DNS Provider

The DNS provider supports resources that perform DNS updates (RFC 2136) and data sources for reading DNS information. The provider can be configured with secret key based transaction authentication (RFC 2845) or GSS-TSIG (RFC 3645).

Use the navigation to the left to read about the available resources and data sources.

Example Usage

Using secret key based transaction authentication (RFC 2845):

# Configure the DNS Provider
provider "dns" {
  update {
    server        = "192.168.0.1"
    key_name      = "example.com."
    key_algorithm = "hmac-md5"
    key_secret    = "3VwZXJzZWNyZXQ="
  }
}

# Create a DNS A record set
resource "dns_a_record_set" "www" {
  # ...
}

Using GSS-TSIG (RFC 3645):

# Configure the DNS Provider
provider "dns" {
  update {
    server = "ns.example.com" # Using the hostname is important in order for an SPN to match
    gssapi {
      realm    = "EXAMPLE.COM"
      username = "user"
      keytab   = "/path/to/keytab"
    }
  }
}

# Create a DNS A record set
resource "dns_a_record_set" "www" {
  # ...
}

Schema

Optional

Nested Schema for update

Optional:

Nested Schema for update.gssapi

Optional: