bin/python/dnssec-checkds.html

	dnssec-checkds.html revision 1cefb9df3fa34d08734f29005cfafa6be5cf3e93
1341N/A<!--
1341N/A - Copyright (C) 2012 Internet Systems Consortium, Inc. ("ISC")
1341N/A -
1341N/A - Permission to use, copy, modify, and/or distribute this software for any
1341N/A - purpose with or without fee is hereby granted, provided that the above
1341N/A - copyright notice and this permission notice appear in all copies.
1341N/A -
1341N/A - THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
1341N/A - REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
1341N/A - AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
1341N/A - INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
1341N/A - LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
1341N/A - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
1341N/A - PERFORMANCE OF THIS SOFTWARE.
1341N/A-->
1341N/A<!-- $Id$ -->
1341N/A<html>
1341N/A<head>
1341N/A<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
1341N/A<title>dnssec-checkds</title>
1341N/A<meta name="generator" content="DocBook XSL Stylesheets V1.71.1">
1341N/A</head>
1341N/A<body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF"><div class="refentry" lang="en">
1341N/A<a name="man.dnssec-dsfromkey"></a><div class="titlepage"></div>
1341N/A<div class="refnamediv">
1341N/A<h2>Name</h2>
1341N/A<p><span class="application">dnssec-dsfromkey</span> &#8212; DNSSEC DS RR generation tool</p>
1341N/A</div>
1341N/A<div class="refsynopsisdiv">
1341N/A<h2>Synopsis</h2>
1341N/A<div class="cmdsynopsis"><p><code class="command">dnssec-chedkcs</code>  [<code class="option">-l <em class="replaceable"><code>domain</code></em></code>] [<code class="option">-f <em class="replaceable"><code>file</code></em></code>] [<code class="option">-d <em class="replaceable"><code>dig path</code></em></code>] [<code class="option">-D <em class="replaceable"><code>dsfromkey path</code></em></code>] {zone}</p></div>
1341N/A<div class="cmdsynopsis"><p><code class="command">dnssec-dsfromkey</code>  [<code class="option">-l <em class="replaceable"><code>domain</code></em></code>] [<code class="option">-f <em class="replaceable"><code>file</code></em></code>] [<code class="option">-d <em class="replaceable"><code>dig path</code></em></code>] [<code class="option">-D <em class="replaceable"><code>dsfromkey path</code></em></code>] {zone}</p></div>
1341N/A</div>
1341N/A<div class="refsect1" lang="en">
1341N/A<a name="id2543418"></a><h2>DESCRIPTION</h2>
1341N/A<p><span><strong class="command">dnssec-checkds</strong></span>
1341N/A      verifies the correctness of Delegation Signer (DS) or DNSSEC
1341N/A      Lookaside Validation (DLV) resource records for keys in a specified
1341N/A      zone.
1341N/A    </p>
1341N/A</div>
1341N/A<div class="refsect1" lang="en">
1341N/A<a name="id2543430"></a><h2>OPTIONS</h2>
1341N/A<div class="variablelist"><dl>
1341N/A<dt><span class="term">-f <em class="replaceable"><code>file</code></em></span></dt>
1341N/A<dd><p>
1341N/A            If a <code class="option">file</code> is specified, then the zone is
1341N/A            read from that file to find the DNSKEY records.  If not,
1341N/A            then the DNSKEY records for the zone are looked up in the DNS.
1341N/A          </p></dd>
1341N/A<dt><span class="term">-l <em class="replaceable"><code>domain</code></em></span></dt>
1341N/A<dd><p>
1341N/A            Check for a DLV record in the specified lookaside domain,
1341N/A            instead of checking for a DS record in the zone's parent.
1341N/A            For example, to check for DLV records for "example.com"
1341N/A            in ISC's DLV zone, use:
1341N/A            <span><strong class="command">dnssec-checkds -l dlv.isc.org example.com</strong></span>
1341N/A          </p></dd>
1341N/A<dt><span class="term">-d <em class="replaceable"><code>dig path</code></em></span></dt>
1341N/A<dd><p>
1341N/A            Specifies a path to a <span><strong class="command">dig</strong></span> binary.  Used
1341N/A            for testing.
1341N/A          </p></dd>
1341N/A<dt><span class="term">-D <em class="replaceable"><code>dsfromkey path</code></em></span></dt>
1341N/A<dd><p>
1341N/A            Specifies a path to a <span><strong class="command">dnssec-dsfromkey</strong></span> binary.
1341N/A            Used for testing.
1341N/A          </p></dd>
1341N/A</dl></div>
1341N/A</div>
1341N/A<div class="refsect1" lang="en">
1341N/A<a name="id2543526"></a><h2>SEE ALSO</h2>
1341N/A<p><span class="citerefentry"><span class="refentrytitle">dnssec-dsfromkey</span>(8)</span>,
1341N/A      <span class="citerefentry"><span class="refentrytitle">dnssec-keygen</span>(8)</span>,
1341N/A      <span class="citerefentry"><span class="refentrytitle">dnssec-signzone</span>(8)</span>,
1341N/A    </p>
1341N/A</div>
1341N/A<div class="refsect1" lang="en">
1341N/A<a name="id2543560"></a><h2>AUTHOR</h2>
1341N/A<p><span class="corpauthor">Internet Systems Consortium</span>
1341N/A    </p>
1341N/A</div>
1341N/A</div></body>
1341N/A</html>
1341N/A