User Tools

Site Tools



This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
doc:howto:ddns.client [2014/08/23 14:41]
charles_brown add info about noip account confirmation
doc:howto:ddns.client [2015/11/18 17:24] (current)
Line 1: Line 1:
 ====== DDNS Client ====== ====== DDNS Client ======
 If you want to set up a DDNS Server instead, please see [[doc:​howto:​ddns.server]]. If you want to set up a DDNS Server instead, please see [[doc:​howto:​ddns.server]].
-  * Tested with: 
-    * OpenWrt Attitude Adjustment 12.09 
-    * OpenWrt Barrier Breaker r37816 
 ===== Introduction ===== ===== Introduction =====
-DDNS stands for [[https://​​wiki/​Dynamic_DNS|Dynamic DNS]]. Simply put, using this service gives a name to your ip. So if you're hosting something on your line, people ​wouldn'​t ​have to bother typing your IP. They can just type in your domain name! It also helps when your ip changes. Users won't need to discover what your new ip is, they can simply type your domain name. +DDNS stands for [[wp>Dynamic_DNS|Dynamic DNS]]. Simply put, using this service gives a name to your IP. So if you're hosting something on your line, people ​would not have to bother typing your IP. They can just type in your domain name! It also helps when your IP changes. Users won't need to discover what your new IP is, they can simply type your domain name. 
-This guide will help you configure your ddns service, so that your router auto-updates your ip to your ddns. The simplest method possible would be through LuCI (the default webUI for openwrt).+This guide will help you configure your DDNS service, so that your router auto-updates your IP to your DDNS provider. The simplest method possible would be through LuCI (the default webUI for OpenWrt).
-===== Requirements =====+OpenWrt uses //​ddns-scripts//​ which are [[wp>​Bourne_shell|Bourne shell]] scripts.\\ 
 +There are other scripts and programs available in the web, also some DDNS providers offer their own programs.\\ 
 +All of them are currently not ported and tested on OpenWrt.
-First of all, you'll need to pick and register a DNS name with a compatible DDNS serviceNote the DNS name, your service username ​and password for use below.+:!: **Inside OpenWrt two package versions are available:​**\\ 
 +up to Barrier Breaker 14.07 it's //​ddns-scripts//​ version 1.x\\ 
 +since Chaos Calmer 15.05 it's //​ddns-scripts//​ version 2.x with IPv6 support ​and many other extensions\\ 
 +the corresponding LuCI application //​luci-app-ddns//​ is also available.
-Here is a list of suggested DDNS providers.+**Without any annotation the description works for all //​ddns-scripts//​ versions.**
-  * http://​ :!: free +===== Requirements =====
-  * http://​ :!: free but requires annoying account confirmation every 30 days +
-  * http://​ :!: free +
-  * http://​ :!: free - generated config on site +
-  * http://​ :!: free +
-  * https://​​ :!: free - if you have your own domain name, [[doc/​howto/​ddns.client/​hurricaneelectricfreedns]]. +
-  * http://​ ​ :!: free +
-  * http://​ :!: non-free (dns update by https required, curl needed. See [[http://​​doc/​howto/​ddns.client#​|SSL support]].) +
-  * http://​ :!: non-free except if you donated in 1998-2001. 30-day free trial needs credit card number. +
-  * http://​ :!: non-free +
-  * Any other service that can update when some URL is accessed. ​ The script is quite versatile. +
- +
-For a longer list of additional DDNS providers, see:+
 +First of all, you'll need to pick and register a DNS name with a compatible DynamicDNS service provider.\\
 +For a list of DDNS providers, see:
 +  * https://​​search?​q=dynamic+dns+provider+list
   * http://​​Computers/​Internet/​Protocols/​DNS/​DNS_Providers/​Dynamic_DNS/​   * http://​​Computers/​Internet/​Protocols/​DNS/​DNS_Providers/​Dynamic_DNS/​
   * http://​​dynamic-dns/​   * http://​​dynamic-dns/​
-===== Using LuCI =====+//​ddns-scripts//​ support the following services out of the box:\\ 
 +^  since 10.03\\ ver. 1.0.0-17 ​ ^  added in AA 12.09\\ ver. 1.0.0-21 ​ ^  added in BB 14.07\\ ver. 1.0.0-23 ​ ^  added in CC 15.05\\ ver. 2.4.3-1 ​ ^  added in DD (trunk)\\ ver. 2.5.0-1 ​ ^ 
 +| ​ | ​ | ​ |  BIND nsupdate <​sup>​3) 4) 6)</​sup> ​ | ​ | 
 +| ​ | ​ | ​ | <​sup>​2) 5) 6)</​sup> ​ | ​ | 
 +| ​ | ​ | ​ | <​sup>​5)</​sup> ​ | <​sup>​6)</​sup> ​ | 
 +| / ​ | ​ | <​sup>​6)</​sup> ​ | <​sup>​6)</​sup> ​ | | 
 +| ​ | ​ | | <​sup>​6)</​sup> ​ | | 
 +| ​ | | | / <​sup>​1)</​sup> ​ | | 
 +| <​sup>​6)</​sup> ​ | | | <​sup>​6)</​sup> ​ | | 
 +| <​sup>​6)</​sup> ​ | | | ​ | | 
 +| / <​sup>​1)</​sup> ​ | | | ​ | | 
 +| <​sup>​5)</​sup> ​ | | 
 +<​sup>​1)</​sup>​ **__Since CC 15.05__** require additional package //​ddns-scripts_no-ip_com//​ to be installed.\\ 
 +<​sup>​2)</​sup>​ needs additional package //​ddns-scripts_cloudflare//​ to be installed.\\ 
 +<​sup>​3)</​sup>​ directly updates a PowerDNS (or maybe bind server) via nsupdate.\\ 
 +<​sup>​4)</​sup>​ needs additional package //​ddns-scripts_nsupdate//​ and ''​bind-client''​ to be installed.\\ 
 +<​sup>​5)</​sup>​ SSL support required.\\ 
 +<​sup>​6)</​sup>​ **__Since CC 15.05__** support IPv6
-==== Step 1: Install the Packages ====+If you have picked a DDNS service provider and create your host/domain name you need to note additional your username and password.\\ 
 +Now you need to decide if you want to use secure communication with your DDNS provider or not.\\ 
 +Some provider require secure ([[wp>​HTTPS|HTTPS]]) communication. Read their help pages for details and also read provider specific informations below.
-Login into your router through your browser. Go to Administration (top right) > System (top left) > Software > Update Package Lists 
-Let it update, go back to Software. Find ''​luci-app-ddns''​ and install the package. 
-Installing ​the package ''​luci-app-ddns''​ will automatically install the package ''​ddns-scripts'',​ which contains the scripts ​that actually update the dynamic DNS name (see below).+===== Support ===== 
 +If you need support, found an issue or only want to request a new extension for the next release, please post your questions/​issues/​requests here: **(Don't forget to post informations about your used software versions.)** 
 +   * [[https://​​|OpenWrt Forum]] 
 +   * [[https://​​openwrt/​packages/​issues|Github-OpenWrt-Packages]] for //​ddns-scripts//​ 
 +   * [[https://​​openwrt/​luci/​issues|Github-OpenWrt-LuCI]] for //luci-app-ddns// 
 +A full list of supported settings (some not supported by LuCI webUI): 
 +   * UCI documentation -> [[doc:​uci:​ddns|Dynamic DNS Client configuration]] 
 +The source code is available at GitHub: 
 +|  BB 14.07  | [[https://​​openwrt/​packages/​tree/​for-14.07/​net/​ddns-scripts|ddns-scripts_1.0.0-23 ]]  | [[https://​​openwrt/​luci/​tree/​luci-0.12/​applications/​luci-ddns|luci-app-ddns_0.12+svn-r10530-1]] ​ | 
 +|  CC 15.05  | [[https://​​openwrt/​packages/​tree/​for-15.05/​net/​ddns-scripts|ddns-scripts_2.4.3-1]] ​ | [[https://​​openwrt/​luci/​tree/​for-15.05/​applications/​luci-app-ddns| luci-app-ddns_2.2.4-1]] ​ | 
 +|  trunk  | [[https://​​openwrt/​packages/​tree/​master/​net/​ddns-scripts|ddns-scripts]] ​ | [[https://​​openwrt/​luci/​tree/​master/​applications/​luci-app-ddns|luci-app-ddns]] ​ |
-After ''​luci-app-ddns'' ​is installed, just press any other link on the Openwrt LuCI WebUI, and the page will refresh itself and Dynamic DNS will appear under Services ​Dynamic DNS. If those tabs don't show up, run ''/​etc/init.d/uhttpd restart''​ or reboot the router.+===== Installation ===== 
 +==== using LuCI ==== 
 +Login into your router through your browser.\\ 
 +From the menu select ​'''​System'''​ -> '''​Software'''​\\ 
 +Press button [Update Lists] to update internal lists of available packages.\\ 
 +Filter for //ddns// and install //​luci-app-ddns//​ package.
-==== Step 2: Configuration ====+Installing the package //​luci-app-ddns//​ will automatically install the package //​ddns-scripts//​.\\ 
 +**__Since CC 15.05__** you might need to install provider specific packages //​ddns-scripts_xxxxx//​ and LuCI language packages //​luci-i18n-ddns-xx//​.
