Restricting secure ddns to specific hosts

Discussion in 'DNS Server' started by Bjarne, Jun 27, 2009.

  1. Bjarne

    Bjarne Guest

    Excellent, thanks for clearing that up for me. I think i am starting to
    understand this now.
    It is all part of implementing a management tool and keeping old company
    procedures for a while. Please read further up in the thread for a deeper

    Bjarne, Jun 30, 2009
    1. Advertisements

  2. Bjarne

    Chris Dent Guest

    It can probably be simplified somewhat if you can afford to delete the
    current zone (which should also delete the zone and all associated nodes as
    seen in ADSIEdit).

    After that you could create a new zone, initially with dynamic update
    disabled. Remove authenticated users / create all child objects. Add in an
    access control entry for the system performing updates (if it's using the
    dynamic update mechanism) and finally enable dynamic updates on the zone.

    If none of the half-deleted records exist you shouldn't run into the
    permission issues I believe to be the source of earlier trouble. And it
    saves a lot of figuring out if accessing the zone through ADSIEdit rather
    than through DNS.

    Chris Dent, Jun 30, 2009
    1. Advertisements

  3. Bjarne

    Bjarne Guest

    Great idea, that should be simple.
    It is no big deal to dump the zone and recreate it.

    Thanks again,
    Bjarne, Jun 30, 2009
  4. Bjarne

    Bjarne Guest

    well after todays testing. it seems I got the ddns under control. I
    deleted/recreated the reverse zone used for testing, removed the relevant
    permissions and all seems good now.

    Now I can continue with the management station.

    Thanks for all your help. It is really appreciated.

    Bjarne, Jul 1, 2009
  5. Bjarne

    Chris Dent Guest

    Great news, glad it got there in the end :)

    Chris Dent, Jul 1, 2009
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.