Ddns setup issue

debiansid · April 15, 2023, 1:01am

in the newest rolling build, I set up ddns like before, but
sh dns dynamic status show me the result which makes no sense. in the meantime, I found it update my entry on dns.he.net.

vyos@xray:~$ sh dns dynamic status
Hostname     IPv4 address    IPv4 status    IPv6 address    IPv6 status    Last update
-----------  --------------  -------------  --------------  -------------  -------------------
host.name.tld                  noconnect                      noconnect      2023-04-15 08:56:15

debiansid · April 16, 2023, 2:09pm

Apr 16 22:05:08 vyos ddclient[1695]: WARNING:  '' is not a valid IPv4 or IPv6 address               
Apr 16 22:05:08 vyos ddclient[1695]: WARNING:  found neither IPv4 nor IPv6 address                  
Apr 16 22:05:09 vyos ddclient[1695]: WARNING:  updating host.name.tld: nochg: No update required; unnecessary attempts to change to the current address are considered abusive

Netboy3 · April 16, 2023, 6:50pm

I can verify this issue. This is not a setup issue but rather an opmode one. I’m getting similar results from (as of this writing) the latest current source tree. This seems to be a regression introduced by a very recent commit (see dns: T5144: Improve dns dynamic status output). This update was supposed to tabulate the output, but seems to have completely broken the display.
Here’s what I get in opmode. As you noted, the ddclient service is working fine.
=====================>8======================

$ sh dns dynamic status
Hostname        IPv4 address    IPv4 status    IPv6 address    IPv6 status    Last update
--------------  --------------  -------------  --------------  -------------  -------------------
123456                          noconnect                      noconnect      2023-04-16 14:27:43
hhn1.exmpl.net                  noconnect                      noconnect      2023-04-16 14:27:43
hhn2.exmpl.net                  noconnect                      noconnect      2023-04-16 14:27:43

=====================>8======================

@indrajitr, can you please review or do we need to open a phabricator ticket?

indrajitr · April 16, 2023, 8:13pm

This is abnormal. There are two possibilities I can think of:

ddclient either didn’t didn’t succeed in pushing a a valid IP to the upstream provider
the specific protocol for the provider is still populating ip field instead of ipv4 field for the IP address.

Can you please take a look at the content of /run/ddclient/ddclient.cache? At least one of ipv4= or ipv6= should be populated if everything went well earlier.

You can also force a refresh by doing restart dns dynamic.

Either way, the source of truth for show dns dynamic status is /run/ddclient/ddclient.cache. If that file does have a valid IP address (either v4 or v6), it is a bug with the recent change. Else something else is happening within dddclient which is leading to an unpopulated ddclient.cache entry.

indrajitr · April 16, 2023, 8:21pm

@debiansid, based on the log, looks like ddclient either couldn’t read the IP from ddclient.cache from a previous run or failed to detect the public IP from the current run.

As usual, can you please take a look at /run/ddclient/ddclient.cache. It should have an IP address somewhere in the entry for host.name.tld (likely as ipv4=). If you don’t see any IP address, can you please do a restart dns dynamic to force an update?

Netboy3 · April 16, 2023, 10:37pm

In my case, the cache contains the “old” syntax, I.E. ip= and status= which explains why your commit broke opmode functionality as you’re now looking for ipv4/6 and status-ipv4/6. Deleting ddclient.cache and restarting with restart dns dynamic generates the same cache file with the old syntax.

Netboy3 · April 16, 2023, 11:09pm

Looking specifically at my setup, I have one update that uses googledomains and two that use dyndns2. Looking at the ddclient master source tree, googledomains completely lacks support for the new syntax and dyndns2 support was only recently added and is only present in master now. Isn’t such a breaking commit a little premature?

debiansid · April 16, 2023, 11:27pm

sudo cat /run/ddclient/ddclient.cache

## ddclient-3.10.0
## last updated at Mon Apr 17 07:21:33 2023 (1681687293)
atime=1681687293,backupmx=0,custom=0,host=host.name.tld,ip=1.2.3.4,mtime=1681687293,mx=,script=/nic/update,static=0,status=good,status-ipv4=noconnect,status-ipv6=noconnect,warned-min-error-interval=0,warned-min-interval=0,wildcard=0,wtime=0 host.name.tld

it get my public ip and pushed to ddns service provider, but seems like dns dynamic status can’t read the correct information.

indrajitr · April 16, 2023, 11:56pm

Yep, ddclient is still populating the old field for some of the providers.

