown below to
# prevent Apache from glomming onto all bound IP addresses.
#Listen 12.34.56.78:80
Listen 80
# Dynamic Shared Object (DSO) Support
# To be able to use the functionality of a module which was built as a DSO you
# have to place corresponding `LoadModule' lines at this location so the
# directives contained in it are actually available _before_ they are used.
# Statically compiled modules (those listed by `httpd -l') do not need
# to be loaded here.
# Example:
# LoadModule foo_module modules/mod_foo.so
LoadModule authn_file_module modules/mod_authn_file.so
LoadModule authn_dbm_module modules/mod_authn_dbm.so
LoadModule authn_anon_module modules/mod_authn_anon.so
LoadModule authn_dbd_module modules/mod_authn_dbd.so
LoadModule authn_default_module modules/mod_authn_default.so
LoadModule authz_host_module modules/mod_authz_host.so
LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
LoadModule authz_user_module modules/mod_authz_user.so
LoadModule authz_dbm_module modules/mod_authz_dbm.so
LoadModule authz_owner_module modules/mod_authz_owner.so
LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
LoadModule authz_default_module modules/mod_authz_default.so
LoadModule auth_basic_module modules/mod_auth_basic.so
LoadModule auth_digest_module modules/mod_auth_digest.so
LoadModule file_cache_module modules/mod_file_cache.so
LoadModule cache_module modules/mod_cache.so
LoadModule disk_cache_module modules/mod_disk_cache.so
LoadModule mem_cache_module modules/mod_mem_cache.so
LoadModule dbd_module modules/mod_dbd.so
LoadModule dumpio_module modules/mod_dumpio.so
LoadModule reqtimeout_module modules/mod_reqtimeout.so
LoadModule ext_filter_module modules/mod_ext_filter.so
LoadModule include_module modules/mod_include.so
LoadModule filter_module modules/mod_filter.so
LoadModule substitute_module modules/mod_substitute.so
LoadModule deflate_module modules/mod_deflate.so
LoadModule ldap_module modules/mod_ldap.so
LoadModule log_config_module modules/mod_log_config.so
LoadModule log_forensic_module modules/mod_log_forensic.so
LoadModule logio_module modules/mod_logio.so
LoadModule env_module modules/mod_env.so
LoadModule mime_magic_module modules/mod_mime_magic.so
LoadModule cern_meta_module modules/mod_cern_meta.so
LoadModule expires_module modules/mod_expires.so
LoadModule headers_module modules/mod_headers.so
LoadModule ident_module modules/mod_ident.so
LoadModule usertrack_module modules/mod_usertrack.so
LoadModule unique_id_module modules/mod_unique_id.so
LoadModule setenvif_module modules/mod_setenvif.so
LoadModule version_module modules/mod_version.so
LoadModule proxy_module modules/mod_proxy.so
LoadModule proxy_connect_module modules/mod_proxy_connect.so
LoadModule proxy_ftp_module modules/mod_proxy_ftp.so
LoadModule proxy_http_module modules/mod_proxy_http.so
LoadModule proxy_scgi_module modules/mod_proxy_scgi.so
LoadModule proxy_ajp_module modules/mod_proxy_ajp.so
LoadModule proxy_balancer_module modules/mod_proxy_balancer.so
LoadModule ssl_module modules/mod_ssl.so
LoadModule mime_module modules/mod_mime.so
LoadModule dav_module modules/mod_dav.so
LoadModule status_module modules/mod_status.so
LoadModule autoindex_module modules/mod_autoindex.so
LoadModule asis_module modules/mod_asis.so
LoadModule info_module modules/mod_info.so
LoadModule suexec_module modules/mod_suexec.so
LoadModule cgi_module modules/mod_cgi.so
LoadModule cgid_module modules/mod_cgid.so
LoadModule dav_fs_module modules/mod_dav_fs.so
LoadModule vhost_alias_module modules/mod_vhost_alias.so
LoadModule negotiation_module modules/mod_negotiation.so
LoadModule dir_module modules/mod_dir.so
LoadModule imagemap_module modules/mod_imagemap.so
LoadModule actions_module modules/mod_actions.so
