doc/arm/Bv9ARM.ch03.html

	Bv9ARM.ch03.html revision 575e532437cf7f203707765e21767db92fa1e480
181e56d8b348d301d615ccf5465ae600fee2867berikabele<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
181e56d8b348d301d615ccf5465ae600fee2867berikabele<HTML
181e56d8b348d301d615ccf5465ae600fee2867berikabele><HEAD
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive><TITLE
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive>Name Server Configuration</TITLE
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive><META
5a58787efeb02a1c3f06569d019ad81fd2efa06endNAME="GENERATOR"
5a58787efeb02a1c3f06569d019ad81fd2efa06endCONTENT="Modular DocBook HTML Stylesheet Version 1.7"><LINK
7add1372edb1ee95a2c4d1314df4c7567bda7c62jimREL="HOME"
7add1372edb1ee95a2c4d1314df4c7567bda7c62jimTITLE="BIND 9 Administrator Reference Manual"
d29d9ab4614ff992b0e8de6e2b88d52b6f1f153erbowenHREF="Bv9ARM.html"><LINK
d29d9ab4614ff992b0e8de6e2b88d52b6f1f153erbowenREL="PREVIOUS"
d29d9ab4614ff992b0e8de6e2b88d52b6f1f153erbowenTITLE="BIND Resource Requirements"
d29d9ab4614ff992b0e8de6e2b88d52b6f1f153erbowenHREF="Bv9ARM.ch02.html"><LINK
7add1372edb1ee95a2c4d1314df4c7567bda7c62jimREL="NEXT"
5a58787efeb02a1c3f06569d019ad81fd2efa06endTITLE="Advanced DNS Features"
d229f940abfb2490dee17979e9a5ff31b7012eb5rbowenHREF="Bv9ARM.ch04.html"></HEAD
3f08db06526d6901aa08c110b5bc7dde6bc39905nd><BODY
7add1372edb1ee95a2c4d1314df4c7567bda7c62jimCLASS="chapter"
7add1372edb1ee95a2c4d1314df4c7567bda7c62jimBGCOLOR="#FFFFFF"
5a58787efeb02a1c3f06569d019ad81fd2efa06endTEXT="#000000"
3f08db06526d6901aa08c110b5bc7dde6bc39905ndLINK="#0000FF"
3b3b7fc78d1f5bfc2769903375050048ff41ff26ndVLINK="#840084"
7add1372edb1ee95a2c4d1314df4c7567bda7c62jimALINK="#0000FF"
af84459fbf938e508fd10b01cb8d699c79083813takashi><DIV
7f5b59ccc63c0c0e3e678a168f09ee6a2f51f9d0ndCLASS="NAVHEADER"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><TABLE
f086b4b402fa9a2fefc7dda85de2a3cc1cd0a654rjungSUMMARY="Header navigation table"
3b3b7fc78d1f5bfc2769903375050048ff41ff26ndWIDTH="100%"
3b3b7fc78d1f5bfc2769903375050048ff41ff26ndBORDER="0"
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowenCELLPADDING="0"
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowenCELLSPACING="0"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TH
ce71a46e27f6e2ae210e1f925545aa6e4f74db74jslCOLSPAN="3"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenALIGN="center"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>BIND 9 Administrator Reference Manual</TH
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive></TR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenWIDTH="10%"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenALIGN="left"
5f48875017569cc7610b17d852c44e02684d9d5aerikabeleVALIGN="bottom"
5f48875017569cc7610b17d852c44e02684d9d5aerikabele><A
5f48875017569cc7610b17d852c44e02684d9d5aerikabeleHREF="Bv9ARM.ch02.html"
5a58787efeb02a1c3f06569d019ad81fd2efa06endACCESSKEY="P"
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim>Prev</A
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim></TD
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim><TD
5a58787efeb02a1c3f06569d019ad81fd2efa06endWIDTH="80%"
7add1372edb1ee95a2c4d1314df4c7567bda7c62jimALIGN="center"
5a58787efeb02a1c3f06569d019ad81fd2efa06endVALIGN="bottom"
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim></TD
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim><TD
7add1372edb1ee95a2c4d1314df4c7567bda7c62jimWIDTH="10%"
5a58787efeb02a1c3f06569d019ad81fd2efa06endALIGN="right"
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedoohVALIGN="bottom"
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim><A
5a58787efeb02a1c3f06569d019ad81fd2efa06endHREF="Bv9ARM.ch04.html"
5a58787efeb02a1c3f06569d019ad81fd2efa06endACCESSKEY="N"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>Next</A
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive></TD
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen></TR
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen></TABLE
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><HR
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383sliveALIGN="LEFT"
e884f58207082fa2136d5fc86635c31252338948erikabeleWIDTH="100%"></DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="chapter"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><H1
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenNAME="ch03"
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive></A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>Chapter 3. Name Server Configuration</H1
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="TOC"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DL
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DT
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><B
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive>Table of Contents</B
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></DT
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DT
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>3.1. <A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenHREF="Bv9ARM.ch03.html#sample_configuration"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>Sample Configurations</A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></DT
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DT
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>3.2. <A
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowenHREF="Bv9ARM.ch03.html#AEN268"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>Load Balancing</A
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive></DT
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen><DT
9045c2ce2212b7e911e8a27a4ae6aa9ca73f3d91rbowen>3.3. <A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenHREF="Bv9ARM.ch03.html#AEN345"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>Name Server Operations</A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></DT
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></DL
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>In this section we provide some suggested configurations along
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowenwith guidelines for their use. We also address the topic of reasonable
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenoption setting.</P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="sect1"
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive><H1
7add1372edb1ee95a2c4d1314df4c7567bda7c62jimCLASS="sect1"
5a58787efeb02a1c3f06569d019ad81fd2efa06end><A
5a58787efeb02a1c3f06569d019ad81fd2efa06endNAME="sample_configuration"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>3.1. Sample Configurations</A
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive></H1
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="sect2"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><H2
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="sect2"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><A
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383sliveNAME="AEN257"
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen>3.1.1. A Caching-only Name Server</A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></H2
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>The following sample configuration is appropriate for a caching-only
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowenname server for use by clients internal to a corporation.  All queries
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenfrom outside clients are refused using the <B
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="command"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>allow-query</B
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive>
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenoption.  Alternatively, the same effect could be achieved using suitable
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenfirewall rules.</P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><PRE
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="programlisting"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>&#13;// Two corporate subnets we wish to allow queries from.