-In LuCI, go to Services > Dynamic DNS.+After luci-app-ddns (and other packages) are installed, just press any other menu entry on the Openwrt ​LuCI webUIand the page will refresh itself and it will appear in the menu under '''​Services'''​ -'''​%%Dynamic DNS%%'''​.
-There is a default configuration called "​MYDDNS"​ ready to edited.+==== via console ==== 
 +To install //​ddns-scripts//​ use the [[doc:​techref:​opkg|OPKG Package Manager]] \\ 
 +**__Since CC 15.05__** you might need to install provider specific packages 
 +opkg update 
 +opkg install ddns-scripts 
 +opkg install ddns-scripts_xxxxx 
-^ Variable ^ Description ^ Example ^ +==== SSL support ====
-| Enable | Self-explanatory | check this to enable this configuration | +
-| Event interface | The DDNS scripts use the Linux hotplug events system. When this specified network interface comes up, a related ifup hotplug event will cause DDNS script to start to monitor (and update) the external IP address of . Select the WAN interface that will have the external IP address to use in the DDNS registration. | wan | +
-| Service | Which DDNS online service do you use? Choose one | | +
-| Hostname | The DNS name to update (this name must already be registered with the the DDNS service) | | +
-| Username | Username of your DDNS service account | yourusername | +
-| Password | Password of your DDNS service account (ensure this password does not have "​$1"​ or $ with any number following in it, as this breaks the script) | yourpassword | +
-| Source of IP address | This tells the script how to determine your interface external IP address. See below for a description. | Usually "​network"​ | +
-| Network/​Interface/​URL | This will be named based on the section of "​Source of IP address"​. Select the network, interface physical name, or type in the URL to use to determine the external IP address. | Usually "​wan"​ | +
-| Check for changed IP every | Self Explanatory | 10 | +
-| Check-time unit | The unit for the value above | min | +
-| Force update every | Even if the detected external IP address has not changed, update the DDNS name anyway after this time interval | 72 | +
-| Force-time unit | Unit for the value above | h |+
-Click "Save & Apply" ​to save changes.+By default //​ddns-scripts//​ uses BusyBox buildin '''​wget'''​ for DDNS updates over http, which does not support https (SSL). \\  
 +To perform DDNS updates over https (SSL), you will need to install the '''​wget'''​ or '''​curl'''​ package, and add the appropriate root certificate for your ddns provider.
-=== Further details === +**__Including AA 12.09__** only '''​curl''​' package is supported to use for SSL communication.\\ 
-  ​ specific settings: +To install curl and needed certificate bundle follow these steps on console: 
-    ​put the authorisation token from the update url (the part after http://​​dynamic/​update.php?​) in the password field. +<​code|root@OpenWrt:/#>​ 
-    ​DO enter the host into the Hostname field. Although it is not used for the update, it //is// used to check the host's current IP address (via ''​nslookup''​)+opkg update 
-  * Source of IP address ("​ip_source"​ in the configuration file) +opkg install curl 
-    * The "​ip_source"​ option can be "​network",​ "​interface",​ "​script"​ or "​web",​ with "​network"​ as the default +mkdir -p -m0755 ​/etc/ssl/certs 
-    * If "​ip_source"​ is "​network"​ you specify a network section in your /etc/network config file (e.g. "​wan",​ which is the default) with the "​ip_network"​ option. ​ If you specify "​wan",​ you will update with whatever the ip for your wan is. +curl -o /​etc/​ssl/​certs/​ca-certificates.crt​ca/​cacert.pem 
-    * If "​ip_source"​ is "​interface"​ you specify a hardware interface (e.g. "​eth1"​) and whatever the current ip of this interface is will be associated with the domain when an update is performed. +</​code>​
-    * If "​ip_source"​ is "​script"​ you specify a script to obtain ip address. The "​ip_script"​ option should contain path to your script. This option is not available through the LuCI web interface. +
-    * The last possibility is that "​ip_source"​ is "​web",​ which means that in order to obtain our ip address we will connect to a website (specified in the URL field), and use the first valid ip address listed on that page. Use this option of the OpenWrt device is behind a NAT device and does not have a real external IP address assigned to the WAN interface being monitored. The correct URL will depend on the DDNS service being used. Check with the service'​s documentation to determine if they offer this feature and, if so, what the correct URL is. +
-      * For the DynDNS service, the URL is [[]] +
-      * Multiple URLs can be used by separating the entries with a space.+
-==== Step 3: Start ddns-scripts ​====+**__Since BB 14.07__** //ddns-scripts// support both '''​wget'''​ and '''​curl'''​ package.\\ 
 +Installation is simple by installing either '''​wget'''​ or '''​curl'''​ plus '''​ca-certificates'''​ packages.\\ 
 +If both packages are installed //​ddns-scripts//​ will use '''​wget'''​.
-  ​Normally, the DDNS scripts are automatically started through a hotplug eventThe very first time they are configured, there is no ifup event to start them. +**__Since CC 15.05__** If both packages installed you can configure which one to prefereDefault ​is '''​wget'''​.
-  * The simplest option ​is to reboot the routerThis will automatically start the scripts as part of the normal interface startup process. +
-  * If a reboot should be avoided, the scripts can be started manually by generating a hotplug event from the command line (see below for details)+
-==== Step 4: You're done! ====+You can install either via LuCI (from the menu select ​'System'​ → '​Software'​) and search for '''​wget'''​ or '''​curl'''​\\ 
 +of install via console using following commands: 
 +7opkg update 
 +opkg install wget     # normally you only need 
 +opkg install curl     # either wget or curl 
 +opkg install ca-certificates 
-  * If the wan interface changes its addressthe DDNS account is updated automatically. +:!: If youalso for other softwareneeds all certificates in one file or you want to update ​CA certificates reulary then do **NOT** install '''​ca-certificates''' ​package.\\ 
-  * Additionallyan unconditional ​update ​is sent periodically. The interval is specified by the force update option. +''​'ca-certificate'​''​ package ​is not always backported to older OpenWrt versions
- +Install latest CA certificates (in one file) using console: 
-==== Additional DDNS registration entries ==== +<code|root@OpenWrt:/#​
- +mkdir -p -m0755 /​etc/​ssl/​certs 
-In LuCI, go to Services > Dynamic DNS. +curl -o /​etc/​ssl/​certs/​ca-certificates.crt http://​​ca/​cacert.pem ​  # using curl 
- +wget -O /​etc/​ssl/​certs/​ca-certificates.crt http://​​ca/​cacert.pem ​  # using wget
-  ​Use the text entry box and "​Add"​ button to add additional DDNS configurations +
-    ​Do not use a character in the DDNS configuration name +
- +
-===== Using ddns-scripts directly ===== +
- +
-The ddns-scripts ​package ​can be installed and used on its own without luci-app-ddns. No web GUI will be available in this case. This section describes how to use the command line to use ddns-script directly+
- +
-==== Step 1: Installation ==== +
-Install the ''​ddns-scripts''​ package. +
- +
-<​code>​ +
-opkg update +
-opkg install ddns-scripts+
 </​code>​ </​code>​
 +==== other functions ====
-==== Step 2Configuration ==== +**__Since CC 15.05__** //​ddns-scripts//​ support other special communication functions to be used
-The configuration is stored in ''/​etc/config/ddns'' ​which contains more thorough documentation.+  * Run once (useful for usage with ''​crond''​) 
 +  * Set proxy with/without authenfication for http/https requests 
 +  * Set DNS server to use other than system default 
 +  * Binding to specific network if ''​wget''​ or to specific interface if ''​curl''​ installed. 
 +  * Force the usage of either IPv4 or IPv6 communication only. Require either ''​wget''​ or ''​curl''​ AND ''​bind-host''​ ! 
 +  * DNS requests via TCP. Require either ''​wget''​ or ''​curl''​ AND ''​bind-host''​ !
-In order to enable Dynamic DNS you need at least one sectionand in that section ​the ''​enabled''​ variable must be set to ''​"​1"​''​.+===== Configuration ===== 
 +==== Basics ==== 
 +ddns-scripts are designed ​to update ​one host per configuration/​section.\\ 
 +To update multiple hosts or providers or IPv4 and IPv6 for the same host you need to define separate configurations/​sections.\\ 
 +Some provider offer to update multiple host within one update request. A possible solution for this option is to use ''​--custom--'' ​service name settings.\\ 
 +Have a look at [[#​provider_specifics|Provider specifics]].
