azddns 0.2.1
See the version list below for details.
dotnet tool install --global azddns --version 0.2.1
dotnet new tool-manifest
dotnet tool install --local azddns --version 0.2.1
#tool dotnet:?package=azddns&version=0.2.1
nuke :add-package azddns --version 0.2.1
azddns – Azure Dynamic DNS CLI Tool
A CLI tool to update Azure DNS A or AAAA records with the current public IP address of the machine it runs on (e.g., a Pi, dev laptop, container, or VM). Intended for use cases like keeping dynamic IPs updated in Azure DNS so they can be referenced in firewall rules or other infrastructure.
Keeps records like office.maxwellweru.io or office.contoso.com up-to-date with the current public IP of dynamic endpoints. This consequently enables firewall rules to allow access based on hostname/IPs synced via azfwman.
IP information sourced from ipify using https://api64.ipify.org?format=json
✅ Features
- Support IPv6 alongside IPv4 (i.e.
AAAAandArecords). - Support for dry run (useful to see if it will work as expected).
- Check current IP to prevent unnecessary updates.
- Runs on headless devices (e.g., Raspberry Pi) and in automated environments (e.g., cron jobs, ACA, AKS, ACI).
- Support homebrew, scoop, docker and standalone binaries.
🚀 CLI Usage
1. Interactive / Developer Mode
azddns update \
--zone maxwellweru.io \
--record office \
--resource-group infra \
--subscription personal \
--ttl 3600 \
--interactive \
--dry-run
- Uses
DefaultAzureCredentialwith interactive browser login allowed. - Useful on dev laptops where
az loginhas already been run.
2. Headless / Automated Mode
azddns run --config ~/.az-ddns/config.json
- Uses config file instead of CLI args.
- Designed for headless environments like:
- Raspberry Pi
- GitHub Actions
- Azure Container Apps / AKS / ACI
systemdservices
⚙️ Config File Format (config.json)
{
"subscription": "personal",
"resourceGroup": "infra",
"zoneName": "maxwellweru.io",
"recordName": "office",
"ttl": 3600,
"interval": 900,
"dryRun": false
}
- subscription: Azure subscription ID or name.
- resourceGroup: Azure resource group for the DNS zone.
- zoneName: DNS zone name.
- recordName: A/AAAA record to update.
- ttl: Optional TTL (time-to-live) in seconds for the record (default: 3600).
- interval: Optional interval in seconds to check for changes (default: 900).
- dryRun: Optionally test the logic without actually updating the DNS records. (default: false).
🔐 Authentication Strategy
Authentication is handled using Azure.Identity's DefaultAzureCredential. It chains multiple sources as described in the official docs
Service Principal (preferred for headless)
export AZURE_TENANT_ID=ttt
export AZURE_CLIENT_ID=ccc
export AZURE_CLIENT_SECRET=sss
azddns run --config ~/.az-ddns/config.json
A managed identity is basically a service principal that you use without having to manage the credentials. System assigned managed identities are simple and no further configuration is required. For User assigned managed identity, you only need to set the
AZURE_CLIENT_IDenvironment variable to disambiguate from any other being used by the platform such as when using ACA jobs.
📥 Installation
The CLI tool is available for macOS, Windows and Linux. You can download each of the binaries in the releases or you can use package managers in the respective platforms.
🍎 macOS
The CLI tool is available on macOS via Homebrew:
brew install mburumaxwell/tap/azddns
🖥️ Windows
The CLI tool is available on Windows via Scoop package manager:
scoop bucket add mburumaxwell https://github.com/mburumaxwell/scoop-tools.git
scoop install azddns
🛠️ .NET Tool
The CLI tool is available anywhere .NET is installed as a local tool or a global tool:
dotnet tool install --global azddns
azddns --help
🐳 Docker
The CLI tool is also available as a Docker image: mburumaxwell/azddns.
With the update command
docker run --rm -it \
--env AZURE_TENANT_ID=ttt \
--env AZURE_CLIENT_ID=ccc \
--env AZURE_CLIENT_SECRET=sss \
ghcr.io/mburumaxwell/azddns update \
--zone maxwellweru.io \
--record office \
--resource-group infra \
--subscription personal \
--ttl 3600 \
--dry-run
With a config file:
docker run --rm -it \
--env AZURE_TENANT_ID=ttt \
--env AZURE_CLIENT_ID=ccc \
--env AZURE_CLIENT_SECRET=sss \
--volume "$HOME/.az-ddns:/config" \
ghcr.io/mburumaxwell/azddns \
run --config /config/config.json
⚡ Using Azure CLI authentication (no env vars)
If you've already authenticated locally with az login. You can mount your Azure CLI credentials into the container to enable DefaultAzureCredential pick up your local az login session automatically:
docker run --rm -it \
--volume "$HOME/.azure:/root/.azure" \
--volume "$HOME/.az-ddns:/config" \
ghcr.io/mburumaxwell/azddns \
run --config /config/config.json
Alternatives
There are quite a number of alternatives but nothing quite matched what I needed. This is what I looked at:
- https://github.com/TechJosh/AzureDynamicDNS
- https://github.com/FrodeHus/azure-dyndns
- https://github.com/PatrickTCB/azure-ddns
- https://github.com/izpavlovich/azure-dns-update
- https://github.com/dewhurstwill/azure-ddns
- https://github.com/danimart1991/azure-dns-updater
- https://github.com/esqew/azure-dynamic-dns
- https://github.com/cgreenza/AzureDynamicDns
- https://github.com/jeff-winn/azure-ddns
- https://github.com/mplogas/azure_dnsupdater
- https://github.com/stonekw/azure-ddns
- https://github.com/KelvinTegelaar/AzDynaDNS
License
The Library is licensed under the MIT license. Refer to the LICENSE file for more information.
| Product | Versions Compatible and additional computed target framework versions. |
|---|---|
| .NET | net9.0 is compatible. net9.0-android was computed. net9.0-browser was computed. net9.0-ios was computed. net9.0-maccatalyst was computed. net9.0-macos was computed. net9.0-tvos was computed. net9.0-windows was computed. net10.0 was computed. net10.0-android was computed. net10.0-browser was computed. net10.0-ios was computed. net10.0-maccatalyst was computed. net10.0-macos was computed. net10.0-tvos was computed. net10.0-windows was computed. |
This package has no dependencies.