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenacl corpnets { 192.168.4.0/24; 192.168.7.0/24; };
5f48875017569cc7610b17d852c44e02684d9d5aerikabeleoptions {
e1e8390280254f7f0580d701e583f670643d4f3fnilgun     directory "/etc/namedb";           // Working directory
5f48875017569cc7610b17d852c44e02684d9d5aerikabele     allow-query { corpnets; };
5f48875017569cc7610b17d852c44e02684d9d5aerikabele};
5f48875017569cc7610b17d852c44e02684d9d5aerikabele// Provide a reverse mapping for the loopback address 127.0.0.1
5f48875017569cc7610b17d852c44e02684d9d5aerikabelezone "0.0.127.in-addr.arpa" {
5f48875017569cc7610b17d852c44e02684d9d5aerikabele     type master;
5f48875017569cc7610b17d852c44e02684d9d5aerikabele     file "localhost.rev";
5f48875017569cc7610b17d852c44e02684d9d5aerikabele     notify no;
5f48875017569cc7610b17d852c44e02684d9d5aerikabele};
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen</PRE
e1e8390280254f7f0580d701e583f670643d4f3fnilgun></DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DIV
181e56d8b348d301d615ccf5465ae600fee2867berikabeleCLASS="sect2"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><H2
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="sect2"
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen><A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenNAME="AEN262"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>3.1.2. An Authoritative-only Name Server</A
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen></H2
181e56d8b348d301d615ccf5465ae600fee2867berikabele><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>This sample configuration is for an authoritative-only server
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenthat is the master server for "<TT
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="filename"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>example.com</TT
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenand a slave for the subdomain "<TT
181e56d8b348d301d615ccf5465ae600fee2867berikabeleCLASS="filename"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>eng.example.com</TT
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>".</P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><PRE
181e56d8b348d301d615ccf5465ae600fee2867berikabeleCLASS="programlisting"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>&#13;options {
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen     directory "/etc/namedb";           // Working directory
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen     allow-query-cache { none; };       // Do not allow access to cache
41dd95074cc6924ee56c53ba11aa6faf59b2ee13erikabele     allow-query { any; };              // This is the default
e1e8390280254f7f0580d701e583f670643d4f3fnilgun     recursion no;                      // Do not provide recursive service
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen};
181e56d8b348d301d615ccf5465ae600fee2867berikabele
41dd95074cc6924ee56c53ba11aa6faf59b2ee13erikabele// Provide a reverse mapping for the loopback address 127.0.0.1
41dd95074cc6924ee56c53ba11aa6faf59b2ee13erikabelezone "0.0.127.in-addr.arpa" {
41dd95074cc6924ee56c53ba11aa6faf59b2ee13erikabele     type master;
41dd95074cc6924ee56c53ba11aa6faf59b2ee13erikabele     file "localhost.rev";
41dd95074cc6924ee56c53ba11aa6faf59b2ee13erikabele     notify no;
181e56d8b348d301d615ccf5465ae600fee2867berikabele};
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen// We are the master server for example.com
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenzone "example.com" {
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen     type master;
e1e8390280254f7f0580d701e583f670643d4f3fnilgun     file "example.com.db";
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen     // IP addresses of slave servers allowed to transfer example.com
181e56d8b348d301d615ccf5465ae600fee2867berikabele     allow-transfer {
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen          192.168.4.14;
181e56d8b348d301d615ccf5465ae600fee2867berikabele          192.168.5.53;
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen     };
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen};
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen// We are a slave server for eng.example.com
e1e8390280254f7f0580d701e583f670643d4f3fnilgunzone "eng.example.com" {
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen     type slave;
181e56d8b348d301d615ccf5465ae600fee2867berikabele     file "eng.example.com.bk";
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen     // IP address of eng.example.com master server
181e56d8b348d301d615ccf5465ae600fee2867berikabele     masters { 192.168.4.12; };
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen};
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen</PRE
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></DIV
aaf7b7f4cc1be050310c3d7f48bce0ec67e174e4nd><DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="sect1"
181e56d8b348d301d615ccf5465ae600fee2867berikabele><H1
ec5fd46fd2a4a263bb5cdf419e8d4106007a2ac8gryzorCLASS="sect1"
5f48875017569cc7610b17d852c44e02684d9d5aerikabele><A
181e56d8b348d301d615ccf5465ae600fee2867berikabeleNAME="AEN268"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>3.2. Load Balancing</A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></H1
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>A primitive form of load balancing can be achieved in
e1e8390280254f7f0580d701e583f670643d4f3fnilgunthe <ACRONYM
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="acronym"
181e56d8b348d301d615ccf5465ae600fee2867berikabele>DNS</ACRONYM
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen> by using multiple A records for one name.</P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>For example, if you have three WWW servers with network addresses
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenof 10.0.0.1, 10.0.0.2 and 10.0.0.3, a set of records such as the
181e56d8b348d301d615ccf5465ae600fee2867berikabelefollowing means that clients will connect to each machine one third
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenof the time:</P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="informaltable"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
e1e8390280254f7f0580d701e583f670643d4f3fnilgun></P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><A
181e56d8b348d301d615ccf5465ae600fee2867berikabeleNAME="AEN273"
5f48875017569cc7610b17d852c44e02684d9d5aerikabele></A
5f48875017569cc7610b17d852c44e02684d9d5aerikabele><TABLE
181e56d8b348d301d615ccf5465ae600fee2867berikabeleCELLPADDING="3"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenBORDER="1"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="CALSTABLE"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TBODY
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TR
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
181e56d8b348d301d615ccf5465ae600fee2867berikabele>Name</P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>TTL</P
181e56d8b348d301d615ccf5465ae600fee2867berikabele></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>CLASS</P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TD
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
181e56d8b348d301d615ccf5465ae600fee2867berikabele>TYPE</P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>Resource Record (RR) Data</P
181e56d8b348d301d615ccf5465ae600fee2867berikabele></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
5f48875017569cc7610b17d852c44e02684d9d5aerikabele><P
5f48875017569cc7610b17d852c44e02684d9d5aerikabele><VAR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="literal"
181e56d8b348d301d615ccf5465ae600fee2867berikabele>www</VAR
5f48875017569cc7610b17d852c44e02684d9d5aerikabele></P
157312a2bcbad225c12462fc6d74b1aa3f32dceehumbedooh></TD
181e56d8b348d301d615ccf5465ae600fee2867berikabele><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><VAR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="literal"
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen>600</VAR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></P
181e56d8b348d301d615ccf5465ae600fee2867berikabele></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
41dd95074cc6924ee56c53ba11aa6faf59b2ee13erikabele><P
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><VAR
41dd95074cc6924ee56c53ba11aa6faf59b2ee13erikabeleCLASS="literal"
41dd95074cc6924ee56c53ba11aa6faf59b2ee13erikabele>IN</VAR
181e56d8b348d301d615ccf5465ae600fee2867berikabele></P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><VAR
e1e8390280254f7f0580d701e583f670643d4f3fnilgunCLASS="literal"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>A</VAR
181e56d8b348d301d615ccf5465ae600fee2867berikabele></P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
181e56d8b348d301d615ccf5465ae600fee2867berikabele><VAR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="literal"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>10.0.0.1</VAR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></P
e1e8390280254f7f0580d701e583f670643d4f3fnilgun></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TR
181e56d8b348d301d615ccf5465ae600fee2867berikabele><TR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
181e56d8b348d301d615ccf5465ae600fee2867berikabele><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
41dd95074cc6924ee56c53ba11aa6faf59b2ee13erikabele><P
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><VAR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="literal"
181e56d8b348d301d615ccf5465ae600fee2867berikabele>600</VAR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></P
41dd95074cc6924ee56c53ba11aa6faf59b2ee13erikabele></TD
181e56d8b348d301d615ccf5465ae600fee2867berikabele><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><VAR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="literal"
41dd95074cc6924ee56c53ba11aa6faf59b2ee13erikabele>IN</VAR
e1e8390280254f7f0580d701e583f670643d4f3fnilgun></P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TD
181e56d8b348d301d615ccf5465ae600fee2867berikabele><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><VAR
181e56d8b348d301d615ccf5465ae600fee2867berikabeleCLASS="literal"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>A</VAR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><VAR
181e56d8b348d301d615ccf5465ae600fee2867berikabeleCLASS="literal"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>10.0.0.2</VAR
181e56d8b348d301d615ccf5465ae600fee2867berikabele></P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></P
181e56d8b348d301d615ccf5465ae600fee2867berikabele></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><VAR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="literal"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>600</VAR
181e56d8b348d301d615ccf5465ae600fee2867berikabele></P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
41dd95074cc6924ee56c53ba11aa6faf59b2ee13erikabele><VAR
e1e8390280254f7f0580d701e583f670643d4f3fnilgunCLASS="literal"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>IN</VAR
181e56d8b348d301d615ccf5465ae600fee2867berikabele></P
41dd95074cc6924ee56c53ba11aa6faf59b2ee13erikabele></TD
181e56d8b348d301d615ccf5465ae600fee2867berikabele><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><VAR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="literal"
e884f58207082fa2136d5fc86635c31252338948erikabele>A</VAR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><VAR
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383sliveCLASS="literal"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>10.0.0.3</VAR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></P
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive></TD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></TR
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim></TBODY
5a58787efeb02a1c3f06569d019ad81fd2efa06end></TABLE
5a58787efeb02a1c3f06569d019ad81fd2efa06end><P
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive></P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></DIV
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>When a resolver queries for these records, <ACRONYM
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383sliveCLASS="acronym"
181e56d8b348d301d615ccf5465ae600fee2867berikabele>BIND</ACRONYM
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen> will rotate
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen    them and respond to the query with the records in a different
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen    order.  In the example above, clients will randomly receive
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen    records in the order 1, 2, 3; 2, 3, 1; and 3, 1, 2. Most clients
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen    will use the first record returned and discard the rest.</P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>For more detail on ordering responses, check the
5f48875017569cc7610b17d852c44e02684d9d5aerikabele    <B
5f48875017569cc7610b17d852c44e02684d9d5aerikabeleCLASS="command"
5f48875017569cc7610b17d852c44e02684d9d5aerikabele>rrset-order</B
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen> substatement in the
687ebbe3d0eaa7361f6cb85f56a389cbbc2e5056aaron    <B
687ebbe3d0eaa7361f6cb85f56a389cbbc2e5056aaronCLASS="command"
5f48875017569cc7610b17d852c44e02684d9d5aerikabele>options</B
5f48875017569cc7610b17d852c44e02684d9d5aerikabele> statement, see
687ebbe3d0eaa7361f6cb85f56a389cbbc2e5056aaron    <A
687ebbe3d0eaa7361f6cb85f56a389cbbc2e5056aaronHREF="Bv9ARM.ch06.html#rrset_ordering"
687ebbe3d0eaa7361f6cb85f56a389cbbc2e5056aaron><I
5bb304d44f4a7046289c9c7dbeef63843bff9613rbowen>RRset Ordering</I
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></A
d0dd037bdab65b455b4056d58be501ca14e61dfemartin>.
