a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont<!DOCTYPE book PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN"

bc6f4c1c4c1b739fd06d2de05b77b9d08c4d8a5aTinderbox User "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd"

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont [<!ENTITY mdash "&#8212;">]>

474faea7dd5ebbf64e0a34d70f4deb2e3f413de6Jeremy C. Reed

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont<refentry id="man.named">

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <refentryinfo>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <date>May 21, 2009</date>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont </refentryinfo>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <refmeta>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <refentrytitle><application>named</application></refentrytitle>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <manvolnum>8</manvolnum>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <refmiscinfo>BIND9</refmiscinfo>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont </refmeta>

bf0266f286c9350f6579d03cc74429433d8e6381Tinderbox User

6ea2385360e9e2167e65f9286447da9eea189457Tinderbox User <refnamediv>

19c7b1a0293498a3e36692c59646ed6e15ffc8d0Tinderbox User <refname><application>named</application></refname>

0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews <refpurpose>Internet domain name server</refpurpose>

bc6f4c1c4c1b739fd06d2de05b77b9d08c4d8a5aTinderbox User </refnamediv>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <docinfo>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <copyright>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <year>2004</year>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <year>2005</year>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <year>2006</year>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <year>2007</year>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <year>2008</year>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <year>2009</year>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <year>2011</year>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <year>2013</year>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <holder>Internet Systems Consortium, Inc. ("ISC")</holder>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt </copyright>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <copyright>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <year>2000</year>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <year>2001</year>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <year>2003</year>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <holder>Internet Software Consortium.</holder>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont </copyright>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont </docinfo>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <refsynopsisdiv>

30eec077db2bdcb6f2a0dc388a3cdde2ede75ec1Mark Andrews <cmdsynopsis>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <command>named</command>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <arg><option>-4</option></arg>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <arg><option>-6</option></arg>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <arg><option>-c <replaceable class="parameter">config-file</replaceable></option></arg>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <arg><option>-d <replaceable class="parameter">debug-level</replaceable></option></arg>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <arg><option>-D <replaceable class="parameter">string</replaceable></option></arg>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <arg><option>-E <replaceable class="parameter">engine-name</replaceable></option></arg>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <arg><option>-f</option></arg>

30eec077db2bdcb6f2a0dc388a3cdde2ede75ec1Mark Andrews <arg><option>-g</option></arg>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <arg><option>-m <replaceable class="parameter">flag</replaceable></option></arg>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <arg><option>-n <replaceable class="parameter">#cpus</replaceable></option></arg>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <arg><option>-p <replaceable class="parameter">port</replaceable></option></arg>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <arg><option>-s</option></arg>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <arg><option>-S <replaceable class="parameter">#max-socks</replaceable></option></arg>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <arg><option>-t <replaceable class="parameter">directory</replaceable></option></arg>

78608b0a454246d0e1e0169f1d671b8427e48199Francis Dupont <arg><option>-U <replaceable class="parameter">#listeners</replaceable></option></arg>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <arg><option>-u <replaceable class="parameter">user</replaceable></option></arg>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <arg><option>-v</option></arg>

78608b0a454246d0e1e0169f1d671b8427e48199Francis Dupont <arg><option>-V</option></arg>

78608b0a454246d0e1e0169f1d671b8427e48199Francis Dupont <arg><option>-x <replaceable class="parameter">cache-file</replaceable></option></arg>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont </cmdsynopsis>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont </refsynopsisdiv>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <refsect1>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <title>DESCRIPTION</title>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <para><command>named</command>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont is a Domain Name System (DNS) server,

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont part of the BIND 9 distribution from ISC. For more

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt information on the DNS, see RFCs 1033, 1034, and 1035.

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt </para>

78608b0a454246d0e1e0169f1d671b8427e48199Francis Dupont <para>

78608b0a454246d0e1e0169f1d671b8427e48199Francis Dupont When invoked without arguments, <command>named</command>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont will

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont read the default configuration file

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <filename>/etc/named.conf</filename>, read any initial

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont data, and listen for queries.

