rndc.html revision 4610465ed9408cbe434dbfb8be8ea53f48969c91
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley - Copyright (C) 2000, 2001 Internet Software Consortium.
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley - Permission to use, copy, modify, and distribute this software for any
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley - purpose with or without fee is hereby granted, provided that the above
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley - copyright notice and this permission notice appear in all copies.
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley - THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SOFTWARE CONSORTIUM
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley - DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley - IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley - INTERNET SOFTWARE CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT,
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley - INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley - FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley - NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley - WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyNAME="GENERATOR"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCONTENT="Modular DocBook HTML Stylesheet Version 1.63
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REFENTRY"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyBGCOLOR="#FFFFFF"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyTEXT="#000000"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyLINK="#0000FF"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyVLINK="#840084"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyALINK="#0000FF"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="APPLICATION"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REFNAMEDIV"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="APPLICATION"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> -- name server control utility</DIV
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REFSYNOPSISDIV"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley>Synopsis</H2
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="COMMAND"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="OPTION"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REPLACEABLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley>config-file</I
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="OPTION"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REPLACEABLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="OPTION"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REPLACEABLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="OPTION"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="OPTION"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REPLACEABLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley>] [command...]</P
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REFSECT1"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley>DESCRIPTION</H2
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="COMMAND"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> controls the operation of a name
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley server. It supersedes the <B
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="COMMAND"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley that was provided in old BIND releases. If
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="COMMAND"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> is invoked with no command line
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley options or arguments, it prints a short summary of the
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley supported commands and the available options and their
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="COMMAND"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> communicates with the name server
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley over a TCP connection, sending commands authenticated with
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley digital signatures. In the current versions of
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="COMMAND"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="COMMAND"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley the only supported authentication algorithm is HMAC-MD5,
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley which uses a shared secret on each end of the connection.
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley This provides TSIG-style authentication for the command
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley request and the name server's response. All commands sent
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley over the channel must be signed by a key_id known to the
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="COMMAND"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> reads a configuration file to
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley determine how to contact the name server and decide what
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley algorithm and key it should use.
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REFSECT1"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="VARIABLELIST"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REPLACEABLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley>config-file</I
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REPLACEABLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley>config-file</I
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley as the configuration file instead of the default,
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="FILENAME"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REPLACEABLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REPLACEABLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley the name or address of the server which matches a
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley server statement in the configuration file for
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="COMMAND"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley>. If no server is supplied on the
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley command line, the host named by the default-server clause
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley in the option statement of the configuration file will be
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REPLACEABLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> Send commands to TCP port
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REPLACEABLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley of BIND 9's default control channel port, 953.
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REPLACEABLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> Use the key <TT
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REPLACEABLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley from the configuration file.
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REPLACEABLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley known by named with the same algorithm and secret string
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley in order for control message validation to succeed.
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REPLACEABLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley is specified, <B
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="COMMAND"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> will first look
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley for a key clause in the server statement of the server
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley being used, or if no server statement is present for that
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley host, then the default-key clause of the options statement.
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley Note that the configuration file contains shared secrets
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley which are used to send authenticated control commands
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley to name servers. It should therefore not have general read
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley or write access.
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> Enable verbose logging.
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> For the complete set of commands supported by <B
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="COMMAND"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley see the BIND 9 Administrator Reference Manual or run
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="COMMAND"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> without arguments to see its help message.
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REFSECT1"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley>LIMITATIONS</H2
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="COMMAND"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> does not yet support all the commands of
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley the BIND 8 <B
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="COMMAND"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> There is currently no way to provide the shared secret for a
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="OPTION"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> without using the configuration file.
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> Several error messages could be clearer.
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REFSECT1"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley>SEE ALSO</H2
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="CITEREFENTRY"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REFENTRYTITLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="CITEREFENTRY"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REFENTRYTITLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="CITEREFENTRY"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REFENTRYTITLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="CITEREFENTRY"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REFENTRYTITLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="CITETITLE"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley>BIND 9 Administrator Reference Manual</I
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyCLASS="REFSECT1"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob HalleyNAME="AEN106"
4610465ed9408cbe434dbfb8be8ea53f48969c91Bob Halley> Internet Software Consortium