Resource · Glossary

    What Is DDNS (Dynamic DNS)?

    DDNS solves a small, stubborn problem: you want a stable name for a machine whose IP address keeps changing. Dynamic DNS watches the address and rewrites the DNS record whenever it moves — which is why the VPN endpoint at a branch office on consumer broadband stays reachable by name.

    How It Works

    A Name That Follows Its Machine

    Detect

    A client in the router or host notices the public IP changed.

    Update

    It pushes the new address to the DDNS provider's API.

    Resolve

    The hostname's DNS record now answers with the new IP.

    Harden

    A stable name means stable exposure — VPN and MFA, always.

    Where It Fits

    DDNS at the Edges, IPAM at the Core

    DDNS is the right tool where addresses genuinely can't be planned: branch sites on consumer links, home-office VPN endpoints, field equipment. It's the wrong habit inside the data center, where "the address changed and something followed it" should never be how identity works. Core and management networks belong under planned, tracked addressing — every IP tied to a known device, subnets documented and verified — which is IPAM's job. The mature setup uses both deliberately: DDNS for the ragged edges, discovery-verified IPAM for everything that matters.

    Right: remote sites on dynamic IPs
    Right: branch VPN endpoints
    Wrong: production server identity
    Wrong: management (BMC) networks
    Core estate: planned IPAM instead
    FAQ

    Common Questions About DDNS

    What is DDNS?

    DDNS (Dynamic DNS) automatically updates a DNS record when a host's IP address changes — so a name keeps pointing at the right machine even when the address behind it moves, as with consumer ISP connections and remote sites.

    How does DDNS work?

    A small client (in the router or on a host) detects the current public IP and pushes updates to a DDNS provider, which keeps the hostname's DNS record current — usually within seconds to minutes of a change.

    When is DDNS used in business?

    Remote and edge sites on consumer-grade connections, small-office VPN endpoints, and lab or DR equipment without static IPs. It's a pragmatic tool — with the caveat that anything reachable by DDNS name is internet-exposed and needs hardening.

    Is DDNS a replacement for static IPs?

    For availability of a name, largely yes; for infrastructure identity, no. Production and management networks should still use planned, tracked addressing (IPAM) — DDNS is for the edges where static allocation isn't practical.

    Planned addressing for everything that matters