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen    This substatement is not supported in
f6066dc0a6ad0432b74774e290c04c3cc4aa2dafrbowen    <ACRONYM
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="acronym"
5bb304d44f4a7046289c9c7dbeef63843bff9613rbowen>BIND</ACRONYM
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen> 9, and only the ordering scheme described above is
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen    available.</P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="sect1"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><H1
e1e8390280254f7f0580d701e583f670643d4f3fnilgunCLASS="sect1"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenNAME="AEN345"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>3.3. Name Server Operations</A
e1e8390280254f7f0580d701e583f670643d4f3fnilgun></H1
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="sect2"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><H2
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="sect2"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenNAME="AEN347"
ee8d84bbd543e3e808e81e4e802d960548ce30d1aaron>3.3.1. Tools for Use With the Name Server Daemon</A
ee8d84bbd543e3e808e81e4e802d960548ce30d1aaron></H2
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen><P
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>There are several indispensable diagnostic, administrative
e1e8390280254f7f0580d701e583f670643d4f3fnilgunand monitoring tools available to the system administrator for controlling
e1e8390280254f7f0580d701e583f670643d4f3fnilgunand debugging the name server daemon. We describe several in this
e1e8390280254f7f0580d701e583f670643d4f3fnilgunsection </P
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><DIV
e1e8390280254f7f0580d701e583f670643d4f3fnilgunCLASS="sect3"
ee8d84bbd543e3e808e81e4e802d960548ce30d1aaron><H3
5bb304d44f4a7046289c9c7dbeef63843bff9613rbowenCLASS="sect3"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenNAME="diagnostic_tools"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>3.3.1.1. Diagnostic Tools</A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></H3
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
5bb304d44f4a7046289c9c7dbeef63843bff9613rbowen>The <B
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="command"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>dig</B
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>, <B
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="command"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>host</B
ee8d84bbd543e3e808e81e4e802d960548ce30d1aaron>, and
ee8d84bbd543e3e808e81e4e802d960548ce30d1aaron<B
ee8d84bbd543e3e808e81e4e802d960548ce30d1aaronCLASS="command"
ee8d84bbd543e3e808e81e4e802d960548ce30d1aaron>nslookup</B
ee8d84bbd543e3e808e81e4e802d960548ce30d1aaron> programs are all command line tools
e1e8390280254f7f0580d701e583f670643d4f3fnilgunfor manually querying name servers.  They differ in style and
e1e8390280254f7f0580d701e583f670643d4f3fnilgunoutput format.
ee8d84bbd543e3e808e81e4e802d960548ce30d1aaron</P
5bb304d44f4a7046289c9c7dbeef63843bff9613rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="variablelist"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><DL
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DT
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><B
e1e8390280254f7f0580d701e583f670643d4f3fnilgunCLASS="command"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>dig</B
e1e8390280254f7f0580d701e583f670643d4f3fnilgun></DT
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><DD
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><P
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen>The domain information groper (<B
e1e8390280254f7f0580d701e583f670643d4f3fnilgunCLASS="command"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>dig</B
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>)
e1e8390280254f7f0580d701e583f670643d4f3fnilgunis the most versatile and complete of these lookup tools.
e1e8390280254f7f0580d701e583f670643d4f3fnilgunIt has two modes: simple interactive
e1e8390280254f7f0580d701e583f670643d4f3fnilgunmode for a single query, and batch mode which executes a query for
e1e8390280254f7f0580d701e583f670643d4f3fnilguneach in a list of several query lines. All query options are accessible
e1e8390280254f7f0580d701e583f670643d4f3fnilgunfrom the command line.</P
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><P
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><B
e1e8390280254f7f0580d701e583f670643d4f3fnilgunCLASS="command"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>dig</B
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>  [@<VAR
e1e8390280254f7f0580d701e583f670643d4f3fnilgunCLASS="replaceable"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>server</VAR
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>]  <VAR
e1e8390280254f7f0580d701e583f670643d4f3fnilgunCLASS="replaceable"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>domain</VAR
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>  [<VAR
e1e8390280254f7f0580d701e583f670643d4f3fnilgunCLASS="replaceable"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>query-type</VAR
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>] [<VAR
e1e8390280254f7f0580d701e583f670643d4f3fnilgunCLASS="replaceable"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>query-class</VAR
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>] [+<VAR
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowenCLASS="replaceable"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>query-option</VAR
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>] [-<VAR
e1e8390280254f7f0580d701e583f670643d4f3fnilgunCLASS="replaceable"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>dig-option</VAR
c3c006c28c5b03892ccaef6e4d2cbb15a13a2072rbowen>] [%<VAR
c3c006c28c5b03892ccaef6e4d2cbb15a13a2072rbowenCLASS="replaceable"
c3c006c28c5b03892ccaef6e4d2cbb15a13a2072rbowen>comment</VAR
c3c006c28c5b03892ccaef6e4d2cbb15a13a2072rbowen>]</P
c3c006c28c5b03892ccaef6e4d2cbb15a13a2072rbowen><P
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>The usual simple use of dig will take the form</P
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><P
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><B
e1e8390280254f7f0580d701e583f670643d4f3fnilgunCLASS="command"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>dig @server domain query-type query-class</B
e1e8390280254f7f0580d701e583f670643d4f3fnilgun></P