-Each section represents an update ​to a different ​service This sections specifies several things:+The main settings you need to set are (all other normally work fine with the defaults):​\\ 
 +|  Service name | the DDNS service ​provider to use  
 +|  Host/Domain | your [[wp>​Fully_qualified_domain_name|FQDN]] you want to update (used by //​ddns-scripts//​ using nslookup to check if update has happen) ​ | 
 +|  Username | username or other parameter to use as username (send urlencoded) ​ | 
 +|  Password | password or other parameter to use as password (send urlencoded)\\ ​:!: **__including BB 14.07__** Ensure this password does not have "​$1"​ or $ with any number following in it, as this breaks the script. ​ | 
 +|  Interface | network name (i.e. wan, wan6) used by OpenWrt hotplug event system to start //​ddns-scripts// ​ |
-  ​service ​(, etc.+:!: **__since DD (trunk)__** the following main settings needs to be set:\\ 
-  ​* domain ​(set this to for DNS-o-Matic) + Service name | the DDNS service provider to use  | 
-  ​username +|  Lookup Host | ONE of your defined [[wp>​Fully_qualified_domain_name|FQDN]] you want to update ​(used by //​ddns-scripts//​ using nslookup ​to check if update has happen) ​ | 
-  ​password ​(sometimes it is the api token, not your login password) +|  Host/Domain | mostly same as '''​Lookup Host''',​ but now can also be used as "​normal"​ parameteri.e. as list of hosts to be updated ​ | 
-  ​* ip_source ​(wan, eth0, web)+ Username | username ​or other parameter to use as username (send urlencoded) ​ | 
 + Password | password ​or other parameter to use as password ​(send urlencoded | 
 + Interface | network name (i.e. wan, wan6used by OpenWrt hotplug event system to start //​ddns-scripts// ​ |
-Optionally, the following may be specified:+After fresh installation a configuration/​section '''​myddns'''​ and **__since CC 15.05__** '''​myddns_ipv4'''​ and '''​myddns_ipv6'''​ exists ready to be modified for your needs.\\ 
 +You could delete them and define your own.\\
-  ​update_url (needed if the service isn'supported by /usr/lib/ddns/services) +{{:​meta:​icons:​tango:​dialog-warning.png?​nolink&​32x32}}  ​**Please heed the following important hints:** 
-  * check_interval +  *** It is NOT allowed to use ''​dash''​-sign "​-"​ inside configuration/​section names.** 
-  * force_interval+  ***A full list of supported settings (some not supported by LuCI webUI) you will find in [[doc:​uci:​ddns|UCI documentation]]!** 
 +  ***Always keep in mind the [[#​provider_specifics|Provider specific]] settings if there are any!** 
 +  ***Don'​t forget to enable your configuration/section!** 
 +  ***You need minimum one enabled configuration/​section for //ddns// service to start!** 
 +  ***__since BB 14.07__ you need to enable //ddns// service to enable updates being send on reboot and hotplug events!** 
 +  ***__//​Although described elsewhere, it is not recommended to change the files '''/​usr/​lib/​ddns/​services'''​ or '''/​usr/​lib/​ddns/​services_ipv6'''​ because they will be overwritten during system and package updates!//​__** 
 +==== using LuCI ==== 
 +Login into your router through your browser.\\ 
 +From the menu select '''​Services'''​ -> '''​%%Dynamic DNS%%'''​.\\ 
 +Navigate to the configuration/​section you like to change.\\ 
 +Modify the fields you need to change.\\ 
 +Don't forget to check the '''​Enabled'''​ option!\\ 
 +Click [Save & Apply] button to save changes.
-Use the ''​check_interval''​ variable to specify how often to check whether an update is necessary, and the ''​force_interval''​ variable to specify how often to force an update. ​ Specify ​the units for these values with the ''​check_unit''​ and ''​force_unit''​ variables Units can be ''​"​days"'', ​''"​hours"'',​ ''"​minutes"''​ or ''"​seconds"''​The default value for ''​check_interval''​ is ''"​600"'',​ and the default value for ''​check_unit''​ is ''"​seconds"''​ (''​check_interval''​ = 10 minutes)The default value for ''​force_interval''​ is ''"​72"'',​ and the default value for ''​force_unit'' ​is ''​"​hours"''​ (''​force_interval''​ = 72 hours).+To add a new configuration/​section:​\\ 
 +Type the new name into the text entry box at the bottom of the page next to [Add] button.\\ 
 +:!: **Do not use a ''​dash'' ​character ​"-" ​in configuration/​section name!**\\ 
 +Click [Add] button.\\ 
 +Modify ​the fields you need to change.\\ 
 +Don't forget to check the '''​Enabled''' ​option!\\ 
 +Click [Save & Apply] button to save changes.
-=== Default configuration ===+**__Since CC 15.05__** '''​Username'''​ and '''​Password'''​ fields are required fields. If your provider do not require one or both of them, simply put in a character of your choise.
-This is the default configuration in /etc/config/ddns as of OpenWrt Attitude Adjustment 12.09.+:!: **__Since BB 14.07__ you need to enable ddns service!**\\ 
 +From the menu select '''​System'''​ -> '''​Startup'''​.\\ 
 +Set //ddns// service to enabled.
-<​code>​ +=== SSL Support === 
-config service "​myddns"​ +**__Including BB 14.07__** it is not possible to configure SSL-Support (using HTTPS) via LuCI webUI. You need to configure [[#​ssl_support2|via console]]!\\ 
-        ​option enabled ​         "​0"​ +**__Since CC 15.05__** options to configure HTTPS communication are only available if ''​wget''​ or ''​curl''​ package is installed. (See ''​Hints''​ if shown.)
-        option interface ​       "​wan"​+
-        ​option ​service_name ​    "​" +Check '''​Use HTTP Secure''' ​option.\\ 
-        ​option domain ​          "​" +Additional field '''​Path to CA-Certificate'''​ is shown with it's default setting.\\ 
-        ​option username ​        "​myusername"​ +If you have installed ''​ca-certificate''​ package leave the shown default! (''/​etc/​ssl/​certs''​)\\ 
-        ​option password ​        "​mypassword"​+If you have installed CA certificates in one file from [[#​ssl_support|above]] set the value to: ''/​etc/​ssl/​certs/​ca-certificates.crt''​\\ 
 +If you like to use other certificate you need to set here the full path to the certificate including file name. (''/​path/​to/​file.crt''​)\\ 
 +If your certificates are stored in a different path, set here the path where your certificates are located. (''/​path/​to/​files''​)\\ 
 +Click [Save & Apply] button to save changes.
-        option force_interval ​  "​72"​ +=== Custom Service === 
-        ​option force_unit ​      "​hours"​ +If you want to use a DDNS provider currently not listed or you want to update multiple hosts within one configuration/​section then you should do the following:​\\ 
-        ​option check_interval ​  "​10"​ +Choose '''​--custom--'''​ as service.\\ 
-        ​option check_unit ​      "​minutes"​ +Additional field '''​%%Custom update-URL%%'''​ is shown.\\ 
-        ​option retry_interval ​  "​60"​ +Fill in the URL you like to use. :!: Please read URL syntax description [[#​custom_service1|below]].\\ 
-        ​option retry_unit ​      "​seconds"​+Also have a look at [[#​provider_specifics|Provider specifics]].\\ 
 +Click [Save & Apply] button to save changes.
-        #option ip_source ​      "​network"​ +:!: **If you found a DDNS provider not listed or with additional IPv6 support or with changed update URL please open an issue at [[https://​​openwrt/​packages|Github-OpenWrt-Packages]] so it can be included with the next release.** 
-        #​option ip_network ​     "​wan"​+==== via Console ====
-        #option ip_source ​      "​interface"​ +The easiest way to configure //​ddns-scripts//​ via console is to edit the file ''/​etc/​config/​ddns''​ directly using build-in [[wp>​Vi|vi editor]] or any other editor you prefer. Other editors as ''​vi''​ needs to be installed separately.
-        #option ip_interface ​   "eth0.1"+
-        #option ip_source ​      "​script"​ +A configuration/​section looks like: 
-        #option ​ip_script ​      "​path to your script"​+<​code|/​etc/​config/​ddns>​ 
 +config '​service'​ '​myddns'​ 
 + option ​'​service_name'​ '​'​ 
 + option '​enabled'​ '​1'​ 
 + option '​domain'​ '​'​ 
 + option '​username'​ '​your_username'​ 
 + option '​password'​ '​your_password'​ 
 + option '​interface'​ '​wan'​ 
 + option 'ip_source'​ '​network'​ 
 + option ​'​ip_network'​ '​wan'​ 
-        option ip_source ​       "​web"​ +Alternatively you can use [[doc:​uci#​command_line_utility|UCI command line interface]].\\ 
-        ​option ip_url ​          "​ input: 
- +<​code|root@OpenWrt:/#> 
-        ​#option update_url ​     "http://[USERNAME]:​[PASSWORD]​update?​hostname=[DOMAIN]&​myip=[IP]"+uci set ddns.myddns.service_name="​" # only use names listed in /​usr/​lib/​ddns/​services ​ 
 + or /usr/lib/​ddns/​services_ipv6 (since CC 15.05) 
 +uci set ddns.myddns.domain="​"​ 
 +uci set ddns.myddns.username="​your_user_name"​ 
 +uci set ddns.myddns.password="​p@ssw0rd"​ 
 +uci set ddns.myddns.interface="​wan"​ #​ network interface that should start this configuration/section 
 +uci set ddns.myddns.enabled="1" 
 +uci commit ddns # don't forget this, otherwise data not written to configuration file
 </​code>​ </​code>​
-=== Configuration using the uci program ===+''​ddns.myddns.enabled="​1"''​ means: 
 +  * '''​ddns'''​ is the configuration file to change (here ''/​etc/​config/​ddns''​) 
 +  * '''​myddns'''​ is the configuration/​section to change 
 +  * '''​enabled'''​ is the option to set/​change 
 +  * behind the ''​equal''​-sign is the value to set. :!: Set ''​single''​- or ''​double''​-quotes around the value and no space or whitespace around the ''​equal''​-sign.
