Dynamic DNS Zones

When a zone is being updated dynamically with BIND nsupdate or DHCP, you cannot just edit the zone file without breaking the zone. If you attempt to update a zone that is being dynamically updated, the DNS server won't load the zone, and will not answer DNS queries for that zone. This could, obviously, be a bit of a problem...

Two solutions: either use a global key to manage the zone with nsupdate, or freeze updates while you edit the zone file manually.

Manage zone with nsupdate


This takes setting up a key on the server to allow updates, and learning how to use nsupdate. While we've tested this a few times, we don't actually use it.

Freeze the zone

BIND 9.2 and earlier can't freeze. You have to stop the server, edit the zone file, delete the journal, and restart the name server.

Bind 9.2 -



  • rndc stop
  • rm /var/named/*.jnl
  • edit zone files, don't forget to increment serial number
  • service named start


    • Bind 9.3 +



  • rndc freeze zonename.com
  • edit zone files, don't forget to increment serial number
  • rndc unfreeze zonename.com

    • Freelock Blog Posts

    more

    Customer Feedback

    Again, good job on the site. Unfortunately, most people won't be able to tell just how cool it really is. There is definitely a better look and feel on the outside, but where it really shines is under the hood. In today's world of crappy software vendors who provide crappy products and next to zero service at premium prices, it's refreshing to work with someone who is honest, thorough, reasonable and willing to do what it takes to meet the customer's needs. (you may quote me on that too:))

    Eric Leung
    Outdoor Research

    About Freelock

    We are located in the Fremont neighborhood of Seattle, WA. 3800 Woodland Park Ave. N. Seattle, WA 98103  USA [P] 206.577.0540 Contact Us | Site Map Get Updates ©1995-2011 Freelock Computing