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><P
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>For more information and a list of available commands and
e1e8390280254f7f0580d701e583f670643d4f3fnilgunoptions, see the <B
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowenCLASS="command"
e1e8390280254f7f0580d701e583f670643d4f3fnilgun>dig</B
e1e8390280254f7f0580d701e583f670643d4f3fnilgun> man page.</P
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim></DD
5a58787efeb02a1c3f06569d019ad81fd2efa06end><DT
5a58787efeb02a1c3f06569d019ad81fd2efa06end><B
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383sliveCLASS="command"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>host</B
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen></DT
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim><DD
5f48875017569cc7610b17d852c44e02684d9d5aerikabele><P
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen>The <B
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="command"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>host</B
5f48875017569cc7610b17d852c44e02684d9d5aerikabele> utility emphasizes simplicity
181e56d8b348d301d615ccf5465ae600fee2867berikabeleand ease of use.  By default, it converts
9bcfc3697a91b5215893a7d0206865b13fc72148ndbetween host names and Internet addresses, but its functionality
181e56d8b348d301d615ccf5465ae600fee2867berikabelecan be extended with the use of options.</P
5f48875017569cc7610b17d852c44e02684d9d5aerikabele><P
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive><B
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="command"
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive>host</B
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive>  [-aCdlrTwv] [-c <VAR
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383sliveCLASS="replaceable"
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen>class</VAR
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen>] [-N <VAR
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383sliveCLASS="replaceable"
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive>ndots</VAR
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowen>] [-t <VAR
7add1372edb1ee95a2c4d1314df4c7567bda7c62jimCLASS="replaceable"
5a58787efeb02a1c3f06569d019ad81fd2efa06end>type</VAR
5a58787efeb02a1c3f06569d019ad81fd2efa06end>] [-W <VAR
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383sliveCLASS="replaceable"
53feb1d7d644e42dcc617b35516598bb15e8bcc1slive>timeout</VAR
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim>] [-R <VAR
7add1372edb1ee95a2c4d1314df4c7567bda7c62jimCLASS="replaceable"
53feb1d7d644e42dcc617b35516598bb15e8bcc1slive>retries</VAR
181e56d8b348d301d615ccf5465ae600fee2867berikabele>]  <VAR
7add1372edb1ee95a2c4d1314df4c7567bda7c62jimCLASS="replaceable"
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim>hostname</VAR
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive>  [<VAR
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383sliveCLASS="replaceable"
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim>server</VAR
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim>]</P
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive><P
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive>For more information and a list of available commands and
53feb1d7d644e42dcc617b35516598bb15e8bcc1sliveoptions, see the <B
7add1372edb1ee95a2c4d1314df4c7567bda7c62jimCLASS="command"
53feb1d7d644e42dcc617b35516598bb15e8bcc1slive>host</B
53feb1d7d644e42dcc617b35516598bb15e8bcc1slive> man page.</P
53feb1d7d644e42dcc617b35516598bb15e8bcc1slive></DD
53feb1d7d644e42dcc617b35516598bb15e8bcc1slive><DT
53feb1d7d644e42dcc617b35516598bb15e8bcc1slive><B
53feb1d7d644e42dcc617b35516598bb15e8bcc1sliveCLASS="command"
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim>nslookup</B
5a58787efeb02a1c3f06569d019ad81fd2efa06end></DT
5a58787efeb02a1c3f06569d019ad81fd2efa06end><DD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive><B
5f48875017569cc7610b17d852c44e02684d9d5aerikabeleCLASS="command"
5f48875017569cc7610b17d852c44e02684d9d5aerikabele>nslookup</B
5f48875017569cc7610b17d852c44e02684d9d5aerikabele> has two modes: interactive
5f48875017569cc7610b17d852c44e02684d9d5aerikabeleand non-interactive. Interactive mode allows the user to query name servers
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenfor information about various hosts and domains or to print a list
7add1372edb1ee95a2c4d1314df4c7567bda7c62jimof hosts in a domain. Non-interactive mode is used to print just
5a58787efeb02a1c3f06569d019ad81fd2efa06endthe name and requested information for a host or domain.</P
5a58787efeb02a1c3f06569d019ad81fd2efa06end><P
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive><B
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="command"
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive>nslookup</B
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>  [-option...] [<VAR
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowenCLASS="replaceable"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>host-to-find</VAR
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen> | -  [server]]</P
ca0e3098838c1f9aa77bcdfc3df99cf9aa0f9383slive><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>Interactive mode is entered when no arguments are given (the
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowendefault name server will be used) or when the first argument is a
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenhyphen (`-') and the second argument is the host name or Internet address
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenof a name server.</P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>Non-interactive mode is used when the name or Internet address
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenof the host to be looked up is given as the first argument. The
e1e8390280254f7f0580d701e583f670643d4f3fnilgunoptional second argument specifies the host name or address of a name server.</P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
181e56d8b348d301d615ccf5465ae600fee2867berikabele>Due to its arcane user interface and frequently inconsistent
5f48875017569cc7610b17d852c44e02684d9d5aerikabelebehavior, we do not recommend the use of <B
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="command"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>nslookup</B
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>.
