search

joohoi / acme-dns

Limited DNS server with RESTful HTTP API to handle ACME DNS challenges easily and securely.
MIT License
2.19k stars 234 forks source link

BIND in front of acme-dns #316

Open SerialDestructor opened 2 years ago

SerialDestructor commented 2 years ago

Is it possible to set BIND up as a slave / forwarder for acme-dns? I tried it both using a slave and a forward configuration, but they didn't work: (either REFUSED (forward) or SERVFAIL (slave).

I have tried these configurations:

zone "acme.example.com" in {
   type slave;
   masters { 192.168.0.10; };
   file "/var/cache/bind/db.acme.example.com";
};
zone "acme.example.com" in {
   type forward;
   forward only;
   forwarders { 192.168.0.10; };
};

I want to use BIND for dynamic dns updates and I have only one IP available.

a-hahn commented 2 years ago

Only one ip available same situation here. I'm using coreDNS as a forwarder for acme-dns. Both in docker containers. It did not work when both containers were located on the same host due to udp issues with docker. In coreDNS you can enforce forwarding to tcp. This solved my problem

acme.example.com:53 {
    forward . 192.168.0.10:5353 {
        force_tcp
    }
    log
    errors
}