originally based on dynamic-cloud-dns
Updated and verified to work with Ubiquiti UDMP gateway
This is a Google Cloud function that will update the records hosted in Cloud DNS.
If neither an IPv4 nor an IPv6 address is provided, the source address of the request is used.
It is advisable to run the gcloud function under a service account with specific permissions. Create a custom role
with the following permissions
dns.changes.create
dns.changes.get
dns.managedZones.list
dns.resourceRecordSets.create
dns.resourceRecordSets.delete
dns.resourceRecordSets.list
dns.resourceRecordSets.update
Settings are loaded from environment variables
| Config | Description |
|---|---|
DNS_ZONE |
The Google Cloud DNS Zone name/id in which the records reside. |
USE_TOKEN |
Indicates whether to use the token on the query parameter. If not set will use password from the Authorization headers |
SECRET_TOKEN |
A secret token, used to authenticate users. |
ALLOWED_HOSTS |
A list of hosts that callers are allowed to update. May include "*" to allow all hosts. |
TTL |
Time to live for records in seconds. |
Under the dynamic dns section of the UDMP controller settings
Add an entry with the following settings
| Settings | Value |
|---|---|
Service |
dyndns |
Hostname |
The hostname you want to update |
Username |
Any value to satisfy the req |
Password |
The password that matches what is set in the function SECRET_TOKEN env variable |
Server |
{cloud-function-address}/updateHost?host=%h&ipv4=%i&extra= Replace {cloud-function-address} with the cloud function address. You can find that in the deploy output as part of the url setting. It usually follows the pattern <REGION>-<PROJECT ID>.cloudfunctions.net The "extra=" can be left blank because on some UniFi controllers the hostname gets appended |
- Create an initial A record exist for the host you want to update, or the function will fail
- Setup Google Cloud Functions
- Install the
gcloudCLI tool - Authenticate:
gcloud auth login - create a file
.env.yamlthat contains the environment variables listed in the Configuration section
DNS_ZONE: "zone id"
SECRET_TOKEN: "some secret
ALLOWED_HOSTS: "*"
TTL: "10"To create the initial version of the function run the command (substituting the service account value)
gcloud functions deploy updateHost --source . --runtime nodejs12 \
--trigger-http --allow-unauthenticated --max-instances=1 \
--service-account=<service-account> \
--env-vars-file=.env.yaml You can run npm run deploy to update the existing function
You can test it with the UDMP by ssh in and running the command
/usr/sbin/inadyn -n -s -C -f /run/inadyn.conf -1 -l debug --foregroundThis will show the HTTP requests and responses.
See LICENSE for more details.
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent