From: "Michael Paoli" Michael.Paoli@cal.berkeley.edu To: BALUG-Talk balug-talk@lists.balug.org Subject: test DNS that returns SERVFAIL? ... ! :-) Date: Mon, 13 Apr 2020 03:14:35 -0700
Ah yes, I'm quite starting to get used to and like/prefer dynamic DNS update. Significantly more goof-resistant, and most of the time I don't even have to think about the zone serial number. Which reminds me, I do still want to add some version "control" (tracking) ... driven via cron, so I'll at least have periodic snapshots of changes (since no longer using ye olde manual method & manual version control). For more recent changes, and fine-grained history of changes, logs cover that quite well. But for the longer historical record ... wee bit 'o gap presently to fill on that.
And now added. Doesn't catch the "why", and doesn't catch change-by-change, but automatic daily check-in of any changes, "good enough" for my(/our?) purposes here, and have that now: $ cat /etc/cron.d/local-bind-master-auto-rcs 0 10 * * * root exec >>/dev/null 2>&1 && for zone in e.9.1.0.5.0.f.1.0.7.4.0.1.0.0.2.ip6.arpa berkeleylug.com sf-lug.com sflug.com sf-lug.net sflug.net balug.org berkeleylug.org sf-lug.org sflug.org; do rndc sync -clean "$zone" && rndc freeze "$zone" && { rcsdiff digtitalwitness.org || { rcsdiffrc="$?"; [ "$rcsdiffrc" -ne 1 ] || { ci -l -d -M -m'checking in change(s)' "$zone"; }; }; rndc thaw "$zone"; }; done; : $ hostname balug-sf-lug-v2.balug.org $ ls -l /etc/localtime lrwxrwxrwx 1 root root 27 Apr 19 09:56 /etc/localtime -> /usr/share/zoneinfo/Etc/UTC $