LoadModule speling_module modules/mod_speling.so
LoadModule userdir_module modules/mod_userdir.so
LoadModule alias_module modules/mod_alias.so
LoadModule rewrite_module modules/mod_rewrite.so
LoadModule php5_module modules/libphp5.so
<IfModule !mpm_netware_module>
<IfModule !mpm_winnt_module>
# If you wish httpd to run as a different user or group, you must run
# httpd as root initially and it will switch.
# User/Group: The name (or #number) of the user/group to run httpd as.
# It is usually good practice to create a dedicated user and group for
# running httpd, as with most system services.
User http
Group http
</IfModule>
</IfModule>
# 'Main' server configuration
# The directives in this section set up the values used by the 'main'
# server, which responds to any requests that aren't handled by a
# <VirtualHost> definition. These values also provide defaults for
# any <VirtualHost> containers you may define later in the file.
# All of these directives may appear inside <VirtualHost> containers,
# in which case these default settings will be overridden for the
# virtual host being defined.
# ServerAdmin: Your address, where problems with the server should be
# e-mailed. This address appears on some server-generated pages, such
# as error documents. e.g. [email protected]
ServerAdmin [email protected]
# ServerName gives the name and port that the server uses to identify itself.
# This can often be determined automatically, but we recommend you specify
# it explicitly to prevent problems during startup.
# If your host doesn't have a registered DNS name, enter its IP address here.
ServerName archsystem:80
# DocumentRoot: The directory out of which you will serve your
# documents. By default, all requests are taken from this directory, but
# symbolic links and aliases may be used to point to other locations.
DocumentRoot "/home/http"
# Each directory to which Apache has access can be configured with respect
# to which services and features are allowed and/or disabled in that
# directory (and its subdirectories).
# First, we configure the "default" to be a very restrictive set of
# features.
<Directory />
Options FollowSymLinks
AllowOverride None
Order deny,allow
Deny from all
</Directory>
# Note that from this point forward you must specifically allow
# particular features to be enabled - so if something's not working as
# you might expect, make sure that you have specifically enabled it
# below.
# This should be changed to whatever you set DocumentRoot to.
<Directory "/home/http">
# Possible values for the Options directive are "None", "All",
# or any combination of:
# Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews
# Note that "MultiViews" must be named *explicitly* --- "Options All"
# doesn't give it to you.
# The Options directive is both complicated and important. Please see
# http://httpd.apache.org/docs/2.2/mod/core.html#options
# for more information.
Options Indexes FollowSymLinks
# AllowOverride controls what directives may be placed in .htaccess files.
# It can be "All", "None", or any combination of the keywords:
# Options FileInfo AuthConfig Limit
AllowOverride All
# Controls who can get stuff from this server.
Order allow,deny
Allow from all
</Directory>
# DirectoryIndex: sets the file that Apache will serve if a directory
# is requested.
<IfModule dir_module>
DirectoryIndex index.html index.php
</IfModule>
# The following lines prevent .htaccess and .htpasswd files from being
# viewed by Web clients.
<FilesMatch "^\.ht">
Order allow,deny
Deny from all
Satisfy All
</FilesMatch>
# ErrorLog: The location of the error log file.
# If you do not specify an ErrorLog directive within a <VirtualHost>
# container, error messages relating to that virtual host will be
# logged here. If you *do* define an error logfile for a <VirtualHost>
# container, that host's errors will be logged there and not here.
ErrorLog "/var/log/httpd/error_log"
