10-12-2017 09:07 PM
Need your kind help. Since CAA record is yet to be supported in Infoblox, we need to run the "nsupdate" from a linux machine. It works if you have only one view.
But on my end, we have multiple views and we only want to add CAA in one of the view (not default view).
Is there any command in "nsupdate" that i can run? Hope you guys can share with me.. I am hitting a wall now.
10-12-2017 11:18 PM
I think you can add a DNS update key to the zone in your view and let nsupdate (-y) use that key to send the DDNS update for the CAA record in that view.
10-13-2017 12:49 AM
Can you share me the command needed to run? I am still new with linux.
Appreciate your help. Thanks mate.
10-13-2017 04:35 AM
Something like this:
$ nsupdate -d > server update.dyndns.com > zone $ZONE > key $KEY_NAME $KEY_HMAC > update add $HOST.$ZONE 60 A 10.0.0.1 > send > quit
10-15-2017 03:21 PM
This is good, but you have to add the Tsig to the match clients of the view.
An alternative is to run an nsupdate from the network which is served by the view. Again this method you have to ensure that the the updating IP allowed in the ACL. I would say the first one is better