-A short example for **** service to configure via UCI CLI:+Example to create/​add ​new configuration/​section "​newddns":​ 
 +uci set ddns.newddns="​service
 +uci set ddns.newddns.service_name="​"​ #​ only use names listed in /​usr/​lib/​ddns/​services 
 + # or /​usr/​lib/​ddns/​services_ipv6 (since CC 15.05) 
 +uci set ddns.newddns.domain="​"​ 
 +uci set ddns.newddns.username="​your_user_name"​ 
 +uci set ddns.newddns.password="​p@ssw0rd"​ 
 +uci set ddns.newddns.interface="​wan"​ #​ network interface that should start this configuration/​section 
 +uci set ddns.newddns.enabled="​1"​ 
 +uci commit ddns # don't forget this, otherwise data not written ​to configuration file 
-<​code>​ +:!: **__Since BB 14.07__ you need to enable //ddns// service by:** 
-root@OpenWrt:~# uci set ddns.myddns.enabled=1 +<code|root@OpenWrt:​/#> 
-root@OpenWrt:​~#​ uci set +/etc/init.d/ddns enable
-root@OpenWrt:~# uci set ddns.myddns.username= +
-root@OpenWrt:​~uci set ddns.myddns.password= +
-root@OpenWrt:​~#​ uci set ddns.myddns.enabled=1 +
-root@OpenWrt:​~#​ uci commit ​ddns+
 </​code>​ </​code>​
-=== Configuration for ​=== +=== SSL Support ​=== 
-== Add Duck DNS to ''​services'' ​== + 
-The reason you want to add Duck DNS to the ''​services''​ file is because this will allow you to configure other ddns services if needed, and it allows ​for proper https usage with ''​curl''​+**__Including AA12.09__** //​ddns-scripts//​ only support ​'''​curl''' ​package ​to use for SSL communication.\\ 
-Edit ''/​usr/lib/ddns/services'' ​and add this to the end of the file: +You should have followed the installation steps [[#​ssl_support|above]] and\\ 
-<​code>​ +add the following entries to desired section in '''/​etc/config/​ddns''​' ​file: 
-# Duck DNS +<code|/​etc/​config/​ddns
-"​" ​         "​http://​​domains=[DOMAIN]&​token=[PASSWORD]&​ip=[IP]"​+config '​service'​ '​myddns'​ 
 + ... 
 + option '​use_https'​ '​1'​ 
 + option '​cacert'​ '​/etc/​ssl/​certs/​ca-certificates.crt'​
 </​code>​ </​code>​
-== Duck DNS https (SSL) Support == 
-[[]] uses a CA that is either self-signed,​ or not listed in the Curl CA bundle. ''​curl''​ will throw error 60 when trying to update over https. The only way I was able to get ''​curl''​ to update Duck DNS over https was to have ''​curl''​ ignore certificate checks with ''​curl -k''​. Modify ''/​usr/​lib/​ddns/​''​ as follows: 
-Find this string of code+**__Since BB 14.07__** you need to add the following entries to the desired section in '''/​etc/​config/​ddns'''​ file:\\ 
-<​code>​ +using '''​ca-certificates'''​ package
-retrieve_prog="​${retrieve_prog}--cacert $cacert ​"+<code|/​etc/​config/​ddns
 +config '​service'​ '​myddns'​ 
 + ... 
 + option '​use_https'​ '​1'​ 
 + option 'cacert'​ '/​etc/​ssl/​certs'​
 </​code>​ </​code>​
-Replace it with this+using single file (ie. as descriped [[#​ssl_support|above]])
-<​code>​ +<code|/​etc/​config/​ddns
-retrieve_prog="​${retrieve_prog}-k "+config '​service'​ '​myddns'​ 
 + ... 
 + option '​use_https'​ '​1'​ 
 + option '​cacert'​ '/​etc/​ssl/​certs/​ca-certificates.crt'​ 
 +# option '​cacert'​ '/​full/​path/​to/​file.crt'​
 </​code>​ </​code>​
-Find this string of code: + 
-<​code>​ +**__Since CC 15.05__** above options can also be set via LuCI webUI.\\ 
-retrieve_prog="${retrieve_prog}--capath $cacert ​"+The options are only shown if '''​wget'''​ or '''​curl'''​ package is installed! 
 +=== Custom Service === 
 +Following changes need to be done if you use a DDNS provider currently not listed or to update multiple hosts within one configuration/​section.\\ 
 +Edit '''/​etc/​config/​ddns'''​ 
 +config '​service'​ '​myddns'​ 
 + ... 
 +# option '​service_name'​ '​'​ #​ comment out "#" ​or delete 
 + option '​update_url'​ '​http://​your.update.url...[USERNAME]...[PASSWORD]...[DOMAIN]...[IP]'​
 </​code>​ </​code>​
-Replace it with this: +or use UCI command line interface 
-<​code>​ +<code|root@OpenWrt:/#​
-retrieve_prog="${retrieve_prog}-k ​"+uci delete ddns.myddns.service_name 
 +uci set ddns.myddns.update_url="http://​your.update.url...[USERNAME]...[PASSWORD]...[DOMAIN]...[IP]" 
 +uci commit ddns # don't forget this, otherwise data not written to configuration file
 </​code>​ </​code>​
-== Duck DNS ddns-scripts ''​config''​ example ​== +== URL Syntax ​== 
-Uncomment use_https and cacert if you want to use https (SSL)+:!: It's not needful ​to set '''​https:​%%//​%%'''​. If SSL support is activated '''​http:​%%//​%%'''​ is replaced automatically.\\ 
-<​code>​ +:!: The entries [USERNAME] [PASSWORD] [DOMAIN] [IP] are replaced by //​ddns-scripts//​ just before update.\\ 
-config service "​myddns"​ +[USERNAME] is replaced by content of '''​option username'''​ from configuration file.\\ 
-        option enabled ​         "​1"​ +[PASSWORD] is replaced by content of '''​option password'''​ from configuration file.\\ 
-        option interface ​       "​wan"​ +[DOMAIN] is replaced by content of '''​option ​domain'''​ from configuration file.\\ 
-        option service_name ​    "​" +[IP] is replaced by the current IP address of your OpenWrt system.
-        ​option domain ​          "​DOMAIN"​ +
-        ​option username ​        "LEAVE BLANK" +
-        option password ​        "​xxxxxxx-your-token-xxxx-xxxxxxxxxxxx"​ +
-        option force_interval ​  "​12"​ +
-        option force_unit ​      "​hours"​ +
-        option check_interval ​  "​10"​ +
-        option check_unit ​      "​minutes"​ +
-        option ip_source ​       "​web"​ +
-        option ip_url ​          "​http://​​text"​ +
-       #option ​use_https ​       "​1"​ +
-       #​option cacert ​          "/​etc/​ssl/​certs/​cacert.pem" +
-=== Configuration ​for ===+:!: carefully set '''​option domain'''​ in your configuration. This option is also used to detect if the update was successfully done.\\ :!: This entry is the DNS name your OpenWrt system will be reachable from the internet.\\ 
 +:!: Have a look at [[#​provider_specifics|Provider specifics]] ​for samples.\\
-An example for a **** domain ​with an A-record ​with name '​@'​.+:!: **If you found a DDNS provider not listed or with additional IPv6 support or with changed update URL please open an issue at [[https://​​openwrt/​packages|Github-OpenWrt-Packages]] so it can be included ​with the next release.**
-<​code>​ +===== Operation =====
-config service '​myddns'​ +
-        option enabled '​1'​ +
-        option interface '​wan'​ +
-        option force_interval '​72'​ +
-        option force_unit '​hours'​ +
-        option check_interval '​10'​ +
-        option check_unit '​minutes'​ +
-        option retry_interval '​60'​ +
-        option retry_unit '​seconds'​ +
-        option service_name '​'​ +
-        option domain '​'​ +
-        option username '​@'​ +
-        option password '​xxxxxxx-your-token-xxxx-xxxxxxxxxxxx'​ +
-        option ip_source '​network'​ +
-        option ip_network '​wan'​ +
-        #option use_https '​1'​ +
-        #option cacert '/​etc/​ssl/​certs/​cacert.pem'​ +
-Note that with the namecheap protocol, the ''​username''​ option is translated to the ''​host''​ argument in the update request.  ​Therefore, it should be the hostname on the DNS record, ​**not** the username that you use to log into the site.  In this example, the script will update the '​@'​ (full domain) DNS A-record. ​ To update a subdomain A-record, enter the name of the subdomain instead. ​ To get your password, log into the site, enter the management console for the domain, and click the ''​Dynamic DNS''​ menu option. ​ +|  {{:​meta:​icons:​tango:​48px-emblem-important.svg.png?​nolink&​32x32}} ​ **Enable minimum one configuration/​section !\\ since BB 14.07 you need to enable ddns service !**  ​|
-Make a record for each subdomain Using Luci, enter a label for the subdomain into the Add field (near lower left of page)and click the (+), or hand edit the /etc/config/ddns file and add new stanza +==== Basics ==== 
 +Normally no user actions are required because //​ddns-scripts//​ starts when hotplug ''​ifup''​ event happensThis will happen automatically at system startup when the named interface comes up. Event ''​ifup''​ also happen when a dialup network comes up.\\ 
 +//ddns-scripts// regularly check if there is difference between your IP address at DNS and your interface. If different an update request is send to DDNS provider.