# LogLevel: Control the number of messages logged to the error_log.
# Possible values include: debug, info, notice, warn, error, crit,
# alert, emerg.
LogLevel warn
<IfModule log_config_module>
# The following directives define some format nicknames for use with
# a CustomLog directive (see below).
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
LogFormat "%h %l %u %t \"%r\" %>s %b" common
<IfModule logio_module>
# You need to enable mod_logio.c to use %I and %O
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
</IfModule>
# The location and format of the access logfile (Common Logfile Format).
# If you do not define any access logfiles within a <VirtualHost>
# container, they will be logged here. Contrariwise, if you *do*
# define per-<VirtualHost> access logfiles, transactions will be
# logged therein and *not* in this file.
CustomLog "/var/log/httpd/access_log" common
# If you prefer a logfile with access, agent, and referer information
# (Combined Logfile Format) you can use the following directive.
#CustomLog "/var/log/httpd/access_log" combined
</IfModule>
<IfModule alias_module>
# Redirect: Allows you to tell clients about documents that used to
# exist in your server's namespace, but do not anymore. The client
# will make a new request for the document at its new location.
# Example:
# Redirect permanent /foo http://www.example.com/bar
# Alias: Maps web paths into filesystem paths and is used to
# access content that does not live under the DocumentRoot.
# Example:
# Alias /webpath /full/filesystem/path
# If you include a trailing / on /webpath then the server will
# require it to be present in the URL. You will also likely
# need to provide a <Directory> section to allow access to
# the filesystem path.
# ScriptAlias: This controls which directories contain server scripts.
# ScriptAliases are essentially the same as Aliases, except that
# documents in the target directory are treated as applications and
# run by the server when requested rather than as documents sent to the
# client. The same rules about trailing "/" apply to ScriptAlias
# directives as to Alias.
ScriptAlias /cgi-bin/ "/srv/http/cgi-bin/"
</IfModule>
<IfModule cgid_module>
# ScriptSock: On threaded servers, designate the path to the UNIX
# socket used to communicate with the CGI daemon of mod_cgid.
#Scriptsock /run/httpd/cgisock
</IfModule>
# "/srv/http/cgi-bin" should be changed to whatever your ScriptAliased
# CGI directory exists, if you have that configured.
<Directory "/srv/http/cgi-bin">
AllowOverride None
Options None
Order allow,deny
Allow from all
</Directory>
# DefaultType: the default MIME type the server will use for a document
# if it cannot otherwise determine one, such as from filename extensions.
# If your server contains mostly text or HTML documents, "text/plain" is
# a good value. If most of your content is binary, such as applications
# or images, you may want to use "application/octet-stream" instead to
# keep browsers from trying to display binary files as though they are
# text.
DefaultType text/plain
<IfModule mime_module>
# TypesConfig points to the file containing the list of mappings from
# filename extension to MIME-type.
TypesConfig conf/mime.types
# AddType allows you to add to or override the MIME configuration
# file specified in TypesConfig for specific file types.
#AddType application/x-gzip .tgz
# AddEncoding allows you to have certain browsers uncompress
# information on the fly. Note: Not all browsers support this.
#AddEncoding x-compress .Z
#AddEncoding x-gzip .gz .tgz
