Man Page: slapi-dnsnotify(8)
slapi-dnsnotify LOCAL slapi-dnsnotify
NAME
slapi-dnsnotify - is a plugin for an LDAP based DNS server which notifies
slave name servers when a zone is changed.
DESCRIPTION
slapi-dnsnotify is a plugin for OpenLDAP or other LDAP servers. It
watches for changes in the serial number of a DNS zone stored in the LDAP
server, and notifies DNS slave servers to refresh their copy of the zone.
It can also increment the serial number of a zone whenever changes in
that zone are made.
DETAILS
This is a SLAPI 'postoperation' plugin. The entry point is 'plugin_init'.
See below for an example of how to configure it.
An LDAP entry is assumed to be a zone if it has an sOARecord attribute.
The exact name of the attribute can be controlled with the soa-attribute
option. The information about the zone, such as name servers and zone
name are retrieved from the same LDAP entry, that is the one with the SOA
attribute on it.
Notification requests are handled by the notify-dns-slaves(5) tool. The
notifications are not sent immediately, and multiple notifications that
occur close together are combined into a single notification. See the
notify-delay option.
To increment the serial number of a zone automatically whenever something
in the zone changes, use the enable-auto-serial option. All LDAP entries
beneath the entry with the SOA attribute are assumed to be part of that
zone for purposes of incrementing the serial number.
OPTIONS
Options are specified one after another with spaces separating them. If
an option requires a value, then separate the name and value with a equal
sign. eg: name=value
base-dn The base DN in the LDAP tree where DNS zones are stored.
[ Required ]
disable-notify
Disable all notification of DNS slave servers.
[ Optional ]
enable-auto-serial
Automatically update the serial number in the DNS zones when
any LDAP entries underneath the zone entry are modified.
[ Optional ]
notify-delay
The number of seconds to delay before sending notifications
to DNS slave servers. This allows multiple notifications to
be coalesced into one.
[ Default: 5 ]
ns-attribute
The name of the LDAP attributeType that contains the DNS NS
record for a zone.
[ Default: nSRecord ]
soa-attribute
The name of the LDAP attributeType that contains the DNS SOA
record for a zone.
[ Default: sOARecord ]
zone-attribute
The name of the LDAP attributeType that contains the complete
name of a zone.
[ Default: associatedDomain ]
EXAMPLES
Here is an example of how to configure this plugin with OpenLDAP, using
an LDAP base DN of dc=example,dc=com and with automatic incrementing of
the zone serial number and a notification delay of 10 seconds.
The following would go into your slapd.conf(5) file:
plugin postoperation \
/usr/local/lib/slapi-dnsnotify.so plugin_init \
notify-delay=10 base-dn=ou=web,dc=ws,dc=local \
enable-auto-serial
The above may all be specified on one line. The backslashes at the end
make it more readable and maintainable.
SEE ALSO
slapd.conf(5) notify-dns-slaves(1)
AUTHOR
Stef Walter <stef@thewalter.net>
slapi-dnsnotify July 2, 2008 slapi-dnsnotify