-Example ​/etc/config/ddns records to update two subdomains at namecheap:​ +**__Including BB 14.07__** if you modify your configuration from LuCI webUI you need to restart ​//ddns-scripts// manually (see below).\\ 
-<​code>​ +**__Since CC 15.05__** whenever you [Save & Apply] an ''​Enabled'' ​configuration/​section from LuCI webUI the corresponding script is automatically restarted.
-config service '​myddns'​ +
-        option interface '​wan'​ +
-        option force_unit '​hours'​ +
-        option check_interval '​20'​ +
-        option check_unit '​minutes'​ +
-        option retry_interval '​60'​ +
-        option retry_unit '​seconds'​ +
-        option password '​YourNamecheapDDNSpassword'​ +
-        option enabled '​1'​ +
-        option ip_source '​interface'​ +
-        option ip_interface 'pppoe-wan' +
-        ​option service_name '​' +
-        option force_interval ​'72' +
-        option domain ​'Your.Domain'​ +
-        option username '​www'​+
-config service ​'mail' +:!: **__for all versions__** if you modify ​'''​/​etc/​config/​ddns''' ​configuration file from console, you need to restart //ddns-scripts// (see below) to apply changes.
-        option interface ​'wan' +
-        option force_unit ​'hours' +
-        option check_interval '​20'​ +
-        option check_unit '​minutes'​ +
-        option retry_interval '​60'​ +
-        option retry_unit '​seconds'​ +
-        option password '​YourNamecheapDDNSpassword'​ +
-        option enabled '​1'​ +
-        option ip_source '​interface'​ +
-        option ip_interface 'pppoe-wan' +
-        option service_name '​' +
-        option force_interval '​24'​ +
-        option domain '​Your.Domain'​ +
-        option username '​mail'​+
-</​code>​+To check if //​ddns-scripts//​ are running you could check inside LuCI via '''​Status'''​ -> '''​Processes'''​\\ or via console running <​code|root@OpenWrt:/#>​ps -w | grep dynami[c]</​code>​ 
 +You should find something like '''​... /bin/sh /​usr/​lib/​ddns/​ **myddns** 0'''​\\ 
 +for every configuration/​section you configured and enabled, where **myddns** shows your configuration/​section name.
-You can hand test the records for 'www' ​and 'mail', labeled ​'myddns' ​and 'mail' ​with: +**__Since CC 15.05__** inside LuCI also exists a section ​'''​Dynamic DNS''' ​at ''​'​Status'''​ -'''​Overview'''​ page showing the current status of your DDNS configurations. 
-<code+==== Run manually ==== 
-/usr/lib/ddns/ myddns +=== using LuCI === 
-/​usr/​lib/​ddns/​ ​mail +To **check** running ​//ddns-scripts// processes from the menu goto '''​Status'''​ -> '''​Processes'''​.\\ 
-</​code>​+Look for something like '''/​bin/​sh ​/​usr/​lib/​ddns/​ ​**myddns** 0'''​.\\ 
 +To **stop** a desired process press the [Terminate] or [Kill] button.\\ 
 +The process should remove from the list.
-Look at the return XML and see that the Error Count is 0 to validate a successful updateCheck each record, one at a timeUse <Ctrl-Cto kill the test daemons.+**__Including AA 12.09__** //​ddns-scripts//​ can only be started creating an '''​ifup'''​ hotplug event by restarting ​the desired interface.\\ 
 +:!: Keep in mind that also other service processes (i.efirewall) might be (re-)started via '''​ifup'''​ hotplug event!\\ 
 +From the menu select '''​Network''' ​-> '''​Interfaces'''​. Select ​the desired interface and press [Connect] button.
 +**__Since BB 14.07__** you can enable/​disable and start/stop //​ddns-scripts//​ from '''​System'''​ -> '''​Startup'''​ menu.\\
 +Look for service '''​ddns'''​ and press the button for the desired action.
-===== Manually starting ddns-scripts =====+**__Since CC 15.05__** you can additional enable/​disable and start/stop individual configuration/​section from '''​Overview'''​-page at '''​Services'''​ -> '''​%%Dynamic DNS%%'''​.
-The ddns-scripts monitoring script starts when hotplug ifup event happens. This will happen automatically at system startup when the named interface comes up. The simplest way to start ddns-scripts is to reboot, but to avoid a reboot, it can be started manually from the command line.  After setting "​enabled"​ to 1 and configuring other settings as above, manually generate an ifup hotplug event for the desired interface. 
-  * This will case the the hotplug script /etc/hotplug.d/25-ddns to run +=== via console === 
-    ​* ​For INTERFACE, type the specified ddns-scripts interface name (the interface name from ''​/​etc/​config/​network''​, usually '​wan'​) +From console command line you could create an '''​ifup'''​ hotplug event for the desired network interface. ​This will start all enabled ddns configurations/sections monitoring this interface.\\ 
- +:!: Keep in mind that also other service processes (i.e. firewall) might be (re-)started via '''​ifup'''​ hotplug event!\\ 
-<code+For INTERFACE, type the specified ​//ddns-scripts// interface name (the interface name from /​etc/​config/​network,​ usually '​wan'​) 
-root@OpenWrt:​~# ACTION=ifup INTERFACE=wan /​sbin/​hotplug-call iface+<code|root@OpenWrt:​/#
 +ACTION=ifup INTERFACE=wan /​sbin/​hotplug-call iface
 </​code>​ </​code>​
- +To **start** only one //ddns-scripts// configuration/​section (here '''​myddns'''​):​ 
-  ​As an alternative, ​ddns-scripts ​can be called at a lower level +<​code|root@OpenWrt:/#>​ 
-    type the specified ​ddns-scripts interface ​name (the interface name from ''​/​etc/​config/​network''​, usually '​wan'​) +/​usr/​lib/​ddns/​ myddns 0 & 
- +</​code>​ 
-<​code>​+To **start** all //ddns-scripts// configurations configured for one interface (the interface name from /​etc/​config/​network,​ usually '​wan'​): 
 sh sh
-. /​usr/​lib/​ddns/​ # note the leading period+. /​usr/​lib/​ddns/​ #​ note the leading period ​followed by a space
 start_daemon_for_all_ddns_sections "​wan"​ start_daemon_for_all_ddns_sections "​wan"​
 exit exit
 +To **stop** one configuration/​section you need to list running ddns processes with:
 +ps -w | grep dynami[c]
 +you will get something like:
 +2493 root      1440 R    {dynamic_dns_upd} /bin/sh /​usr/​lib/​ddns/​ myddns_1 0
 +2494 root      1440 R    {dynamic_dns_upd} /bin/sh /​usr/​lib/​ddns/​ myddns_2 0
 +now you need to kill every running process:
 +kill 2493 # to kill one process
 +kill 2493 2494 # to kill multiple processes
 +To **stop** all running processes at once ('''​killall'''​ might not be available on all systems):
 +killall #​ if killall is available
 +ps | grep dynami[c] | awk '​{print $1}' | xargs kill # or if not available
 +**__Since BB 14.07__** you could ''​enable/​disable''​ and ''​start/​stop/​restart''​ all enabled ddns configuration/​section like every other service:
 +/​etc/​init.d/​ddns disable
 +/​etc/​init.d/​ddns enable
 +/​etc/​init.d/​ddns start
 +/​etc/​init.d/​ddns stop
 +/​etc/​init.d/​ddns restart
 </​code>​ </​code>​
-===== Verification ===== 
-  * Verify the ddns-scripts interface monitor script is running +=== using scheduler === 
-  One instance of this script should be running for each ddns-scripts ​configuration defined+**__Since CC 15.05__** ​each configuration/​section of //ddns-scripts// can be configured to run once including retry on error so it is garanted that the update is send to the provider.\\
-<​code>​ +To configure your configuration/​section to run once you need to set '''​option force_interval'''​ to '''​0'''​. Setting of '''​option force_unit'''​ is ignored.\\ 
-ps | grep LuCI set '''​Force Interval'''​ in [Timer Settings]-tab of your desired configuration\\ 
 +or edit '''/​etc/​config/​ddns'''​ on console. 
 +config '​service'​ '​myddns'​ 
 + ... 
 + option '​force_interval'​ '​0'​
 </​code>​ </​code>​
-  * Verify ​the correct IP address by pinging ​the dynamic DNS name+If you set //ddns// service to ''​enable''​ then all configurations/​sections are started during interface '''​ifup'''​.\\ 
 +The configuration/​section configured to run once will stop after successful update.\\ 
 +To garant that your configurations only run once not looking for an interface event you need to disable //ddns// service.\\ 
 +To start your configuration via [[doc:​howto:​notuci.config?#​etccrontabsroot_cronjob_aka_crontab|build in crond]] use the following entry as ''​command''​ inside crontab configuration (replace '''​myddns'''​ with the name of your configuration/​section):​ 
 +/​usr/​lib/​ddns/​ myddns 0 & 
-===== Alerting =====+==== Monitoring ​====
-  ​* ddns-scripts ​does not send any alerts when it detects or updates the DDNS IP address +=== Syslog === 
-  * Marius Gedminas posted a two-line patch to ddns-scripts available at [[]]. This change adds syslog output when an IP change is detectedIt can be manually added to /​usr/​lib/​ddns/​ +**__Including AA 12.09__** there is no ''​syslog''​ support implemented in //ddns-scripts//.\\ 
-    * For ddns-scripts ​ver. 1.0.0-21 (the version OpenWrt Attitude Adjustment 12.09), the line numbers to look for are after original lines 294 and 325 +To get an output ​to ''​syslog''​ you need to do the following modifications.\\ 
-    * If OpenWrt is configured to send syslog output to a remote syslog server (see [[doc/howto/​log.overview]]),​ that server can be configured to perform various alerting actions+Edit '''/​etc/​config/​ddns'''​ and insert the new '''​option use_syslog'''​ to each configuration/​section: 
 +config '​service'​ '​myddns'​ 
 + ..
