diff options
| author | Sylvain Herlédan <sylvain.herledan@hrafnagud.info> | 2021-04-10 21:58:39 +0200 |
|---|---|---|
| committer | Sylvain Herlédan <sylvain.herledan@hrafnagud.info> | 2021-04-10 21:58:39 +0200 |
| commit | f7d26c8895349f8e954d8b5844019d71c88825ce (patch) | |
| tree | 586d876ff45cdb538cbf23c7a067a3de64b96a09 /gandi_dns_update.py | |
| parent | ab5461d33e354cd604c4193353a97d48f1f0f753 (diff) | |
| download | admin_toolbox-f7d26c8895349f8e954d8b5844019d71c88825ce.tar.gz admin_toolbox-f7d26c8895349f8e954d8b5844019d71c88825ce.tar.bz2 admin_toolbox-f7d26c8895349f8e954d8b5844019d71c88825ce.zip | |
Add Python script which updates DNS records using Gandi API to keep track of machines with dynamic IP addresses.
Diffstat (limited to 'gandi_dns_update.py')
| -rw-r--r-- | gandi_dns_update.py | 203 |
1 files changed, 203 insertions, 0 deletions
diff --git a/gandi_dns_update.py b/gandi_dns_update.py new file mode 100644 index 0000000..6bce6fb --- /dev/null +++ b/gandi_dns_update.py @@ -0,0 +1,203 @@ +# +# + +""" +@author: <sylvain.herledan@hrafnagud.info> +@date: 2021-04-10 +""" + +import os +import sys +import json +import socket +import typing +import logging +import argparse +import http.client + +logger = logging.getLogger(__name__) + + +def get_ip_from_ifconfig_me( + ) -> typing.Tuple[bool, typing.Optional[bytes]]: + """""" + conn = http.client.HTTPSConnection('ifconfig.me') # nosec + + try: + conn.request('GET', '/') + r = conn.getresponse() + data = r.read() + r.close() + except socket.gaierror: + logger.error('ifconfig.me unavailable') + return False, None + except socket.timeout: + logger.error('ifconfig.me timeout') + return False, None + finally: + conn.close() + + return True, data + + +def get_ip_from_ipecho_net( + ) -> typing.Tuple[bool, typing.Optional[bytes]]: + """""" + conn = http.client.HTTPSConnection('ipecho.net') # nosec + + try: + conn.request('GET', '/plain') + r = conn.getresponse() + data = r.read() + r.close() + except socket.gaierror: + logger.error('ipecho.net unavailable') + return False, None + except socket.timeout: + logger.error('ipecho.net timeout') + return False, None + finally: + conn.close() + + return True, data + + +def get_ip_from_ipinfo_io( + ) -> typing.Tuple[bool, typing.Optional[bytes]]: + """""" + conn = http.client.HTTPSConnection('ipinfo.io') # nosec + try: + conn.request('GET', '/ip') + r = conn.getresponse() + data = r.read() + r.close() + except socket.gaierror: + logger.error('ipinfo.io unavailable') + return False, None + except socket.timeout: + logger.error('ipinfo.io timeout') + return False, None + finally: + conn.close() + + return True, data + + +def update_record(api_key: str, + fqdn: str, + r_name: str, + r_type: str, + ip_address: str + ) -> typing.Tuple[bool, typing.Optional[bytes]]: + """""" + headers = {'Authorization': f'Apikey {api_key}'} + _payload = {'rrset_values': [ip_address, ], + 'rrset_ttl': 300} + payload = json.dumps(_payload) + + ok = False + conn = http.client.HTTPSConnection('api.gandi.net') # nosec + try: + conn.request('PUT', + f'/v5/livedns/domains/{fqdn}/records/{r_name}/{r_type}', + headers=headers, body=payload) + r = conn.getresponse() + ok = (201 == r.status) + data = r.read() + r.close() + except socket.gaierror: + logger.error('api.gandi.net unavailable') + return False, None + except socket.timeout: + logger.error('api.gandi.net timeout') + return False, None + finally: + conn.close() + + return ok, data + + +if '__main__' == __name__: + # Setup logging + main_logger = logging.getLogger() + handler = logging.StreamHandler() + handler.setLevel(logging.DEBUG) + main_logger.addHandler(handler) + main_logger.setLevel(logging.DEBUG) + + parser = argparse.ArgumentParser() + parser.add_argument('config_path', type=str) + args = parser.parse_args() + + cfg_path = args.config_path + if not os.path.exists(cfg_path): + logger.error(f'"{cfg_path}" configuration file not found') + sys.exit(1) + + # Get public IP address from various sources + ip_addresses = [] + + ok, ip1 = get_ip_from_ifconfig_me() + if (ok is True) and (ip1 is not None): + ip_addresses.append(ip1.decode('utf-8')) + + ok, ip2 = get_ip_from_ipecho_net() + if (ok is True) and (ip2 is not None): + ip_addresses.append(ip2.decode('utf-8')) + + ok, ip3 = get_ip_from_ipinfo_io() + if (ok is True) and (ip3 is not None): + ip_addresses.append(ip3.decode('utf-8')) + + if 0 >= len(ip_addresses): + logger.error('Could not get public IP address from any source') + sys.exit(1) + + # Make sure the collected addresses match + ip_checks = [_ for _ in ip_addresses if _ == ip_addresses[0]] + if len(ip_checks) < len(ip_addresses): + logger.error('Public IP addresses do not match') + sys.exit(1) + + ip = ip_addresses[0] + + # Read configuration + cfg = None + with open(cfg_path, 'r') as f: + try: + cfg = json.load(f) + except ValueError: + logger.error(f'{cfg_path} is not a valid JSON file') + + if cfg is None: + logger.error('Impossible to load configuration') + sys.exit(1) + + api_key = cfg.get('api_key', None) + fqdn = cfg.get('fqdn', None) + record_name = cfg.get('record_name', None) + history_path = cfg.get('history_path', None) + + if None in (api_key, fqdn, record_name, history_path): + logger.error('Configuration is missing a required field') + sys.exit(1) + + old_ip = None + if os.path.exists(history_path): + with open(history_path, 'r') as f: + old_ip = f.read() + + if ip == old_ip: + logger.info('IP address has not changed since last DNS record update.') + sys.exit(0) + + # Update DNS record + ok, result = update_record(api_key, fqdn, record_name, 'A', ip) + + if ok is False: + logger.error('Failed to update DNS record using api.gandi.net') + logger.debug(result) + sys.exit(1) + + with open(history_path, 'w') as f: + f.write(ip) |