We now have two incompatible formats to process and will have to cover for both the cases it seems.

Fix coming up.

debiansid · April 17, 2023, 1:24am

another concern, I didn’t setup dynamic aaaa record on dns.he.net, and I found updating a record and aaaa record needs different key. They are 2 services for vyos ddns client. So I hope your fix would cover that too. Thanks .

indrajitr · April 17, 2023, 11:06pm

github.com/vyos/vyos-1x

dns: T5144: Make dns dynamic status output legacy format compatible

vyos:current ← indrajitr:ddclient-opmode-2

opened 11:05PM - 17 Apr 23 UTC

indrajitr

+14 -2

Adjust the output of dynamic dns status to be compatible with both legacy and ne…w ddclient cache format. This is necessary because the legacy format is still used by some of the dyndns2 family of protocols. This is a follow-up to commit 3f3621b6874354. Ref: https://forum.vyos.io/t/ddns-setup-issue/10825 ## Change Summary ## Types of changes  - [x] Bug fix (non-breaking change which fixes an issue) - [ ] New feature (non-breaking change which adds functionality) - [ ] Code style update (formatting, renaming) - [ ] Refactoring (no functional changes) - [ ] Migration from an old Vyatta component to vyos-1x, please link to related PR inside obsoleted component - [ ] Other (please describe): ## Related Task(s) * https://vyos.dev/T5144 ## Component(s) name dns dynamic ## How to test  The output of: ``` show dns dynamic status ``` should have meaningful values like so: ``` Hostname IPv4 address IPv4 status IPv6 address IPv6 status Last update -------------------- -------------- ------------- -------------------- ------------- ------------------- henet.example.com 192.0.2.1 good noconnect 2023-04-17 17:56:27 cflare.example.com 192.0.2.1 good 2001:db8::1111 good 2023-04-17 17:56:27 gdomain.example.com 192.0.2.1 good noconnect 2023-04-17 17:56:27 ``` ## Checklist: - [x] I have read the [**CONTRIBUTING**](https://github.com/vyos/vyos-1x/blob/current/CONTRIBUTING.md) document - [x] I have linked this PR to one or more Phabricator Task(s) - [ ] I have run the components [**SMOKETESTS**](https://github.com/vyos/vyos-1x/tree/current/smoketest/scripts/cli) if applicable - [x] My commit headlines contain a valid Task id - [ ] My change requires a change to the documentation - [ ] I have updated the documentation accordingly

indrajitr · April 17, 2023, 11:19pm

@debiansid Just curious to understand how you are achieving this. Per he.net documentation, it seems the same key would be used for both A record and AAAA record.

If you have tagged both an A and AAAA record to be dynamic, you will see the icon twice, it is only necessary to generate one key as it is bound to the name of the record and not the name/type.

Would it be possible to share either the ddclient.conf or show service dns dynamic with the sensitive info redacted? Chances are your use case will already be addressed by the new PR. But just wanted to make sure.

Netboy3 · April 17, 2023, 11:39pm

Thank you for the speedy update. It works fine now. Can you kindly update Phabricator (or whatever it’s being called these days) so I can comment on the PR as verified?

debiansid · April 18, 2023, 2:47am

there is no option in vyos dynamic dns setup that I can set one service to update both A and AAAA record I suppose. I am not for sure, I will test it out later.

debiansid · April 19, 2023, 2:42pm

I setup A and AAAA record with same update key on dns.he.net, but the new dynamic_dns.py can only update AAAA record to dns.he.net noth both v4 and v6. it.show me noconnect for ipv4,even I have public ipv4 on pppoe0.

dynamic {
     interface pppoe0 {
         ipv6-enable
         service he {
             host-name host.name.tld
             login host.name.tld
             password updatekey
             protocol dyndns2
             server dyn.dns.he.net
         }
     }
 }

or I should add another service to update v4 seperately?

