惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Security Archives - TechRepublic
Security Archives - TechRepublic
O
OpenAI News
W
WeLiveSecurity
Hacker News: Ask HN
Hacker News: Ask HN
Hacker News - Newest:
Hacker News - Newest: "LLM"
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
T
Troy Hunt's Blog
L
LINUX DO - 最新话题
SecWiki News
SecWiki News
Schneier on Security
Schneier on Security
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
N
News and Events Feed by Topic
TaoSecurity Blog
TaoSecurity Blog
H
Heimdal Security Blog
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
P
Palo Alto Networks Blog
Project Zero
Project Zero
Attack and Defense Labs
Attack and Defense Labs
C
CXSECURITY Database RSS Feed - CXSecurity.com
T
Tor Project blog
Scott Helme
Scott Helme
T
Threat Research - Cisco Blogs
Simon Willison's Weblog
Simon Willison's Weblog
Spread Privacy
Spread Privacy
Cisco Talos Blog
Cisco Talos Blog
T
Threatpost
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
The Last Watchdog
The Last Watchdog
Google DeepMind News
Google DeepMind News
P
Privacy & Cybersecurity Law Blog
Know Your Adversary
Know Your Adversary
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
L
Lohrmann on Cybersecurity
Cloudbric
Cloudbric
I
Intezer
The Hacker News
The Hacker News
L
LINUX DO - 热门话题
AI
AI
B
Blog
S
Securelist
P
Proofpoint News Feed
量子位
Jina AI
Jina AI
V2EX - 技术
V2EX - 技术
T
The Exploit Database - CXSecurity.com
酷 壳 – CoolShell
酷 壳 – CoolShell
Recent Commits to openclaw:main
Recent Commits to openclaw:main
C
CERT Recently Published Vulnerability Notes
J
Java Code Geeks
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻

思有云 - IOIOX - DDNS

群晖NAS网络服务 - docker 部署配置腾讯云 DNSPod DDNS 动态域名解析 - 思有云 群晖NAS网络服务 - docker 部署配置阿里云 DDNS 动态域名解析 - 思有云 群晖NAS基础服务 - 外网访问家里的群晖NAS - 思有云 梅林固件路由器配置国际域名DDNS动态域名解析教程 - 思有云 - IOIOX 群晖NAS配置DNSPod国际域名DDNS动态域名解析教程 - 思有云 - IOIOX 群晖NAS配置自带DDNS动态域名解析教程 - 思有云 - IOIOX 详解外网访问内网-DDNS和内网穿透的选择 - 思有云 - IOIOX
群晖NAS网络服务 - 原生 DDNS 部署配置 Cloudflare DDNS 动态域名解析 - 思有云
博主: Stille · 2026-02-04 · via 思有云 - IOIOX - DDNS

DSM7.2 纯ipv6脚本见下文,
ipv6脚本原理:由于在群晖DDNS面板配置中,无法指定ipv6地址的获取,故通过读取群辉网卡中的ipv6地址,实现ddns中ipv6地址的设置;
所以在使用该脚本时,需注意修改 第20行代码“ip6fetch=$(ip -6 addr show ovs_eth0 | grep -oE "$ipv6Regex" | head -n 1 || true)”获取的ipv6地址是否是真正的公网ipv6地址,在测试时,可以通过 bash -x /sbin/cloudflareddns.sh 查看输出的ipv6地址是否是正确的公网ip;其中涉及网口(尤其是双网口设备)的选择、正则的匹配、正则匹配结果正确ip行的选择。
关键命令行解析:
通过linux 命令
ip -6 addr 可以获取所有网卡的ipv6地址;
show ovs_eth0 只显示第一个网口的信息(此处可以通过 ip -6 addr 显示的信息,决定是否修改 ovs_eth0的值,有可能网线插的另一个网口,可能需要修改为 ovs_eth1 ,也有可能网卡命名规则不是 ovs_xxx的形式,需要根据实际情况修改为正确的网卡名称)
| grep -oE "$ipv6Regex" 正则匹配显示网口的ipv6地址
| head -n 1 值获取正则匹配结果后的第一行信息(ipv6地址可能有多个,只能取一个作为DDNS的更新ip)

也可以通过linux命令打印输出的ipv6地址,若不正确,需自行调整
ip -6 addr show ovs_eth0 | grep -oE "(([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:){1,3}(:[0-9a-fA-F]{1,4}){1,4}|([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(:[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]).){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]{1,4}:){1,4}:((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]).){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]))" || true

