Bonjour browser mac5/10/2023 Otherwise, add the following to your existing configuration file (typically /etc/nf): Writing the Zone File Next you'll need to create a zone file named db., for example, 'db.' and copy it into /var/named. If you're not already running a name server on your machine, start with a blank file and add the contents below. Configuring BIND To set up a Bonjour name server in Mac OS X, you'll need to edit the BIND configuration file (/etc/nf). For more information about the dnssec-keygen command, please see the manual page. Execute the command with the following arguments, substituting your own zone name: The following shows how to generate a shared secret for the '' domain.įor the domain '', our shared secret is 'CnMMp/xdDomQZ4TelKIHeQ'. After we copy and paste this key into our BIND configuration file, delete the files generated by the tool so that you don't accidentally leave them lying around for someone to find. You can use the dnssec-keygen command-line tool to generate a random shared secret. The way a client proves it's authorized is by using a DNS TSIG record to sign its update packets using the proper shared secret for that domain. You may also want to run this way if you're just experimenting with the technology to get a feel for how it works, but normally when running an operational Wide-Area Bonjour service you'll want to set up your name server to accept updates only from authorized clients. This may be acceptable in some situations, like behind a firewall when you trust all the people who have access to your server. Shared Secrets Without a shared secret, anyone who has access to your Bonjour name server can make registrations. For example, if your organization's domain is '', your service registration zone could be ''. This should be a subdomain of your organization's domain. Service Registration Zone for Wide-Area Bonjour First, you need to pick a name for your wide-area Bonjour zone, the domain in which clients will browse and register. The instructions below should be enough for someone experienced with DNS to set up a DNS server configured for Wide Area Bonjour, but if you've never set up a DNS server at all before and you find it a little confusing, DNS and BIND, Fourth Edition is a great guide that tells you everything you need to know about setting up and configuring named, the Berkeley Internet Name Daemon (BIND). Verify Your Dynamic Global Hostname is Working Retrieve your TSIG information from your TSIG account settings page, and populate the information in the User and Password fields as shown in the diagram, and then click OK. The User and Password fields are NOT the Dyn account username and password! Instead, they refer to a special type of authentication for dynamic DNS updates called Transaction Signature, or TSIG. Populate the Hostnamefield with your full hostname from your Dyn Standard DNS service.This is where we will populate the settings from Dyn, and enable your dynamic global hostname (just a fancy term for a hostname that supports dynamic DNS updates, and is visible to the global Internet). Locate the Hostname, User, and Passwordfields.In System Preferences, open the Sharing panel.Now that your Dyn Standard DNS zone is configured to receive dynamic updates from Mac OS X, we can configure Mac OS X to send updates to Dyn. Create a SRV record within the Dyn Standard DNS zone so that your Apple devices can discover where to send their updates.Your records will be displayed as shown at left, in a format closer to the layout of records in BIND. You should be returned to the configuration page for your Dyn Standard DNS service. Please click this to change your interface type from Standard to Expert (you can change this back at any time). On the Preferences page, you will see a button labeled Enable Expert Interface in the lower-right hand corner.Please click this to view your zone’s settings. In the upper-right corner of the zone page, you will see a button labeled Preferences.Under Zone Level Services, select the Dyn Standard DNS zone for which you wish to enable for updates.Enable the Expert Interface in Dyn Standard DNS.Your Dyn Standard DNS zone requires a couple of special records to enable these devices to find where and how to update Dyn with your information.
0 Comments
Leave a Reply. |