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenUse <B
7d37d896e4bce35ac213fededef06aff2d2f25d7rbowenCLASS="command"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>dig</B
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen> instead.</P
181e56d8b348d301d615ccf5465ae600fee2867berikabele></DD
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></DL
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></DIV
e1e8390280254f7f0580d701e583f670643d4f3fnilgun><DIV
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="sect3"
181e56d8b348d301d615ccf5465ae600fee2867berikabele><H3
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="sect3"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenNAME="admin_tools"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>3.3.1.2. Administrative Tools</A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></H3
181e56d8b348d301d615ccf5465ae600fee2867berikabele><P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen>Administrative tools play an integral part in the management
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenof a server.</P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><P
e1e8390280254f7f0580d701e583f670643d4f3fnilgun></P
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DIV
181e56d8b348d301d615ccf5465ae600fee2867berikabeleCLASS="variablelist"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DL
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><DT
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><A
181e56d8b348d301d615ccf5465ae600fee2867berikabeleNAME="named-checkconf"
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen></A
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowen><B
57d0156f7bbd9ea3a72342cf9912aba61d118702rbowenCLASS="command"
5a58787efeb02a1c3f06569d019ad81fd2efa06end>named-checkconf</B
3b3b7fc78d1f5bfc2769903375050048ff41ff26nd></DT
7add1372edb1ee95a2c4d1314df4c7567bda7c62jim><DD
af84459fbf938e508fd10b01cb8d699c79083813takashi><P
7f5b59ccc63c0c0e3e678a168f09ee6a2f51f9d0nd>The <B
e1e8390280254f7f0580d701e583f670643d4f3fnilgunCLASS="command"
f086b4b402fa9a2fefc7dda85de2a3cc1cd0a654rjung>named-checkconf</B
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedooh> program
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedooh              checks the syntax of a <TT
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedoohCLASS="filename"
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedooh>named.conf</TT
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedooh> file.</P
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedooh><P
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedooh><B
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedoohCLASS="command"
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedooh>named-checkconf</B
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedooh>  [-t <VAR
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedoohCLASS="replaceable"
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedooh>directory</VAR
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedooh>] [<VAR
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedoohCLASS="replaceable"
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedooh>filename</VAR
30471a4650391f57975f60bbb6e4a90be7b284bfhumbedooh>]</P
5effc8b39fae5cd169d17f342bfc265705840014rbowen></DD
d229f940abfb2490dee17979e9a5ff31b7012eb5rbowen><DT
7fec19672a491661b2fe4b29f685bc7f4efa64d4nd><A
7fec19672a491661b2fe4b29f685bc7f4efa64d4ndNAME="named-checkzone"
7fec19672a491661b2fe4b29f685bc7f4efa64d4nd></A
7fec19672a491661b2fe4b29f685bc7f4efa64d4nd><B
5a58787efeb02a1c3f06569d019ad81fd2efa06endCLASS="command"
>named-checkzone</B
></DT
><DD
><P
>The <B
CLASS="command"
>named-checkzone</B
> program checks a master file for
              syntax and consistency.</P
><P
><B
CLASS="command"
>named-checkzone</B
>  [-djqvD] [-c <VAR
CLASS="replaceable"
>class</VAR
>] [-o <VAR
CLASS="replaceable"
>output</VAR
>] [-t <VAR
CLASS="replaceable"
>directory</VAR
>] [-w <VAR
CLASS="replaceable"
>directory</VAR
>] [-k <VAR
CLASS="replaceable"
>(ignore|warn|fail)</VAR
>] [-n <VAR
CLASS="replaceable"
>(ignore|warn|fail)</VAR
>]  <VAR
CLASS="replaceable"
>zone</VAR
>  [<VAR
CLASS="replaceable"
>filename</VAR
>]</P
></DD
><DT
><A
NAME="rndc"
></A
><B
CLASS="command"
>rndc</B
></DT
><DD
><P
>The remote name daemon control
              (<B
CLASS="command"
>rndc</B
>) program allows the system
              administrator to control the operation of a name server.
              If you run <B
CLASS="command"
>rndc</B
> without any options
              it will display a usage message as follows:</P
><P
><B
CLASS="command"
>rndc</B
>  [-c <VAR
CLASS="replaceable"
>config</VAR
>] [-s <VAR
CLASS="replaceable"
>server</VAR
>] [-p <VAR
CLASS="replaceable"
>port</VAR
>] [-y <VAR
CLASS="replaceable"
>key</VAR
>]  <VAR
CLASS="replaceable"
>command</VAR
>  [<VAR
CLASS="replaceable"
>command</VAR
>...]</P
><P
><B
CLASS="command"
>command</B
> is one of the following:</P
><P
></P
><DIV
CLASS="variablelist"
><DL
><DT
><KBD
CLASS="userinput"
>reload</KBD
></DT
><DD
><P
>Reload configuration file and zones.</P
></DD
><DT
><KBD
CLASS="userinput"
>reload <VAR
CLASS="replaceable"
>zone</VAR
>
       [<SPAN
CLASS="optional"
><VAR
CLASS="replaceable"
>class</VAR
>
           [<SPAN
CLASS="optional"
><VAR
CLASS="replaceable"
>view</VAR
></SPAN
>]</SPAN
>]</KBD
></DT
><DD
><P
>Reload the given zone.</P
></DD
><DT
><KBD
CLASS="userinput"
>refresh <VAR
CLASS="replaceable"
>zone</VAR
>
       [<SPAN
CLASS="optional"
><VAR
CLASS="replaceable"
>class</VAR
>
           [<SPAN
CLASS="optional"
><VAR
CLASS="replaceable"
>view</VAR
></SPAN
>]</SPAN
>]</KBD
></DT
><DD
><P
>Schedule zone maintenance for the given zone.</P
></DD
><DT
><KBD
CLASS="userinput"
>retransfer <VAR
CLASS="replaceable"
>zone</VAR
>
       [<SPAN
CLASS="optional"
><VAR
CLASS="replaceable"
>class</VAR
>
           [<SPAN
CLASS="optional"
><VAR
CLASS="replaceable"
>view</VAR
></SPAN
>]</SPAN
>]</KBD
></DT
><DD
><P
>Retransfer the given zone from the master.</P
></DD
><DT
><KBD
CLASS="userinput"
>freeze <VAR
CLASS="replaceable"
>zone</VAR
>
       [<SPAN
CLASS="optional"
><VAR
CLASS="replaceable"
>class</VAR
>
           [<SPAN
CLASS="optional"
><VAR
CLASS="replaceable"
>view</VAR
></SPAN
>]</SPAN
>]</KBD
></DT
><DD
><P
>Suspend updates to a dynamic zone.  This allows manual
    edits to be made to a zone normally updated by dynamic update.  It
    also causes changes in the journal file to be synced into the master
    and the journal file to be removed.  All dynamic update attempts will
    be refused while the zone is frozen.</P
></DD
><DT
><KBD
CLASS="userinput"
>unfreeze <VAR
CLASS="replaceable"
>zone</VAR
>
       [<SPAN
CLASS="optional"
><VAR
CLASS="replaceable"
>class</VAR
>
           [<SPAN
CLASS="optional"
><VAR
CLASS="replaceable"
>view</VAR
></SPAN
>]</SPAN
>]</KBD
></DT
><DD
><P
>Enable updates to a frozen dynamic zone.  This causes
    the server to reload the zone from disk, and re-enables dynamic updates
    after the load has completed.  After a zone is unfrozen, dynamic updates
    will no longer be refused.</P
></DD
><DT
><KBD
CLASS="userinput"
>reconfig</KBD
></DT
><DD
><P
>Reload the configuration file and load new zones,
   but do not reload existing zone files even if they have changed.