 + option '​use_syslog'​ '​1'​ 
 +Edit '''​/usr/lib/​ddns/​'''​ and append the following lines: 
 + if [ "​$use_syslog"​ = 1 ] 
 + then 
 + echo $1|logger -t ddns-scripts-$service_id 
 + fi 
-===== Debugging =====+**__For 10.03__** additional edit '''/​usr/​lib/​ddns/​'''​ and add the following lines: 
 +260 time_since_update=$(($current_time - $last_update)) 
 + syslog_echo "​Running IP check ..." # add this line 
 +263 verbose_echo "​Running IP check..."​ 
 +291 update_output=$( $retrieve_prog "​$final_url"​ ) 
 + syslog_echo "​Update returned: $update_output"​ #​ add this line 
 +293 verbose_echo "​Update Output:"​ 
-If something goes wrong, you can see a log of activity by calling +**__For AA 12.09__** additional edit '''/​usr/​lib/​ddns/​'''​ and add the following lines: 
-/​usr/​lib/​ddns/​ ​myddns+284 time_since_update=$(($current_time - $last_update)) 
 + syslog_echo "​Running IP check ..." # add this line 
 +287 verbose_echo "​Running IP check..."​ 
 +288 verbose_echo "​current system ip = $current_ip"​ 
 +289 verbose_echo "​registered domain ip = $registered_ip"​ 
 +316 if [ $? -gt 0 ] 
 +317 then 
 + syslog_echo "​update failed, retrying in $retry_interval_seconds seconds"​ #​ add this line 
 +318 verbose_echo "​update failed"​ 
 +319 sleep $retry_interval_seconds 
 +320 continue 
 +321 fi 
 + syslog_echo "​Update successful"​ #​ add this line 
 +323 verbose_echo "​Update Output:"​
 </​code>​ </​code>​
-Note: //myddns// is the name of the service config entry in ///​etc/​config/​ddns//​ file. 
-If you only see the update_url= ​output ​you forgot the enable flag for the service.  +**__For BB 14.07__** ​output ​to syslog is already supported by //ddns-scripts//\\ 
- +but you need to edit '''​/etc/config/ddns''' via console because LuCI does not support ​this setting: 
-For example if you see //badauth// in //Update Output//, you have to change your password which contains only letters and numbers. Because busybox's (v1.15.3) wget implementation has an issue handling encoded URLs. +<code|/​etc/​config/​ddns
- +config service "​myddns"​ 
-Sometimes the scripts mess up and many instances of the updater will be fired. In this case, use this command to kill them all and start again + ... 
-<​code>​ + option use_syslog "​1"
-root@OpenWrt:​~#​ ps | grep dynami[c] | awk '​{print $1}' | xargs kill +
-root@OpenWrt:​~#​ ACTION=ifup INTERFACE=wan /​sbin/​hotplug-call iface+
 </​code>​ </​code>​
-===== Tweaks =====+**__Since CC 15.05__** the '''​option use_syslog'''​ (also in LuCI) allow to define the level of events logged to syslog: 
 +^  Value  ^ Reporting ​ ^ 
 +|  0  | disable ​ | 
 +|  1  | info, notice, warning, errors ​ | 
 +|  2  | notice, warning, errors ​ | 
 +|  3  | warning, errors ​ | 
 +|  4  | errors ​ | 
 +|  :!: Critical errors forcing //​ddns-scripts//​ to break (stop) are always logged to syslog. :!:  ||
-Full API documentation available here: https://​​developers/​specs/​syntax.html 
-To enable wildcard domains (* on, replace the line in ''/​usr/​lib/​ddns/​services''​ with:<​code>​ +=== Logfile ===
-"​" ​           "​http://​[USERNAME]:​[PASSWORD]​nic/​update?​wildcard=ON&​hostname=[DOMAIN]&​myip=[IP]"​ +
-To retain ​the wildcard setting on, replace the line in ''/usr/lib/ddns/services''​ +**__Including BB 14.07__** //​ddns-scripts//​ have no logfile support.\\ 
- with:<​code>​ +To add logfile support to these versions you need to do the following modifications.\\ 
-"​" ​           "​http://​[USERNAME]:​[PASSWORD]​nic/​update?​wildcard=NOCHG&​hostname=[DOMAIN]&​myip=[IP]"​+Edit '/etc/config/​ddns' ​and insert the new 'option use_logfile'​ to each configuration/​section: 
 +config '​service'​ '​myddns'​ 
 + ... 
 + option '​use_logfile'​ '​1'​
 </​code>​ </​code>​
-To add dyndns protocol compatible services like, add a line in ''/​usr/​lib/​ddns/​services''​ +Edit '''/​usr/​lib/​ddns/​''​' and add the following lines to '''​verbose_echo()'''​ function: 
- with:<​code>​ +<code|/​usr/​lib/​ddns/​
-"" ​           "​http://​[DOMAIN]:[PASSWORD]​hostname=[DOMAIN]&myip=[IP]"+102 
 +103 verbose_echo() 
 +104 { 
 +105 if [ "$verbose_mode" ​= 1 ] 
 +106 then 
 +107 echo $1 
 +108 fi 
 + if "​$use_logfile"​ = 1 ] 
 + then 
 + LOGDIR="​/var/​log/​ddns"​ #​ log directory 
 + LOGFILE="​$LOGDIR/​${service_id}.log" # logfile name 
 + LOGLINES=500 # max number of lines in logfile 
 + -d $LOGDIR ​|| mkdir -p -m755 $LOGDIR 
 + echo $1 >> $LOGFILE 
 + # verbose mode then no log truncate 
 + [ "$verbose_mode"​ = 1 ] || sed -i -e :a -e '​$q;​N;'​$LOGLINES',​$D;​ba'​ $LOGFILE 
 + fi 
 +109 } 
 </​code>​ </​code>​
-To add dyndns protocol compatible services like, add a line in ''​/usr/lib/ddns/services''​ +**__Since CC 15.05__** ​//ddns-scripts// have buildin logfile support.\\ 
- ​with:<​code>​ +Logfiles are automatically truncated to a settable number of lines (default 250 lines).
-"​" ​           "http://​[DOMAIN]:​[PASSWORD]​update.php?​hostname=[DOMAIN]&​myip=[IP]"​ +
-To add dyndns protocol compatible services like,​ add a line in ''/​usr/lib/ddns/services''​ +Inside LuCI you could enable logfile ​in [Advanced Settings]-tab of desired configuration/​section.\\ 
- with:<​code>​ +From console you need to edit '''/​etc/config/​ddns''​' file: 
-"​" ​           "​http://​[DOMAIN]:​[PASSWORD]​update.php?​hostname=[DOMAIN]&​myip=[IP]"​+<code|/​etc/​config/​ddns
 +config '​service'​ '​myddns'​ 
 + ... 
 + option '​use_logfile'​ '​1'​
 </​code>​ </​code>​
-To add dyndns protocol compatible services like, add a line in ''/​usr/lib/ddns/services''​ +To view logfile content from LuCI select the [Log File Viewer]-tab of desired configuration/​section and press the [Read / Reread log file]-button. 
- with:<​code>​ +From console you should change to the ddns log directory (default '''/​var/log/​ddns''​'​).\\ 
-"​" ​           "http://[USERNAME]:​[PASSWORD]​nic/update?​hostname=[DOMAIN]&​myip=[IP]"​+You will find a logfile for every configuration/​section. 
 +cd /var/log/ddns 
 +ls -la 
 +cat myddns_ipv4.log 
 +cat myddns_ipv6.log
 </​code>​ </​code>​
 +=== Debugging ===
-To add dyndns protocol compatible services like no-ip.comadd a line in ''​/usr/lib/ddns/services''​ +To debug what's going onyou can run //ddns-scripts// in verbose mode.\\ Following verbose level are defined
- with:<​code>​ +|  0  | Non verbose ​No output ​ | 
-"" ​           "http://​[USERNAME]:​[PASSWORD]​hostname=[DOMAIN]&​myip=[IP]"​ +|  1  | Output to console (default) ​ | 
-</​code>​+| **__Since CC 15.05__** additional || 
 +|  2  | Output to console and logfile.\\ Run once WITHOUT retry on error. ​ | 
 +|  3  | Output to console and logfile.\\ Run once WITHOUT retry on error.\\ Sending NO update ​to DDNS service. ​ |
-To add dyndns protocol compatible services like,​ add a line in ''/​usr/lib/ddns/services''​ +Before starting debugging stop all running ​//ddns-scripts// processes:​\\ 
- with:<​code>​ +**__Including AA 12.09__** 
-"​" ​         "​http://​​update?​domains=[DOMAIN]&​token=[PASSWORD]&​ip=[IP]"​+<code|root@OpenWrt:/#​
 +ps | grep dynami[c| awk '​{print $1}' | xargs kill
 </​code>​ </​code>​
-To add dyndns protocol compatible services like, add a line in ''/​usr/​lib/​ddns/​services''​ +**__Since BB 14.07__** 
- with:<​code>​ +<code|root@OpenWrt:/#​
-"​" ​         "​type=dynamic&​domain=[DOMAIN]&​command=set&​token=[PASSWORD]&​ip=[IP]"​+/etc/init.d/ddns stop 
 +/etc/init.d/ddns disable
 </​code>​ </​code>​
 +validate that no //​ddns-scripts//​ processes running:
 +<​code|root@OpenWrt:/#>​ps | grep dynami[c]</​code>​
-To add dyndns protocol compatible services like, add a line in ''/​usr/​lib/​ddns/​services''​ +Now you can start one configuration/​section for debugging. ​To stop/break running script press [CTRL]+C.\\ 
- with:<code+Replace '''​myddns'''​ with your desired configuration/section name and '''​level'​''​ with the desired verbose level. 
