DHCP Name Protection in Windows Server

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

DHCP Name Protection in Windows Server

thomas.zenz@oenb.at
Dear all,

What is the equivalent option to the feature " DHCP Name Protection" in Windows Servers?

Kind regards
Thomas

Diese E-Mail kann vertrauliche Informationen enthalten und irrtümlich an Sie gelangt sein. In diesem Fall informieren Sie bitte sofort die Absenderin bzw. den Absender und vernichten Sie diese E-Mail. Das unerlaubte Kopieren sowie die unbefugte Weitergabe dieser Mail oder von Teilen dieser Mail sind nicht gestattet.
_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users
Reply | Threaded
Open this post in threaded view
|

Re: DHCP Name Protection in Windows Server

glenn.satchell
It's done exactly the same way. A DNS record is created. In older versions
this was a TXT record with a hash over various values. In later versions I
believe it uses the DHCID record type.

It's all automatic, so you don't have to configure anything.

See man dhcpd.conf, look for the section "THE DNS UPDATE SCHEME" and it's
in the second paragraph.

regards,
-glenn

On Wed, July 19, 2017 3:39 pm, Zenz, Thomas wrote:

> Dear all,
>
> What is the equivalent option to the feature " DHCP Name Protection" in
> Windows Servers?
>
> Kind regards
> Thomas
>
> Diese E-Mail kann vertrauliche Informationen enthalten und irrtümlich an
> Sie gelangt sein. In diesem Fall informieren Sie bitte sofort die
> Absenderin bzw. den Absender und vernichten Sie diese E-Mail. Das
> unerlaubte Kopieren sowie die unbefugte Weitergabe dieser Mail oder von
> Teilen dieser Mail sind nicht gestattet.
> _______________________________________________
> dhcp-users mailing list
> [hidden email]
> https://lists.isc.org/mailman/listinfo/dhcp-users
>
>


_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users
Reply | Threaded
Open this post in threaded view
|

Re: DHCP Name Protection in Windows Server

thomas.zenz@oenb.at
If update-conflict-detection is on, Server protection is working. A Records with no DHCID/TXT is safe.
If update-conflict-detection is off, Servers can be overwritten! ignoring DHCID/TXT existence.

If your Server people start to setup their Servers with DHCP, the DHCID is still the ID of the Server and dhcpd will overwrite the A Record if any other client comes along with the ServerName!

I disabled DDNS for dynamic addresses from ServerLans.