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont </para>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt </refsect1>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <refsect1>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <title>OPTIONS</title>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <variablelist>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <varlistentry>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <term>-4</term>

f89a9bcf1c02b9b350b8d29e47b48fdc0d334d2aFrancis Dupont <listitem>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <para>

f89a9bcf1c02b9b350b8d29e47b48fdc0d334d2aFrancis Dupont Use IPv4 only even if the host machine is capable of IPv6.

f89a9bcf1c02b9b350b8d29e47b48fdc0d334d2aFrancis Dupont <option>-4</option> and <option>-6</option> are mutually

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt exclusive.

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt </para>

f89a9bcf1c02b9b350b8d29e47b48fdc0d334d2aFrancis Dupont </listitem>

f89a9bcf1c02b9b350b8d29e47b48fdc0d334d2aFrancis Dupont </varlistentry>

f89a9bcf1c02b9b350b8d29e47b48fdc0d334d2aFrancis Dupont

f89a9bcf1c02b9b350b8d29e47b48fdc0d334d2aFrancis Dupont <varlistentry>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <term>-6</term>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <listitem>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <para>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont Use IPv6 only even if the host machine is capable of IPv4.

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <option>-4</option> and <option>-6</option> are mutually

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt exclusive.

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt </para>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont </listitem>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont </varlistentry>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <varlistentry>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <term>-c <replaceable class="parameter">config-file</replaceable></term>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <listitem>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <para>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont Use <replaceable class="parameter">config-file</replaceable> as the

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt configuration file instead of the default,

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <filename>/etc/named.conf</filename>. To

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt ensure that reloading the configuration file continues

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt to work after the server has changed its working

f89a9bcf1c02b9b350b8d29e47b48fdc0d334d2aFrancis Dupont directory due to to a possible

f89a9bcf1c02b9b350b8d29e47b48fdc0d334d2aFrancis Dupont <option>directory</option> option in the configuration

f89a9bcf1c02b9b350b8d29e47b48fdc0d334d2aFrancis Dupont file, <replaceable class="parameter">config-file</replaceable> should be

f89a9bcf1c02b9b350b8d29e47b48fdc0d334d2aFrancis Dupont an absolute pathname.

f89a9bcf1c02b9b350b8d29e47b48fdc0d334d2aFrancis Dupont </para>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt </listitem>

f89a9bcf1c02b9b350b8d29e47b48fdc0d334d2aFrancis Dupont </varlistentry>

f89a9bcf1c02b9b350b8d29e47b48fdc0d334d2aFrancis Dupont

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <varlistentry>

474faea7dd5ebbf64e0a34d70f4deb2e3f413de6Jeremy C. Reed <term>-d <replaceable class="parameter">debug-level</replaceable></term>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <listitem>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <para>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont Set the daemon's debug level to <replaceable class="parameter">debug-level</replaceable>.

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont Debugging traces from <command>named</command> become

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont more verbose as the debug level increases.

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont </para>

a7d4d528749aa403397b3e2260abf2046a0cfa7bMark Andrews </listitem>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont </varlistentry>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <varlistentry>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <term>-D <replaceable class="parameter">string</replaceable></term>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <listitem>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <para>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt Specifies a string that is used to identify a instance of

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <command>named</command> in a process listing. The contents

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt of <replaceable class="parameter">string</replaceable> are

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt not examined.

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt </para>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt </listitem>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt </varlistentry>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <varlistentry>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <term>-E <replaceable class="parameter">engine-name</replaceable></term>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <listitem>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <para>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt When applicable, specifies the hardware to use for

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt cryptographic operations, such as a secure key store used

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt for signing.

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt </para>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <para>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt When BIND is built with OpenSSL PKCS#11 support, this defaults

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt to the string "pkcs11", which identifies an OpenSSL engine

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt that can drive a cryptographic accelerator or hardware service

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt module. When BIND is built with native PKCS#11 cryptography

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt (--enable-native-pkcs11), it defaults to the path of the PKCS#11

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont provider library specified via "--with-pkcs11".