-"​two-DNS" ​         "​http://​[USERNAME]:​[PASSWORD]​update?​hostname=[DOMAIN]&​ip=[IP]"​ +<code|root@OpenWrt:/#> 
-# with https Support +/usr/lib/ddns/ myddns level
-"​two-DNS_https" ​         "https://​[USERNAME]:​[PASSWORD]​update?​hostname=[DOMAIN]&​ip=[IP]"​ +
-needs: +
-# option use_https ​       1 +
-# option cacert ​          /etc/ssl/certs/Example_CA.pem +
-# and install curl +
-# as shown below+
 </​code>​ </​code>​
 +**__Including BB 14.07__** if you see:\\
 +only the update_url=... output you forgot to enable this configuration/​section.\\
 +'''​badauth'''​ in Update Output, you have to change your password which contains only letters and numbers. Because busybox'​s (v1.15.3) wget implementation has an issue handling encoded URLs.\\
 +**__Since CC 15.05__** you will get full description of errors and the output of programs like wget, nslookup etc. used by //​ddns-scripts//​\\
 +=== Common errors ===
 +**Network and name resolution problems:​**\\
 +Check your communication settings with the following commands:
-===== SSL support =====+ping -c 5 
 +ping -c 5 -4 #​ (-4) force IPv4 communication 
 +ping -c 5 -6 #​ (-6) force IPv6 communication if installed
-By default ''​ddns-scripts''​ uses ''​wget'' ​for DNS updates over httpand ''​curl''​ for DNS updates over https (SSL)In order for ''​ddns-scripts''​ to perform DNS updates over https (SSL), you will need to install the ''​curl'' ​packageand add the appropriate root certificate for your ddns provider.+wget -O- http://​ # ​for IPv4 
 +wget -d -O- http://​ #​ for IPv6 needs wget package ​and IPv6 to be installed 
 +curl -v http://​ # ​for IPv6 needs curl package and IPv6 to be installed 
-Busybox provides its own version of ''​wget''​; however, it does not support ​https (SSL)You can either follow the instructions at [[wget-ssl-certs|SSL and Certificates in wget]] or install ​''​curl'' ​and see the correct way below.+**HTTPS/SSL problems:​**\\ 
 +Check if your DDNS provider ONLY support secure requests and enable HTTPS (''​option use_https''​) in your configuration.\\ 
 +Packages '''​wget''​' or '''​curl''' ​not installed to support ​secure communication.\\ 
 +'''​wget'/'​curl'''​ could not access/​validate ​SSL certificates.\\ 
 +Check certificate installation ​and run '''​wget''' ​or '''​curl''​' in verbose/​debug mode: 
 +ls -la /etc/ssl 
 +ls -la /​etc/​ssl/​certs
-====The correct way using curl ==== +wget -d -O /​tmp/​wget.out https://​ --ca-certificate=/etc/ssl/certs/ca-certificates.crt # single certificate file 
-There is no need to modify ''​/usr/lib/ddns/services''​Automatic change of URI scheme from ''​http''​ to ''​https''​ is controlled by the ''​use_https''​ variableInstall ''​curl''​ and add the following to ''​/etc/config/ddns''​ (replace ''​cacert''​ path to the correct one, either a file or a directory):+wget -d -O /​tmp/​wget.out ​ --ca-directory=/etc/ssl/certs # certificate ​directory 
 +wget -d -O /​tmp/​wget.out https://​ --no-check-certificate #​ ignore certificate !!! INSECURE !!!
-<​code>​ +curl -v -o /​tmp/​curl.out https://​ --cacert /​etc/​ssl/​certs/​ca-certificates.crt #​ single certificate file 
-option use_https ​       1 +curl -v -o /​tmp/​curl.out https://​ --capath /​etc/​ssl/​certs #​ certificate directory 
-option ​cacert ​          ​/​etc/​ssl/​certs/​Example_CA.pem+curl -v -o /​tmp/​curl.out https://​ --insecure #​ ignore certificate !!! INSECURE !!!
 </​code>​ </​code>​
-Note that you need to download a Certificate Authority bundle as curl's pre-packaged bundle is out of date. Curl does maintain a current CA bundle here: http://​​ca/​ 
-Use the following commands to download the Curl CA bundle: 
 +===== Provider specifics =====
 +==== Overview ====
 +Remember to read who to [[#​custom_service1|configure a custom service]].\\
 +At provider specific settings, only parameters that needs to be changed are described.\\
 +The relevant paramters to use together with a custom settings are:
 +^ UCI option ​ ^ LuCI description ​ ^ Explanatory note  ^
 +| service_name ​ | DDNS Service provider ​ | Inside LuCI set to '''​--custom--'''​ or delete from '''/​etc/​config/​ddns'''​ if you need to use custom update URL.  |
 +| update_url ​ | Custom update-URL ​ | Copy from description below, if nessesary. ​ |
 +| domain ​ | Hostname/​Domain ​ | The already registered name at your DDNS provider.\\ :!: **Must be your public FQDN** because used by nslookup command to check if the send IP update was recognized by your provider and published around World Wide DNS.  |
 +| username ​ | Username ​ | Normally your username but possibly used with different settings. ​ |
 +| password ​ | Password ​ | Normally your password but possibly used with different settings. ​ |
 +If you find a FIXME at a provider description below, please support me to test and update this wiki.\\
 +Please post a [[#​support]] request if something not working as described or needs to be updated.\\
 +==== ====
 +Last updated: 2015-07-28\\
 +[[https://​​|Homepage]] -- [[https://​​wiki/​|Documentation]]
 +The default is to use '''​domain'''​ together with '''​service_name'''​ set to '''​'''​.\\
 +'''​domain'''​ needs to be set to FQDN to update/​verify. :!: NEVER use '​'​!
 +To update all services registered with DNS-O-Matic in one configuration/​section use the following settings:
 <​code>​ <​code>​
-root@OpenWrt:​~#​ mkdir -p /​etc/​ssl/​certs/​ +service_name delete / --custom-
-root@OpenWrt:~# wget -P /etc/ssl/certs/ http://[USERNAME]:[PASSWORD]​​myip=[IP]&​wildcard=NOCHG&​mx=NOCHG&​backmx=NOCHG 
 +domain [Only ONE of your defined hostnames to verify update was send] 
 +username [Your username] 
 +password [Your password]
 </​code>​ </​code>​
-===Curl SSLv2,3 Support=== +==== ==== 
-If your DDNS provider is using SSLv2 or SSLv3 Curl will throw error code 35 because it can't connect unless you specify the correct SSL version. +Last updated: 2015-07-14\\ 
-To fix this, you must modify ''​/usr/lib/ddns/''​ as such:+[[|Homepage]] -- [[​install.jsp|Installation instructions]] -- [[http://​​faqs.jsp|FAQ]]
-For SSLv2 replace --sslv3 with --sslv2+FIXME There is another [[doc:​howto:​ddns.client:​duckdns|description]] here. I take over the link during rewriting this wiki page. DELETEME
-Find this string of code:+Inside LuCI web UI select **--custom--** and fill in the other options accordingly.\\ 
 +:!: Be sure you install ssl support.\\ 
 +Additional use update_url and settings from below:\\
 <​code>​ <​code>​
-retrieve_prog="${retrieve_prog}--cacert $cacert ​"+update_url http://​​update?​domains=[USERNAME]&​token=[PASSWORD]&​ip=[IP] 
 +domain [Your FQDN] 
 +username [Your Host without ​""
 +password [Your token] 
 +use_https 1 
 +cacert [path to certificate file or directory]
 </​code>​ </​code>​
-Replace it with the following:+==== ==== 
 +Last updated2015-07-15\\ 
 +[[http://​​|Homepage]] -- [[http://​​faq/​|FAQ]]\\ 
 +Option 1: FIXME
 <​code>​ <​code>​
-retrieve_prog="​${retrieve_prog}--sslv3 --cacert $cacert "+service_name 
 +domain [Your FQDN] 
 +username [NOT used. Set to a character of your choice, because LuCI does not accept empty field] 
 +password [Your authorisation token, NOT your account password]
 </​code>​ </​code>​
 +To find your authorisation token, go to http://​​dynamic/,​ login, click "​Direct URL"​.\\
 +On the location bar of your browser, copy the authorisation token,\\
 +which is the part after %%http://​​dynamic/​update.php?​%% url\\
 +and paste it in the password field.