# If the AddEncoding directives above are commented-out, then you
# probably should define those extensions to indicate media types:
AddType application/x-compress .Z
AddType application/x-gzip .gz .tgz
# AddHandler allows you to map certain file extensions to "handlers":
# actions unrelated to filetype. These can be either built into the server
# or added with the Action directive (see below)
# To use CGI scripts outside of ScriptAliased directories:
# (You will also need to add "ExecCGI" to the "Options" directive.)
#AddHandler cgi-script .cgi
# For type maps (negotiated resources):
#AddHandler type-map var
# Use for PHP 5.x:
AddHandler php5-script php
# Filters allow you to process content before it is sent to the client.
# To parse .shtml files for server-side includes (SSI):
# (You will also need to add "Includes" to the "Options" directive.)
#AddType text/html .shtml
#AddOutputFilter INCLUDES .shtml
</IfModule>
# The mod_mime_magic module allows the server to use various hints from the
# contents of the file itself to determine its type. The MIMEMagicFile
# directive tells the module where the hint definitions are located.
#MIMEMagicFile conf/magic
# Customizable error responses come in three flavors:
# 1) plain text 2) local redirects 3) external redirects
# Some examples:
#ErrorDocument 500 "The server made a boo boo."
#ErrorDocument 404 /missing.html
#ErrorDocument 404 "/cgi-bin/missing_handler.pl"
#ErrorDocument 402 http://www.example.com/subscription_info.html
# MaxRanges: Maximum number of Ranges in a request before
# returning the entire resource, or one of the special
# values 'default', 'none' or 'unlimited'.
# Default setting is to accept 200 Ranges.
#MaxRanges unlimited
# EnableMMAP and EnableSendfile: On systems that support it,
# memory-mapping or the sendfile syscall is used to deliver
# files. This usually improves server performance, but must
# be turned off when serving from networked-mounted
# filesystems or if support for these functions is otherwise
# broken on your system.
#EnableMMAP off
#EnableSendfile off
# Supplemental configuration
# The configuration files in the conf/extra/ directory can be
# included to add extra features or to modify the default configuration of
# the server, or you may simply copy their contents here and change as
# necessary.
# Server-pool management (MPM specific)
#Include conf/extra/httpd-mpm.conf
# Multi-language error messages
Include conf/extra/httpd-multilang-errordoc.conf
# Fancy directory listings
Include conf/extra/httpd-autoindex.conf
# Language settings
Include conf/extra/httpd-languages.conf
# User home directories
Include conf/extra/httpd-userdir.conf
# Real-time info on requests and configuration
#Include conf/extra/httpd-info.conf
# Virtual hosts
#Include conf/extra/httpd-vhosts.conf
# Local access to the Apache HTTP Server Manual
#Include conf/extra/httpd-manual.conf
# Distributed authoring and versioning (WebDAV)
#Include conf/extra/httpd-dav.conf
# Various default settings
Include conf/extra/httpd-default.conf
# Secure (SSL/TLS) connections
#Include conf/extra/httpd-ssl.conf
# Note: The following must must be present to support
# starting without SSL on platforms with no /dev/random equivalent
# but a statically compiled-in mod_ssl.
<IfModule ssl_module>
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
</IfModule>
# PHP
Include conf/extra/php5_module.conf
# phpMyAdmin
Include conf/extra/httpd-phpmyadmin.conf
# General shared files
Include conf/extra/httpd-drcouzelis.conf
# Angela's files
Include conf/extra/httpd-angela.conf
I'm sorry, I'm having a really hard time understanding the terminology you're using (maybe because I'm just not educated enough). Even so, I'll look into what else might be the problem...