Viacheslav · April 19, 2023, 8:36pm

IPv6 was implemented there
https://vyos.dev/T3897
https://vyos.dev/T4743
At that time, it was possible to use either ipv4 or ipv6, but not both. So I wanted to name this option as v6-only"
When you enable IPv6, it is only using IPv6 explicitly.

Netboy3 · April 19, 2023, 10:36pm

Shouldn’t the template fail to ipv4 using usev4=ifv4 instead of the old syntax use=if that is planned for deprecation and removal?

Viacheslav · April 20, 2023, 6:02am

What deprecation are you talking about?
I still see the same syntax in their examples

github.com

ddclient/ddclient/blob/841ffcbdaa009687e5fb390c4527055e929f959a/ddclient.conf.in#L58


      
          #use=fw, fw=192.168.1.254/status.htm, fw-skip='IP Address' # found after IP Address
          #
          ## To obtain an IP address from Web status page (using the proxy if defined)
          ## by default, checkip.dyndns.org is used if you use the dyndns protocol.
          ## Using use=web is enough to get it working.
          ## WARNING: set deamon at least to 600 seconds if you use checkip or you could
          ## get banned from their service.
          #use=web, web=checkip.dyndns.org/, web-skip='IP Address' # found after IP Address
          #
          #use=ip,                     ip=127.0.0.1	# via static IP's
          #use=if,                     if=eth0		# via interfaces
          #use=web					# via web
          #
          #protocol=dyndns2				# default protocol
          #proxy=fasthttp.sympatico.ca:80			# default proxy
          #server=members.dyndns.org			# default server
          #server=members.dyndns.org:8245			# default server (bypassing proxies)
          
          
#login=your-login				# default login
          #password=test					# default password
          #mx=mx.for.your.host				# default MX

Netboy3 · April 20, 2023, 12:20pm

Multiple keywords were deprecated once the IPv6 framework was introduced in commit 24ba945 over two years ago.
The developers are following the IPv6 proposal document.
Updates to the example config are lagging, but ddclient is already emitting “deprecated” warnings for the use and if keywords (among a few others) for the past two years:

github.com

ddclient/ddclient/blob/841ffcbdaa009687e5fb390c4527055e929f959a/ddclient.in#L1020-L1035


      
          ["use",               "=s", "-use <which>          : deprecated, see 'usev4' and 'usev6'"],
          &ip_strategies_usage(),
          [ "usev4",       "=s", "-usev4 <which>             : how the should IPv4 address be obtained."],
          &ipv4_strategies_usage(),
          [ "usev6",       "=s", "-usev6 <which>             : how the should IPv6 address be obtained."],
          &ipv6_strategies_usage(),
          "",
          "  Options that apply to 'use=ip':",
          ["ip",                "=s", "-ip <address>         : deprecated, use 'ipv4' or 'ipv6'"],
          ["ipv4",              "=s", "-ipv4 <address>       : set the IPv4 address to <address>"],
          ["ipv6",              "=s", "-ipv6 <address>       : set the IPv6 address to <address>"],
          "",
          "  Options that apply to 'use=if':",
          ["if",                "=s", "-if <interface>       : deprecated, use 'ifv4' or 'ifv6'"],
          ["ifv4",              "=s", "-ifv4 <interface>     : obtain IPv4 address from <interface>"],
          ["ifv6",              "=s", "-ifv6 <interface>     : obtain IPv6 address from <interface>"],

Netboy3 · April 23, 2023, 3:29pm

@debiansid The fix for your OP issue was just merged into VyOS. If you build your own images, you’ll have it working correctly now. Not sure why the build-bot hasn’t built a nightly since the 13th.