-Find this string of code:+Option 2FIXME ([[https://​​ticket/​10192|Taken from here.]])
 <​code>​ <​code>​
-retrieve_prog="​${retrieve_prog}--capath $cacert "+service_name delete / --custom-- 
 +update_url [Your direct URL updater from your account] 
 +domain [Your FQDN] 
 +username [NOT used. Set to a character of your choice, because LuCI does not accept empty field] 
 +password [NOT used because already part of direct URL. Set to a character of your choice, because LuCI does not accept empty field]
 </​code>​ </​code>​
-Replace it with the following:+==== ==== 
 +Last updated2015-07-20\\ 
 +[[http://​​|Homepage]] (Danish only) 
 +Taken from [[https://​​viewtopic.php?​pid=281262|OpenWrt forum]] 
 + is only supported by //​ddns-scripts//​ using custom service settings.\\ require to [[#​ssl_support|install]] and configure SSL support.
 <​code>​ <​code>​
-retrieve_prog="​${retrieve_prog}--sslv3 --capath $cacert ​"+service_name delete / --custom-- 
 +update_url http://​​ddns.phtml?​u=[USERNAME]&​p=[PASSWORD]&​d=Mydomain&​h=[DOMAIN]&​i=[IP] 
 + !!! replace ​"Mydomain"​ in this url with domain part of your FQDN. 
 + Sample: your FQDN: -> "​Mydomain"​ set to 
 + Sample: http://​​ddns.phtml?​u=[USERNAME]&​p=[PASSWORD]&​​h=[DOMAIN]&​i=[IP] 
 +domain [Your FQDN] 
 +username [Your username] 
 +password [Your password]
 </​code>​ </​code>​
-If your ddns provider uses a self-signed certificate,​ or if the certificate issuer is not listed in the curl CA bundle, ''​curl''​ will throw error code 60 and not open a connection to the ddns provider. To fix this, you must modify ''/​usr/​lib/​ddns/​''​ as such: 
-**Warning:** This allows ''​curl''​ to connect to https sites without SSL certificatesOnly do this if no other options are available, and if you ultimately trust your ddns provider.+==== ==== 
 +Last updated2015-07-15\\ 
-Find this string of code:+FIXME There is another [[doc:​howto:​ddns.client:​hurricaneelectricfreedns|description]] here. I take over the link during rewriting ​this wiki page. DELETEME 
 +Use the following settings:
 <​code>​ <​code>​
-retrieve_prog="​${retrieve_prog}--cacert $cacert "+service_name 
 +domain [Your FQDN] 
 +username [Your FQDN] 
 +password [Your password]
 </​code>​ </​code>​
-Replace it with the following:+==== ==== 
 +Last updated: 2015-07-20\\ 
 +[[http://​​|Homepage]] -- [[https://​​support|Support]] 
 +Looking on description at "​[[https://​​support/​domains/​dynamic/​openwrt|Use Mythic Beasts Dynamic DNS with your OpenWRT router]]"​ and on the existing source code I found out that there must be issues updating Dynamic DNS.\\ 
 +I have gone in contact with support of I will update as soon a solution is available.\\ 
 +==== ==== 
 +Last updated: 2015-07-21\\ 
 +[[https://​​|Homepage]] -- [[https://​​support/​knowledgebase.aspx|Knowledgebase]] 
 +Note that with the namecheap protocol, the username option is translated to the host argument in the update request.\\ 
 +Therefore, it should be the host-part on the DNS record, not the username that you use to log into the site.\\ 
 +To update multiple hosts you might need to define separate configuration/​section for each host.\\ 
 +To get your password, log into the site, enter the management console for the domain, and click the Dynamic DNS menu option.\\ 
 +:!: Currently //​ddns-scripts//​ only support configuration where defined FQDN using the same IP address as for your domain. Otherwise you will send updates to every "​option check_interval"​ 10 minutes (default) because your FQDN is not validated. 
 +Let assume you define two FQDN at your domain "​":​ "​"​ and "​"​\\ 
 +To update only your domain record "​"​:
 <​code>​ <​code>​
-retrieve_prog="​${retrieve_prog}-k "+service_name 
 +domain [Your domain, here:] 
 +username @ 
 +password [Your password]
 </​code>​ </​code>​
- +To update for example only your "​"​ host:
-Find this string of code:+
 <​code>​ <​code>​
-retrieve_prog="​${retrieve_prog}--capath $cacert "+service_name 
 +domain [Your domain, here:] 
 +username ftp 
 +password [Your password]
 </​code>​ </​code>​
- +To update all to the same IP address:
-Replace it with the following:+
 <​code>​ <​code>​
-retrieve_prog="​${retrieve_prog}-k "+service_name 
 +domain [Your domain, here:] 
 +username @ ​-a www -a ftp 
 + !!! @ stands for your domain, www for,​ ftp for 
 +password [Your password]
 </​code>​ </​code>​
-====Using wget==== +==== ​==== 
-If you want to stick to wget, then you should set SSL_CERT_DIR variable in ''​/usr/lib/​ddns/​''​ before calling ''​/usr/lib/ddns/​''​ because ''​/etc/profile''​ is not sourced in daemon mode. +Last updated: 2015-07-21\\ 
 +[[|Homepage]] -- [[|SupportCenter]]
-=== Using wget with self-signed SSL certificates=== +:!: **Starting CC 15.05** do not forget to additional install ​//ddns-scripts_no-ip_com// package.
-//Note: this is also a workaround for the wget ssl bug mentioned on [[wget-ssl-certs#​A.Caveat|SSL and Certificates in wget#A Caveat]]//+
-If your service provider uses a self-signed certificate,​ one options ​is to use the --no-check-certificate option with wget (read the disclaimer here:​manual/​html_node/​HTTPS-_0028SSL_002fTLS_0029-Options.html#​HTTPS-_0028SSL_002fTLS_0029-Options).+The default ​is to use your '''​username'''​ and '''​password'''​ as normal inside ​//ddns-scripts// together with '''​service_name'​ ''''​ or '''​'''​.
-Replace the retrieve_prog line in /usr/​lib/​ddns/​ with this:<​code>​ +If you want to update multiple hosts inside one configuration/section you need the following settings: 
-retrieve_prog="/​usr/bin/​wget ​--no-check-certificate ​-";+<​code>​ 
 +service_name delete ​/ --custom-- 
 +update_url http://​[USERNAME]:​[PASSWORD]​nic/​update?​myip=[IP]&​hostname= 
 + !!! After the '​hostname='​ fill in a comma separated list of hosts to update. 
 + Sample:,​,​ without any spaces in between. 
 + Sample: http://​[USERNAME]:​[PASSWORD]​nic/​update?​myip=[IP]&​,​,​ 
 +domain [Only ONE of your defined hostnames, i.e.] 
 +username [Your username] 
 +password [Your password]
 </​code>​ </​code>​
-An another workaround for wget's SSL bug and (I've tested ​only this one.) is to install curl and +==== ==== 
-replace the retrieve_prog line in /usr/lib/ddns/ ​with this:+Last updated: 2015-07-13\\ 
 +[[​|Homepage]] -- [[http://​​index.php/​SPDNS_FAQ|Wiki/​FAQ]] ​(German ​only) 
 +The default ​is to use your '''​username''' ​and '''​password'''​ as normal inside ​//ddns-scripts// together ​with '''​service_name'​ '​'''​.\\ 
 +If you want to use Update-Token,​ keep in mind that this token can only update the host it is generated for.\\ 
 +Use this settings:
 <​code>​ <​code>​
 +domain [Your defined hostname at] 
 +username [Your defined hostname at] 
 +password [The token generated for this hostname]
 </​code>​ </​code>​
 +If you want to update multiple hosts inside one configuration/​section you need the following settings (Update-Token doesn'​t work):
 +service_name delete / --custom--
 +update_url http://​[USERNAME]:​[PASSWORD]​nic/​update?​myip=[IP]&​hostname=
-===== Using webif ===== + !!! After the '​hostname=' fill in a comma separated list of hosts (max. 20) to update. 
-FIXME+ Sample:,​,​ without any spaces in between. 
 + Sample: http://​[USERNAME]:​[PASSWORD]​nic/​update?​myip=[IP]&​,​,​
-===== Packages ===== +domain [Only ONE of your defined hostnames i.e.] 
-FIXME +username [Your username at] 
- +password [Your password at] 
-updatedd +</​code>​
-updatedd-mod-dyndns +
-updatedd-mod-noip +
-luci +
-webif +
- +
-===== Other methods ===== +
-DDNS scripts have been a surprisingly dynamic(lol) part of OpenWrt. ​ There have been many other scripts and packages used.+
-  * ez-ipupdate (no longer maintained?​) 
-  * updatedd (used in webif) Supports many other services 
-  * [[http://​​viewtopic.php?​pid=48762|JimWright'​s White Russian script]] (probably based off a script mbm posted in the forum) 
-  * [[http://​​viewtopic.php?​id=14040|exobyte'​s Kamikaze script (based of JimWright'​s)]] 
-  * run nsupdate from /​etc/​udhcpc.user to update an authoritative master configured for DDNS. 
doc/howto/ddns.client.1408797709.txt.bz2 · Last modified: 2014/08/23 14:41 by charles_brown