Cisco SRP 540 Series Router custom Dynamic DNS

Hello,
I'm wondering if there is a possibility to get my homepage provider's custom dynamic DNS service working on my Cisco SRP541W Router as I'd not like to be forced to sign up for either DynDNS or TZO which are available through the web frontend.

Hi there,
Sorry for the delay in replying to this. Must have missed it the first time around.
Anyway, I'm afraid the only DDNS providers supported natively by the SRP500 platform are DynDNS and TZO. Having said that, many if not most DDNS providers either have or support the use of a client running on a device behind the router, so that might be a workaround for you. There are a few open sourced generic clients out there that are pretty versatile as well.
Cheers,
Dave.

FIOS and Dynamic DNS

I'm thinking about switching from Verizon DSL to FIOS, but I have a few concerns.
Right now I am able to directly connect form my linux-based router to the DSL modem via PPPoE. If for some resaon the PPP link drops the router just re-establishes it, and it always knows my outside IP. It can also update my multiple dyanamic DNS addresses automatically when this happens. My DSL IP address seems to change only when I shut down my router - it lasts weeks at a time.
With FIOS it sounds like you are forced to use NAT with the supplied router. I can go ahead and disable wireless on it, and then just set up my own router to use a static IP and put it in the DMZ to get as close to a bypass as I can. However, if my outside IP changes my internal router isn't going to know about it, and won't be able to update my dynamic DNS/etc. It looks like the FIOS routers will update dynamic DNS addresses, but I'm not sure if they support namecheap, and I also don't know if they support updating more than one dynamic DNS service when my IP changes.
It also sounds like they cut the copper connection, so if it doesn't work out right it will be very hard to go back to DSL.
Does anybody know:
1. Will the supplied router update more than one dynamic DNS service automatically?
2. Will the supplied router update a namecheap hosted dynamic DNS record?
3. When updating a namecheap DNS record will it only touch the A record and not mess with all my other DNS settings?
4. Can I somehow configure the router to provide my external IP to a single internal computer via DHCP (ie router gets an address from verizon, and then the router offers that address to my own router)? Obviously this won't work with more than one computer on the router.
5. Can I alternatively connect to the verizon-provided router using PPPoE or a similar protocol to just get my external IP directly tunneled through the router?
6. Does a FIOS TV standard definition tuner box require a network connection?
7. What happens if the tuner it isn't connected to the network? I won't be using any kind of interactive services anyway since the tuners will just be connected to my DVR.
8. Does the network connection have to be on the same subnet as the verizon-provided router, or is it sufficient that it be able to reach that router or the internet via NAT (there would be a NAT layer between my internal network and the verizon-powered router)?
9. If this stuff doesn't end up working right, can I just pull the plug on FIOS and go back to Verizon DSL and POTS?
In case it isn't clear, here is how I envision the network looking:
Verizon - Verizon Router - NAT with My Router in the DMZ - My Router - NAT - My internal network
I guess if I get really desperate I could try to find a tunnel broker of some kind - not sure if anybody does that for IPv4 the way it is done for IPv6. That would allow me to get my external IP through the NAT and potentially give me a static one as well...
I REALLY don't want to pay an extra $50 for a static IP. I'd probably just stick with the DSL if it came to that even though it is actually more expensive than switching (for dynamic service) and it is a lot slower...
Solved!
Go to Solution.

Hmm - that idea might not actually work out all that well. It might or might not work at all, but one thing that it would probably do is make it impossible to access the router's web interface (since the router wouldn't have an IP address of its own on any of the ports). So, if it did work it would be a once-and-done configuration and then I'd need to reset it to do anything else with it. This would also make it impossible to attach set-top-boxes directly to the actiontec router, but then again they'd be only one NAT layer away from verizon if I attached them to my home network.
I suspect I might be better off with the DMZ approach and just living with a single dynamic dns entry. The main reason I use more than one of those is so that if my IP address changes I don't have to wait for the DNS TTL to run out to find out what the new IP is - I can just wait a few minutes to be safe and resolve one of my other dynamic addresses which won't be cached anywhere so it will get the fresh entry.
I guess my other option is to fire up nslookup and point it directly at the appropriate DNS server so that I"m not seeing a cached response.
I've heard mixed reports on how often the FIOS IPs change anyway. If they only change once in a blue moon I'm not terribly concerned about this stuff.
(Why can't everybody just switch to IPv6 and end all this NAT nonsense anyway...?)

Dynamic DNS for ipv4 AND ipv6?