!/bin/bashcopyright:https://raw.githubusercontent.com/joshuaavalon/SynologyCloudflareDDNS/master/cloudflareddns.sh

set -e;
ipv6Regex="(([0-9a-fA-F]{1,4}:){7,7}[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,7}:|([0-9a-fA-F]{1,4}:){1,6}:[0-9a-fA-F]{1,4}|([0-9a-fA-F]{1,4}:){1,5}(:[0-9a-fA-F]{1,4}){1,2}|([0-9a-fA-F]{1,4}:){1,4}(:[0-9a-fA-F]{1,4}){1,3}|([0-9a-fA-F]{1,4}:){1,3}(:[0-9a-fA-F]{1,4}){1,4}|([0-9a-fA-F]{1,4}:){1,2}(:[0-9a-fA-F]{1,4}){1,5}|[0-9a-fA-F]{1,4}:((:[0-9a-fA-F]{1,4}){1,6})|:((:[0-9a-fA-F]{1,4}){1,7}|:)|fe80:(:[0-9a-fA-F]{0,4}){0,4}%[0-9a-zA-Z]{1,}|::(ffff(:0{1,4}){0,1}:){0,1}((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]).){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9])|([0-9a-fA-F]{1,4}:){1,4}:((25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]).){3,3}(25[0-5]|(2[0-4]|1{0,1}[0-9]){0,1}[0-9]))"
ipv6="true"

proxy="true"ask for existing proxy, don't override it <.<DSM Config

username="$1"
password="$2"
hostname="$3"
ipAddr="$4"
recType6="AAAA"

Fetch and filter IPv6, if Synology won't provide it

if [[ $ipv6 = "true" ]]; then

# ip6fetch=$(ip -6 addr show eth0 | grep -oP "$ipv6Regex" || true)
# Look out: `ip -6 addr show {your ipv6 network card} [filter your one ipv6 addr] `
ip6fetch=$(ip -6 addr show ovs_eth0 | grep -oE "$ipv6Regex" | head -n 1 || true)
# ip6Addr=$(if [ -z "$ip6fetch" ]; then echo ""; else echo "${ip6fetch:0:$((${#ip6fetch})) - 7}"; fi) # in case of NULL, echo NULL
# Look out: ip6Addr final output your public ipv6 addr
ip6Addr=$(if [ -z "$ip6fetch" ]; then echo ""; else echo "${ip6fetch}"; fi) # in case of NULL, echo NULL
if [[ -z "$ip6Addr" ]]; then
    ipv6="false";     # if only ipv4 is available
    echo "not obtain ipv6 addr";
    exit 1;
fi

else

echo "not obtain ipv6 addr";
exit 1;

fi

above only, if IPv4 and/or IPv6 is provided

listDnsv6Api="https://api.cloudflare.com/client/v4/zones/${username}/dns_records?type=${recType6}&name=${hostname}" # if only IPv4 is provided

resv6=$(curl -s -X GET "$listDnsv6Api" -H "Authorization: Bearer $password" -H "Content-Type:application/json");
resSuccess=$(echo "$resv6" | jq -r ".success")

if [[ $resSuccess != "true" ]]; then

echo "badauth";
exit 1;

fi

recordIdv6=$(echo "$resv6" | jq -r ".result[0].id");
recordIpv6=$(echo "$resv6" | jq -r ".result[0].content");
recordProxv6=$(echo "$resv6" | jq -r ".result[0].proxied");

API-Calls for creating DNS-Entries

createDnsApi="https://api.cloudflare.com/client/v4/zones/${username}/dns_records" # does also work for IPv6

API-Calls for update DNS-Entries

updateDnsApi="https://api.cloudflare.com/client/v4/zones/${username}/dns_records/${recordId}" # for IPv4 or if provided IPv6
update6DnsApi="https://api.cloudflare.com/client/v4/zones/${username}/dns_records/${recordIdv6}" # if only IPv4 is provided

if [[ $recordIpv6 = "$ip6Addr" ]]; then

echo "nochg";
exit 0;

fi

if [[ $recordIdv6 = "null" ]]; then

# IPv6 Record not exists
proxy="false"; # new entry, enable proxy by default
res6=$(curl -s -X POST "$createDnsApi" -H "Authorization: Bearer $password" -H "Content-Type:application/json" --data "{\"type\":\"$recType6\",\"name\":\"$hostname\",\"content\":\"$ip6Addr\",\"proxied\":$proxy}");

else

# IPv6 Record exists
res6=$(curl -s -X PUT "$update6DnsApi" -H "Authorization: Bearer $password" -H "Content-Type:application/json" --data "{\"type\":\"$recType6\",\"name\":\"$hostname\",\"content\":\"$ip6Addr\",\"proxied\":$recordProxv6}");

fi;
res6Success=$(echo "$res6" | jq -r ".success");

if [[ $res6Success = "true" ]]; then

echo "good";

else

echo "badauth";

fi