https://redmine.pfsense.org/https://redmine.pfsense.org/favicon.ico?16780521162016-07-17T13:11:23ZpfSense bugtrackerpfSense - Feature #6621: Permit DHCP Server Dynamic DNS server key algorithm type selection and usehttps://redmine.pfsense.org/issues/6621?journal_id=283502016-07-17T13:11:23ZThomas Ward
<ul></ul><p>Related bug report on the ambiguity of the algorithm currently needed for the DNS secret key: <a class="issue tracker-1 status-3 priority-10 priority-lowest closed" title="Bug: DHCP Server: Dynamic DNS required fields are ambiguous (Resolved)" href="https://redmine.pfsense.org/issues/6622">#6622</a> (<a class="external" href="https://redmine.pfsense.org/issues/6621">https://redmine.pfsense.org/issues/6621</a>)</p> pfSense - Feature #6621: Permit DHCP Server Dynamic DNS server key algorithm type selection and usehttps://redmine.pfsense.org/issues/6621?journal_id=352892017-12-03T15:48:30ZJoeri Capens
<ul><li><strong>File</strong> <a href="/attachments/2287">ddns_algortithm-choice.patch</a> <a class="icon-only icon-download" title="Download" href="/attachments/download/2287/ddns_algortithm-choice.patch">ddns_algortithm-choice.patch</a> added</li></ul><p>I also ran into this problem after following some bind9 guides which use the newer ddns-confgen command. This tool uses the HMAC-SHA256 algorithm by default.</p>
<p>To allow the use of the more secure SHA algorithms in pfSense you can use the attached patch which can be applied to pfSense 2.4.x</p>
<p>Since it adds a new "ddnsdomainkeyalgorithm" variable to the config file I'm not entirely sure if some code would need to be added to handle a pfSense version upgrade. I hope an experienced pfSense developer can review the patch?</p> pfSense - Feature #6621: Permit DHCP Server Dynamic DNS server key algorithm type selection and usehttps://redmine.pfsense.org/issues/6621?journal_id=353592017-12-11T14:30:25ZJim Pingle
<ul></ul><p>PR: <a class="external" href="https://github.com/pfsense/pfsense/pull/3887">https://github.com/pfsense/pfsense/pull/3887</a></p> pfSense - Feature #6621: Permit DHCP Server Dynamic DNS server key algorithm type selection and usehttps://redmine.pfsense.org/issues/6621?journal_id=354722017-12-27T08:50:07ZJoeri Capens
<ul><li><strong>Status</strong> changed from <i>New</i> to <i>Feedback</i></li><li><strong>% Done</strong> changed from <i>0</i> to <i>100</i></li></ul><p>Applied in changeset <a class="changeset" title="Add DHCP Dynamic DNS key algorithm choice. Implements #6621" href="https://redmine.pfsense.org/projects/pfsense/repository/2/revisions/534d7d6996854ed5f2521e7a796fb79aaacd176c">534d7d6996854ed5f2521e7a796fb79aaacd176c</a>.</p> pfSense - Feature #6621: Permit DHCP Server Dynamic DNS server key algorithm type selection and usehttps://redmine.pfsense.org/issues/6621?journal_id=354732017-12-27T08:52:55ZJim Pingle
<ul><li><strong>Category</strong> set to <i>DHCP (IPv4)</i></li><li><strong>Target version</strong> set to <i>2.4.3</i></li></ul> pfSense - Feature #6621: Permit DHCP Server Dynamic DNS server key algorithm type selection and usehttps://redmine.pfsense.org/issues/6621?journal_id=360612018-03-12T08:18:46ZJim Pingle
<ul><li><strong>Status</strong> changed from <i>Feedback</i> to <i>Resolved</i></li></ul>