<para>There are two configuration parameters that can be used within the powerdns configuration file.</para>
<variablelist>
<varlistentry>
- <term>disable-rfc2136 [=yes]</term>
+ <term>experimental-rfc2136 [=no]</term>
<listitem>
<para>
- A setting to enable/disable RFC2136 support completely. The default is yes, which means that RFC2136 updates are ignored by PowerDNS (no message is logged about this!).
- Change the setting to <command>disable-rfc2136=no</command> to enable RFC2136 support.
+ A setting to enable/disable RFC2136 support completely. The default is no, which means that RFC2136 updates are ignored by PowerDNS (no message is logged about this!).
+ Change the setting to <command>experimental-rfc2136=yes</command> to enable RFC2136 support.
</para>
</listitem>
</varlistentry>
Enabled RFC2136 (dynamic update) support functionality in PowerDNS by adding the following to the
PowerDNS configuration file (pdns.conf).
<programlisting>
-disable-rfc2136=no
+experimental-rfc2136=yes
allow-2136-from=
</programlisting>
This tells PowerDNS to:
<orderedlist>
- <listitem><para>Enable RFC2136 support(<command>disable-rfc21356</command>)</para></listitem>
+ <listitem><para>Enable RFC2136 support(<command>experimental-rfc21356</command>)</para></listitem>
<listitem><para>Allow updates from NO ip-address (<command>allow-2136-from=</command>)</para></listitem>
</orderedlist>
</para>
If it is not valid, Refused is returned to the requestor.
</para></listitem>
<listitem><para>A check is performed on the zone to see if it is a valid zone. ServFail is returned when not valid.</para></listitem>
- <listitem><para>The <command>disable-rfc2136</command> setting is checked. Refused is returned when the setting is 'yes'.</para></listitem>
+ <listitem><para>The <command>experimental-rfc2136</command> setting is checked. Refused is returned when the setting is 'no'.</para></listitem>
<listitem><para>
If the <command>ALLOW-2136-FROM</command> has a value (from both domainmetadata and the configuration file), a check on the value is performed.
If the requestor (sender of the update message) does not match the values in <command>ALLOW-2136-FROM</command>, Refused is returned.
<para>
This method should remove all the records with <function>qname</function> of type <function>qt</function>. <function>qt</function>
might also be ANY, which means all the records with that <function>qname</function> need to be removed.
- After removal, the records in <function>rrset</function> must be added to the zone. <function>rrset</function> might be empty.
+ After removal, the records in <function>rrset</function> must be added to the zone. <function>rrset</function> can be empty in which case the method is used to remove a RRset.
</para>
</listitem>
</varlistentry>
$RUNWRAPPER $PDNS --daemon=no --local-port=$port --socket-dir=./ \
--no-shuffle --launch=bind --bind-config=./named.conf \
--send-root-referral \
- --allow-2136-from=127.0.0.0/8 --disable-rfc2136=no \
+ --allow-2136-from=127.0.0.0/8 --experimental-rfc2136=yes \
--cache-ttl=$cachettl --no-config &
skipreasons="nodnssec nodyndns"
bindwait
--no-shuffle --launch=bind --bind-config=./named.conf \
--bind-dnssec-db=./dnssec.sqlite3 \
--send-root-referral \
- --allow-2136-from=127.0.0.0/8 --disable-rfc2136=no \
+ --allow-2136-from=127.0.0.0/8 --experimental-rfc2136=yes \
--cache-ttl=$cachettl --no-config &
bindwait
;;
$RUNWRAPPER $PDNS --daemon=no --local-port=$port --socket-dir=./ \
--no-shuffle --launch=gmysql \