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt </para>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont </listitem>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt </varlistentry>

30eec077db2bdcb6f2a0dc388a3cdde2ede75ec1Mark Andrews

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <varlistentry>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <term>-f</term>

b0af7cbe9220775e23127f2f38750e4a281ee871Jeremy C. Reed <listitem>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt <para>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt Run the server in the foreground (i.e. do not daemonize).

b0af7cbe9220775e23127f2f38750e4a281ee871Jeremy C. Reed </para>

ba751492fcc4f161a18b983d4f018a1a52938cb9Evan Hunt </listitem>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont </varlistentry>

b0af7cbe9220775e23127f2f38750e4a281ee871Jeremy C. Reed

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <varlistentry>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont <term>-g</term>

b0af7cbe9220775e23127f2f38750e4a281ee871Jeremy C. Reed <listitem>

b0af7cbe9220775e23127f2f38750e4a281ee871Jeremy C. Reed <para>

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont Run the server in the foreground and force all logging

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt to <filename>stderr</filename>.

a631b30b1ddd8b2ea780371d0d99ba1c05bc7e42Francis Dupont </para>

14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt </listitem>

</varlistentry>

<varlistentry>

<term>-m <replaceable class="parameter">flag</replaceable></term>

<listitem>

<para>

Turn on memory usage debugging flags. Possible flags are

<replaceable class="parameter">usage</replaceable>,

<replaceable class="parameter">trace</replaceable>,

<replaceable class="parameter">record</replaceable>,

<replaceable class="parameter">size</replaceable>, and

<replaceable class="parameter">mctx</replaceable>.

These correspond to the ISC_MEM_DEBUGXXXX flags described in

<filename>&lt;isc/mem.h&gt;</filename>.

</para>

</listitem>

</varlistentry>

<varlistentry>

<term>-n <replaceable class="parameter">#cpus</replaceable></term>

<listitem>

<para>

Create <replaceable class="parameter">#cpus</replaceable> worker threads

to take advantage of multiple CPUs. If not specified,

<command>named</command> will try to determine the

number of CPUs present and create one thread per CPU.

If it is unable to determine the number of CPUs, a

single worker thread will be created.

</para>

</listitem>

</varlistentry>

<varlistentry>

<term>-p <replaceable class="parameter">port</replaceable></term>

<listitem>

<para>

Listen for queries on port <replaceable class="parameter">port</replaceable>. If not

specified, the default is port 53.

</para>

</listitem>

</varlistentry>

<varlistentry>

<term>-s</term>

<listitem>

<para>

Write memory usage statistics to <filename>stdout</filename> on exit.

</para>

<note>

<para>

This option is mainly of interest to BIND 9 developers

and may be removed or changed in a future release.

</para>

</note>

</listitem>

</varlistentry>

<varlistentry>

<term>-S <replaceable class="parameter">#max-socks</replaceable></term>

<listitem>

<para>

Allow <command>named</command> to use up to

<replaceable class="parameter">#max-socks</replaceable> sockets.

</para>

<warning>

<para>

This option should be unnecessary for the vast majority

of users.

The use of this option could even be harmful because the

specified value may exceed the limitation of the

underlying system API.

It is therefore set only when the default configuration

causes exhaustion of file descriptors and the

operational environment is known to support the

specified number of sockets.

Note also that the actual maximum number is normally a little

fewer than the specified value because

<command>named</command> reserves some file descriptors

for its internal use.

</para>

</warning>

</listitem>

</varlistentry>

<varlistentry>

<term>-t <replaceable class="parameter">directory</replaceable></term>

<listitem>

<para>Chroot

to <replaceable class="parameter">directory</replaceable> after

processing the command line arguments, but before

reading the configuration file.

</para>

<warning>

<para>

This option should be used in conjunction with the

<option>-u</option> option, as chrooting a process

running as root doesn't enhance security on most

systems; the way <function>chroot(2)</function> is

defined allows a process with root privileges to

escape a chroot jail.

</para>

</warning>

</listitem>

</varlistentry>

<varlistentry>

<term>-U <replaceable class="parameter">#listeners</replaceable></term>

<listitem>

<para>

Use <replaceable class="parameter">#listeners</replaceable>

worker threads to listen for incoming UDP packets on each

address. If not specified, <command>named</command> will

use the number of detected CPUs. If <option>-n</option>

has been set to a higher value than the number of CPUs,

then <option>-U</option> may be increased as high as that

value, but no higher.