   This is faster than a full <B
CLASS="command"
>reload</B
> when there
   is a large number of zones because it avoids the need to examine the
   modification times of the zones files.
   </P
></DD
><DT
><KBD
CLASS="userinput"
>stats</KBD
></DT
><DD
><P
>Write server statistics to the statistics file.</P
></DD
><DT
><KBD
CLASS="userinput"
>querylog</KBD
></DT
><DD
><P
>Toggle query logging. Query logging can also be enabled
   by explicitly directing the <B
CLASS="command"
>queries</B
>
   <B
CLASS="command"
>category</B
> to a <B
CLASS="command"
>channel</B
> in the
   <B
CLASS="command"
>logging</B
> section of
   <TT
CLASS="filename"
>named.conf</TT
>.</P
></DD
><DT
><KBD
CLASS="userinput"
>dumpdb</KBD
></DT
><DD
><P
>Dump the server's caches to the dump file. </P
></DD
><DT
><KBD
CLASS="userinput"
>stop</KBD
></DT
><DD
><P
>Stop the server,
   making sure any recent changes
   made through dynamic update or IXFR are first saved to the master files
   of the updated zones.</P
></DD
><DT
><KBD
CLASS="userinput"
>halt</KBD
></DT
><DD
><P
>Stop the server immediately.  Recent changes
   made through dynamic update or IXFR are not saved to the master files,
   but will be rolled forward from the journal files when the server
   is restarted.</P
></DD
><DT
><KBD
CLASS="userinput"
>trace</KBD
></DT
><DD
><P
>Increment the servers debugging level by one. </P
></DD
><DT
><KBD
CLASS="userinput"
>trace <VAR
CLASS="replaceable"
>level</VAR
></KBD
></DT
><DD
><P
>Sets the server's debugging level to an explicit
   value.</P
></DD
><DT
><KBD
CLASS="userinput"
>notrace</KBD
></DT
><DD
><P
>Sets the server's debugging level to 0.</P
></DD
><DT
><KBD
CLASS="userinput"
>flush</KBD
></DT
><DD
><P
>Flushes the server's cache.</P
></DD
><DT
><KBD
CLASS="userinput"
>status</KBD
></DT
><DD
><P
>Display status of the server.
Note the number of zones includes the internal <B
CLASS="command"
>bind/CH</B
> zone
and the default <B
CLASS="command"
>/IN</B
> hint zone if there is not a
explicit root zone configured.</P
></DD
></DL
></DIV
><P
>In <ACRONYM
CLASS="acronym"
>BIND</ACRONYM
> 9.2, <B
CLASS="command"
>rndc</B
>
supports all the commands of the BIND 8 <B
CLASS="command"
>ndc</B
>
utility except <B
CLASS="command"
>ndc start</B
> and
<B
CLASS="command"
>ndc restart</B
>, which were also
not supported in <B
CLASS="command"
>ndc</B
>'s channel mode.</P
><P
>A configuration file is required, since all
communication with the server is authenticated with
digital signatures that rely on a shared secret, and
there is no way to provide that secret other than with a
configuration file.  The default location for the
<B
CLASS="command"
>rndc</B
> configuration file is
<TT
CLASS="filename"
>/etc/rndc.conf</TT
>, but an alternate
location can be specified with the <VAR
CLASS="option"
>-c</VAR
>
option.  If the configuration file is not found,
<B
CLASS="command"
>rndc</B
> will also look in
<TT
CLASS="filename"
>/etc/rndc.key</TT
> (or whatever
<VAR
CLASS="varname"
>sysconfdir</VAR
> was defined when
the <ACRONYM
CLASS="acronym"
>BIND</ACRONYM
> build was configured).
The <TT
CLASS="filename"
>rndc.key</TT
> file is generated by
running <B
CLASS="command"
>rndc-confgen -a</B
> as described in
<A
HREF="Bv9ARM.ch06.html#controls_statement_definition_and_usage"
>Section 6.2.4</A
>.</P
><P
>The format of the configuration file is similar to
that of <TT
CLASS="filename"
>named.conf</TT
>, but limited to
only four statements, the <B
CLASS="command"
>options</B
>,
<B
CLASS="command"
>key</B
>, <B
CLASS="command"
>server</B
> and
<B
CLASS="command"
>include</B
>
statements.  These statements are what associate the
secret keys to the servers with which they are meant to
be shared.  The order of statements is not
significant.</P
><P
>The <B
CLASS="command"
>options</B
> statement has three clauses:
<B
CLASS="command"
>default-server</B
>, <B
CLASS="command"
>default-key</B
>,
and <B
CLASS="command"
>default-port</B
>.
<B
CLASS="command"
>default-server</B
> takes a
host name or address argument  and represents the server that will
be contacted if no <VAR
CLASS="option"
>-s</VAR
>
option is provided on the command line.
<B
CLASS="command"
>default-key</B
> takes
the name of a key as its argument, as defined by a <B
CLASS="command"
>key</B
> statement.