--master --send-root-referral \
- --allow-2136-from=127.0.0.0/8 --disable-rfc2136=no \
+ --allow-2136-from=127.0.0.0/8 --experimental-rfc2136=yes \
--cache-ttl=$cachettl --no-config \
--gmysql-dbname="$GMYSQLDB" \
--gmysql-user="$GMYSQLUSER" \
$RUNWRAPPER $PDNS --daemon=no --local-port=$port --socket-dir=./ \
--no-shuffle --launch=random,gmysql --gmysql-dnssec \
--send-root-referral \
- --allow-2136-from=127.0.0.0/8 --disable-rfc2136=no \
+ --allow-2136-from=127.0.0.0/8 --experimental-rfc2136=yes \
--cache-ttl=$cachettl --no-config \
--gmysql-dbname="$GMYSQLDB" \
--gmysql-user="$GMYSQLUSER" \
$RUNWRAPPER $PDNS --daemon=no --local-port=$port --socket-dir=./ \
--no-shuffle --launch=gpgsql --gpgsql-dnssec \
--send-root-referral \
- --allow-2136-from=127.0.0.0/8 --disable-rfc2136=no \
+ --allow-2136-from=127.0.0.0/8 --experimental-rfc2136=yes \
--cache-ttl=$cachettl --no-config \
--gpgsql-dbname="$GPGSQLDB" \
--gpgsql-user="$GPGSQLUSER" &
$RUNWRAPPER $PDNS --daemon=no --local-port=$port --socket-dir=./ \
--no-shuffle --launch=gpgsql \
--send-root-referral \
- --allow-2136-from=127.0.0.0/8 --disable-rfc2136=no \
+ --allow-2136-from=127.0.0.0/8 --experimental-rfc2136=yes \
--cache-ttl=$cachettl --no-config \
--gpgsql-dbname="$GPGSQLDB" \
--gpgsql-user="$GPGSQLUSER" &
$RUNWRAPPER $PDNS --daemon=no --local-port=$port --socket-dir=./ \
--no-shuffle --launch=gsqlite3 \
--send-root-referral \
- --allow-2136-from=127.0.0.0/8 --disable-rfc2136=no \
+ --allow-2136-from=127.0.0.0/8 --experimental-rfc2136=yes \
--cache-ttl=$cachettl --no-config \
--gsqlite3-database=pdns.sqlite3 &
skipreasons=nodnssec
$RUNWRAPPER $PDNS --daemon=no --local-port=$port --socket-dir=./ \
--no-shuffle --launch=gsqlite3 --gsqlite3-dnssec \
--send-root-referral \
- --allow-2136-from=127.0.0.0/8 --disable-rfc2136=no \
+ --allow-2136-from=127.0.0.0/8 --experimental-rfc2136=yes \
--cache-ttl=$cachettl --no-config \
--gsqlite3-database=pdns.sqlite3 &
if [ $context = gsqlite3-nsec3 ]
--no-shuffle --launch=tinydns \
--cache-ttl=$cachettl --no-config \
--send-root-referral \
- --allow-2136-from=127.0.0.0/8 --disable-rfc2136=no \
+ --allow-2136-from=127.0.0.0/8 --experimental-rfc2136=yes \
--tinydns-dbfile=../modules/tinydnsbackend/data.cdb &
skipreasons="nodnssec noent nodyndns"
;;
--no-shuffle --launch=remote \
--query-logging --loglevel=9 --cache-ttl=$cachettl --no-config \
--send-root-referral \
- --allow-2136-from=127.0.0.0/8 --disable-rfc2136=no \
+ --allow-2136-from=127.0.0.0/8 --experimental-rfc2136=yes \
--remote-connection-string="$connstr" $remote_add_param &
echo "Setting up test database..."
$RUNWRAPPER $PDNS2 --daemon=no --local-port=$port --socket-dir=./ \
--no-shuffle --launch=gmysql --gmysql-dnssec \
--send-root-referral \
- --allow-2136-from=127.0.0.0/8 --disable-rfc2136=no \
+ --allow-2136-from=127.0.0.0/8 --experimental-rfc2136=yes \
--cache-ttl=$cachettl --query-cache-ttl=$cachettl --no-config --slave --retrieval-threads=1 \
--gmysql-dbname="$GMYSQL2DB" \
--gmysql-user="$GMYSQL2USER" \
$RUNWRAPPER $PDNS2 --daemon=no --local-port=$port --socket-dir=./ \
--no-shuffle --launch=bind --bind-config=./named-slave.conf --slave \
--send-root-referral --retrieval-threads=1 --config-name=bind-slave \
- --allow-2136-from=127.0.0.0/8 --disable-rfc2136=no \
+ --allow-2136-from=127.0.0.0/8 --experimental-rfc2136=yes \
--cache-ttl=$cachettl --no-config --bind-dnssec-db=./dnssec-slave.sqlite3 &
echo 'waiting for zones to be loaded'
bindwait bind-slave
projects / pdns / commitdiff