[PLUG] Bind 9.3 question

[Chris Berry]

I'm cleaning up a DNS setup that a previous admin didn't have working very well.  I've fixed a number of issues including dynamic dns.  I've worked with signed zones before and I've worked with dynamic zones, but this is the first time I've worked with one that is both.  My question is about how to make changes. 


For a vanilla zone it's easy: 
1) vi zonefile 
2) service named configtest 
3) rndc reload 


For a signed zone it's not much harder: 
1) vi zonefile 
2) dnssec-signzone the  zonefile to create zonefile.signed 
3) service named configtest 
4) rndc reload 


For a dynamic zone it's not too hard either: 
1) rndc freeze zonefile 
2) vi zonefile 
3) service named configtest 
4) rndc reload 
5) rndc thaw zonefile 


For a dynamic signed zone though I'm a bit hazy.  Something like this comes to mind: 
1) vi zonefile 
2) rndc freeze zonefile.signed 
3) dnssec-signzone the  zonefile to create zonefile.signed 
4) service named configtest 
5) rndc reload 
6) rndc thaw zonefile 

The thing is though, it seems like I'd lose all the dynamic info any time I made a change.  Although I'm pretty sure it would rebuild automatically I can't image that's best practice.  Does anyone have a better way to go about this? 
Chris Berry
Linux Systems Administrator
Davis Tool
x521