tl;dr: do you know any dynamic dns service and updater daemon that supports both ipv4 and ipv6?
Hi,
ever since my provider supplied me with a proper dual stack account (real ipv4, real ipv6) for internet access I got some kind of little problem regarding the services I host at home. So this is mainly about email. I have a server sitting behind my router that has an open submission and IMAPS port. For ipv4 I've been using the NAT and dyndns features of my router (fritzbox) without any problem. For ipv6 there is no NAT (at least as far as my router is concerned). What I can do though is to open the firewall for incoming ports dynamically based on the interface identifier. So if someone wants to connect to an ipv6 address that would map to my server the router knows to not block the traffic. For this to work though I need update a dynamic DNS record with the public ipv6 address that my server gets to use (something out of the prefix my provider assignes me). This server is an arch linux box. I tried to use inadyn-mt with some systemd unit file I found through google but this does not seem to work right. When I'm in ipv4-only networks (on a mobile connection for example) I often can't resolve the right ip address of my server through dyndns. The thing is that my server doesn't know about a changed ipv4 address because this is handled by the router. It does only know about when his own ipv6 address changes/expires. Based on when this happens inadyn-mt might fire an update to dyndns and with that also pick up the new ipv4 address, but this is not guaranteed.
Any suggenstions, tool and/or service proposals? Is there a way dns-wise to add a CNAME alias just for A records and not for AAAA?

I currently use cloudflare as the DNS servers for my domain as it's free and allows to update certain records with their API. I only use it for IPv4, but since they support AAAA records, I assume it will work for IPv6 just as well. It should be quite simple for you to update the script to get the ip of a given interface instead of fetching it from the net.
#!/bin/sh
# modified by jfro from http://www.cnysupport.com/index.php/linode-dynamic-dns-ddns-update-script
# Uses curl to be compatible with machines that don't have wget by default
# modified by Ross Hosman for use with cloudflare.
cfkey=<your api key>
cfuser=<your username>
cfhost=<hostname you want to update>
WAN_IP=`curl -s http://icanhazip.com/`
if [ -f $HOME/.wan_ip-cf.txt ]; then
OLD_WAN_IP=`cat $HOME/.wan_ip-cf.txt`
else
OLD_WAN_IP=""
fi
perl -i -pe 'chomp if eof' /var/log/cfclient.log
if [ "$WAN_IP" = "$OLD_WAN_IP" ]; then
echo -ne "." >> /var/log/cfclient.log
else
echo $WAN_IP > $HOME/.wan_ip-cf.txt
echo -ne "\nUpdating IP to $WAN_IP\n" >> /var/log/cfclient.log
curl -s https://www.cloudflare.com/api.html?a=DIUP\&hosts="$cfhost"\&u="$cfuser"\&tkn="$cfkey"\&ip="$WAN_IP" >> /var/log/cfclient.log
fi
echo -ne "\n" >> /var/log/cfclient.log

Dynamic DNS issues and/or confusion

I work for a small university. We have two domain controllers running on Windows 2008 (not R2). On dc2 we have a DHCP server running serving several VLANs across campus. We've been having issues where the dynamic DNS entries contain an
incorrect IP address for several machines. In some cases there are even several entries for a single machine. I've notice two main issues by looking at the DNS server. First, old entries aren't being cleaned up. Second, after re-imaging
a workstation the DNS entry for that machine is not being updated. After doing some research I came across the blog entry from Ace Fekay on how to go about setting up dynamic DNS. I immediately determined from reading that scavenging was not setup
properly on our server. I think I've corrected that problem, but I'll have to be patient and see what happens over time. This brings me to the issue of machines not adding themselves or updating their records in DNS.
After reading Ace's blog I decided to follow his recommendations for configuring dynamic DNS. I created a normal active directory user to use for configuring the DHCP credentials (it appears our server was set to use domain administrator previously).
I added the DHCP computer object (this is also one of our domain controllers) to the DnsUpdateProxy group. On the DHCP server I have checked "Enable DNS dynamic updates according to the settings below" along with the "Always A and PTR
records when lease is deleted". I also checked "Dynamically update DNS A and PTR records for DHCP clients that do not request updates...". After doing all of this I rebooted the dc2 server. I then manually deleted all of the
existing dynamic entries on the DNS server, so they could properly be recreated. Now, here is the problem after setting all of this up. I'm now seeing student's personal machines, phones, tablets, etc. being populated in our DNS. Before making
these changes only domain joined machines existed in DNS. Our DNS is configured to allow only secure updates. Why is it that now non domain trusted devices are being allowed to create DNS entries? I was under the assumption that secure updates
meant domain only. Am I not understanding something properly here? Can someone please provide me some insight to what's going on and what I might be able to do to prevent non-domain joined devices from having entries created in DNS?