<B
CLASS="command"
>default-port</B
> specifies the port to which
<B
CLASS="command"
>rndc</B
> should connect if no
port is given on the command line or in a
<B
CLASS="command"
>server</B
> statement.</P
><P
>The <B
CLASS="command"
>key</B
> statement defines an key to be used
by <B
CLASS="command"
>rndc</B
> when authenticating with
<B
CLASS="command"
>named</B
>.  Its syntax is identical to the
<B
CLASS="command"
>key</B
> statement in named.conf.
The keyword <KBD
CLASS="userinput"
>key</KBD
> is
followed by a key name, which must be a valid
domain name, though it need not actually be hierarchical; thus,
a string like "<KBD
CLASS="userinput"
>rndc_key</KBD
>" is a valid name.
The <B
CLASS="command"
>key</B
> statement has two clauses:
<B
CLASS="command"
>algorithm</B
> and <B
CLASS="command"
>secret</B
>.
While the configuration parser will accept any string as the argument
to algorithm, currently only the string "<KBD
CLASS="userinput"
>hmac-md5</KBD
>"
has any meaning.  The secret is a base-64 encoded string.</P
><P
>The <B
CLASS="command"
>server</B
> statement associates a key
defined using the <B
CLASS="command"
>key</B
> statement with a server.
The keyword <KBD
CLASS="userinput"
>server</KBD
> is followed by a
host name or address.  The <B
CLASS="command"
>server</B
> statement
has two clauses: <B
CLASS="command"
>key</B
> and <B
CLASS="command"
>port</B
>.
The <B
CLASS="command"
>key</B
> clause specifies the name of the key
to be used when communicating with this server, and the
<B
CLASS="command"
>port</B
> clause can be used to
specify the port <B
CLASS="command"
>rndc</B
> should connect
to on the server.</P
><P
>A sample minimal configuration file is as follows:</P
><PRE
CLASS="programlisting"
>&#13;key rndc_key {
     algorithm "hmac-md5";
     secret "c3Ryb25nIGVub3VnaCBmb3IgYSBtYW4gYnV0IG1hZGUgZm9yIGEgd29tYW4K";
};
options {
     default-server 127.0.0.1;
     default-key    rndc_key;
};
</PRE
><P
>This file, if installed as <TT
CLASS="filename"
>/etc/rndc.conf</TT
>,
would allow the command:</P
><P
><SAMP
CLASS="prompt"
>$ </SAMP
><KBD
CLASS="userinput"
>rndc reload</KBD
></P
><P
>to connect to 127.0.0.1 port 953 and cause the name server
to reload, if a name server on the local machine were running with
following controls statements:</P
><PRE
CLASS="programlisting"
>&#13;controls {
        inet 127.0.0.1 allow { localhost; } keys { rndc_key; };
};
</PRE
><P
>and it had an identical key statement for
<VAR
CLASS="literal"
>rndc_key</VAR
>.</P
><P
>Running the <B
CLASS="command"
>rndc-confgen</B
> program will
conveniently create a <TT
CLASS="filename"
>rndc.conf</TT
>
file for you, and also display the
corresponding <B
CLASS="command"
>controls</B
> statement that you need to
add to <TT
CLASS="filename"
>named.conf</TT
>.  Alternatively,
you can run <B
CLASS="command"
>rndc-confgen -a</B
> to set up
a <TT
CLASS="filename"
>rndc.key</TT
> file and not modify
<TT
CLASS="filename"
>named.conf</TT
> at all.
</P
></DD
></DL
></DIV
></DIV
></DIV
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="AEN689"
>3.3.2. Signals</A
></H2
><P
>Certain UNIX signals cause the name server to take specific
actions, as described in the following table.  These signals can
be sent using the <B
CLASS="command"
>kill</B
> command.</P
><DIV
CLASS="informaltable"
><P
></P
><A
NAME="AEN693"
></A
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TBODY
><TR
><TD
><P
><B
CLASS="command"
>SIGHUP</B
></P
></TD
><TD
><P
>Causes the server to read <TT
CLASS="filename"
>named.conf</TT
> and
reload the database. </P
></TD
></TR
><TR
><TD
><P
><B
CLASS="command"
>SIGTERM</B
></P
></TD
><TD
><P
>Causes the server to clean up and exit.</P
></TD
></TR
><TR
><TD
>&#13;<P
><B
CLASS="command"
>SIGINT</B
></P
>
</TD
><TD
><P
>Causes the server to clean up and exit.</P
></TD
></TR
></TBODY
></TABLE
><P
></P
></DIV
></DIV
></DIV
></DIV
><DIV
CLASS="NAVFOOTER"
><HR
ALIGN="LEFT"
WIDTH="100%"><TABLE
SUMMARY="Footer navigation table"
WIDTH="100%"
BORDER="0"
CELLPADDING="0"
CELLSPACING="0"
><TR
><TD
WIDTH="33%"
ALIGN="left"
VALIGN="top"
><A
HREF="Bv9ARM.ch02.html"
ACCESSKEY="P"
>Prev</A
></TD
><TD
WIDTH="34%"
ALIGN="center"
VALIGN="top"
><A
HREF="Bv9ARM.html"
ACCESSKEY="H"
>Home</A
></TD
><TD
WIDTH="33%"
ALIGN="right"
VALIGN="top"
><A
HREF="Bv9ARM.ch04.html"
ACCESSKEY="N"
>Next</A
></TD
></TR
><TR
><TD
WIDTH="33%"
ALIGN="left"
VALIGN="top"
><ACRONYM
CLASS="acronym"
>BIND</ACRONYM
> Resource Requirements</TD
><TD
WIDTH="34%"
ALIGN="center"
VALIGN="top"
>&nbsp;</TD
><TD
WIDTH="33%"
ALIGN="right"
VALIGN="top"
>Advanced DNS Features</TD
></TR
></TABLE
></DIV
></BODY
></HTML
>