</para>

</listitem>

</varlistentry>

<varlistentry>

<term>-u <replaceable class="parameter">user</replaceable></term>

<listitem>

<para>Setuid

to <replaceable class="parameter">user</replaceable> after completing

privileged operations, such as creating sockets that

listen on privileged ports.

</para>

<note>

<para>

On Linux, <command>named</command> uses the kernel's

capability mechanism to drop all root privileges

except the ability to <function>bind(2)</function> to

a

privileged port and set process resource limits.

Unfortunately, this means that the <option>-u</option>

option only works when <command>named</command> is

run

on kernel 2.2.18 or later, or kernel 2.3.99-pre3 or

later, since previous kernels did not allow privileges

to be retained after <function>setuid(2)</function>.

</para>

</note>

</listitem>

</varlistentry>

<varlistentry>

<term>-v</term>

<listitem>

<para>

Report the version number and exit.

</para>

</listitem>

</varlistentry>

<varlistentry>

<term>-V</term>

<listitem>

<para>

Report the version number and build options, and exit.

</para>

</listitem>

</varlistentry>

<varlistentry>

<term>-x <replaceable class="parameter">cache-file</replaceable></term>

<listitem>

<para>

Load data from <replaceable class="parameter">cache-file</replaceable> into the

cache of the default view.

</para>

<warning>

<para>

This option must not be used. It is only of interest

to BIND 9 developers and may be removed or changed in a

future release.

</para>

</warning>

</listitem>

</varlistentry>

</variablelist>

</refsect1>

<refsect1>

<title>SIGNALS</title>

<para>

In routine operation, signals should not be used to control

the nameserver; <command>rndc</command> should be used

instead.

</para>

<variablelist>

<varlistentry>

<term>SIGHUP</term>

<listitem>

<para>

Force a reload of the server.

</para>

</listitem>

</varlistentry>

<varlistentry>

<term>SIGINT, SIGTERM</term>

<listitem>

<para>

Shut down the server.

</para>

</listitem>

</varlistentry>

</variablelist>

<para>

The result of sending any other signals to the server is undefined.

</para>

</refsect1>

<refsect1>

<title>CONFIGURATION</title>

<para>

The <command>named</command> configuration file is too complex

to describe in detail here. A complete description is provided

in the

<citetitle>BIND 9 Administrator Reference Manual</citetitle>.

</para>

<para>

<command>named</command> inherits the <function>umask</function>

(file creation mode mask) from the parent process. If files

created by <command>named</command>, such as journal files,

need to have custom permissions, the <function>umask</function>

should be set explicitly in the script used to start the

<command>named</command> process.

</para>

</refsect1>

<refsect1>

<title>FILES</title>

<variablelist>

<varlistentry>

<term><filename>/etc/named.conf</filename></term>

<listitem>

<para>

The default configuration file.

</para>

</listitem>

</varlistentry>

<varlistentry>

<term><filename>/var/run/named/named.pid</filename></term>

<listitem>

<para>

The default process-id file.

</para>

</listitem>

</varlistentry>

</variablelist>

</refsect1>

<refsect1>

<title>SEE ALSO</title>

<para><citetitle>RFC 1033</citetitle>,

<citetitle>RFC 1034</citetitle>,

<citetitle>RFC 1035</citetitle>,

<citerefentry>

<refentrytitle>named-checkconf</refentrytitle>

<manvolnum>8</manvolnum>

</citerefentry>,

<citerefentry>

<refentrytitle>named-checkzone</refentrytitle>

<manvolnum>8</manvolnum>

</citerefentry>,

<citerefentry>

<refentrytitle>rndc</refentrytitle>

<manvolnum>8</manvolnum>

</citerefentry>,

<citerefentry>

<refentrytitle>lwresd</refentrytitle>

<manvolnum>8</manvolnum>

</citerefentry>,

<citerefentry>

<refentrytitle>named.conf</refentrytitle>

<manvolnum>5</manvolnum>

</citerefentry>,

<citetitle>BIND 9 Administrator Reference Manual</citetitle>.

</para>

</refsect1>

<refsect1>

<title>AUTHOR</title>

<para><corpauthor>Internet Systems Consortium</corpauthor>

</para>

</refsect1>

</refentry><!--