Hi,
According to your description, my understanding is that non domain trusted devices have been registered their DNS entries in DNS which is configured to allow only secure updates.
If a DHCP server that is running on a domain controller is configured to perform dynamic updates on behalf of its clients, that DHCP server is able to take ownership of any record, even in the zones that are configured to allow only secure dynamic update.
This is because a DHCP server runs under the computer account, so if it is installed on a domain controller it has full control over DNS objects stored in the Active Directory.
DHCP server will perform dynamic updates on behalf of its clients when you enable the option "Dynamically update DNS A and PTR records for DHCP clients that do not request updates...", and this means that the “owner” of the DNS entries is
DHCP server, not the clients. And the zone accepts the DHCP server’s update because the server has full permission.
You may try to uncheck the option "Dynamically update DNS A and PTR records for DHCP clients that do not request updates...".
Best Regards,
Eve Wang
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected].
Hi Eve,
You are correct in your understanding that "non domain trusted devices have been registered their DNS entries in DNS which is configured to allow only secure updates." I also made a mistake in my original post. I meant to say that I also
had "Always dynamically update DNS A and PTR records".
Now back to your reply. Are you saying that if I had my DHCP server running on a non-domain controller that I would be seeing a different behavior in regards to permissions of DNS objects and that I wouldn't be experiencing the behavior of non domain
trusted devices being created in a secure zone? I thought setting the DNS dynamic credentials to a normal user account was supposed to help with security concerns in regards to DNS objects. What would happen if someone named their personal computer
the same name as one of our file servers or even a domain controller? Would the DHCP/DNS server actually have the power to overwrite that record in DNS?
I'll try your recommendation of unchecking the "Dynamically update DNS A and PTR records..." option and see what happens.
Thanks for your reply...

How to get Back To My Mac 'like' features with Dynamic DNS

Hi folks. I recently purchased a new NetGear ProSafe Gigabit VPN Firewall (FVS318G) that theoretically supports UPnP (but clearly it does not). I know it does not work because even other applications that make use of UPnP don't work and believe me I've tried EVERYTHING including punching holes for all the right ports through the FireWall... ZIPPO! BTW their (NetGear's) technical support is abysmal. They really don't care... AT ALL.
Even if I make all the correct ports available through the firewall B2MM just says NAT-PNP / UPnP is not available and that B2MM won't work. I suppose it does not even try to see if the ports are available and open despite UPnP not responding. Kinda dumb if that is how Apple has it programmed.
So I'm wondering if it's possible to get access to my home network close to the same way B2MM would give me via assignment of a dynamic DNS name through maybe and some programming of the ports and services on my FireWall.
Can anyone point me in the right direction for this. I think I have all the pieces I just need to know how to assemble them.

If you have gotten a free dyndns domain name and have installed the dyndns updater application, then you need to enable file sharing in your Mac and port forward port 548 through your router to your Mac. I'm not on Snowie at the moment, so don't know if the security stuff in Sys Prefs Firewall is the same -- if so make sure that "allow only essential applications" is NOT selected. Then from a computer outside your home network, in Finder under Go, and select Connect to Server afp://yourPersonal.dyndns.com
Your home computer should then mount as a remote drive on your "outside-the-home-network" computer. I am pretty sure that username and password are encrypted during negotiation of the afp connection, but I don't think subsequent data transfers are. It is possible to "tunnel" the afp connection through an encrypted secure shell tunnel for total security, but that can be a "step two"
once you have demonstrated afp through the router.

Dynamic dns that supports RFC 3007

Similar Messages

Maybe you are looking for