doc/arm/Bv9ARM.ch06.html

	Bv9ARM.ch06.html revision f1fd37f759991616d454ce371a2390da45141593
280a8a0544b4aeb52414d20e8c6e6c5b1108562eTinderbox User<HTML
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan Hunt><HEAD
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic Updater><TITLE
c7fd128f8ea8a527fe27c1b95ab46df7155bc8e4Tinderbox User>BIND 9 Configuration Reference</TITLE
c7fd128f8ea8a527fe27c1b95ab46df7155bc8e4Tinderbox User><META
ba9e87b35e561bc7354ce3f4b9685b747b7be507Tinderbox UserNAME="GENERATOR"
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark AndrewsCONTENT="Modular DocBook HTML Stylesheet Version 1.41"><LINK
59663800d2ec04777dae2791dd92aa563faf94c8Evan HuntREL="HOME"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsHREF="Bv9ARM.html"><LINK
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark AndrewsREL="PREVIOUS"
59663800d2ec04777dae2791dd92aa563faf94c8Evan HuntTITLE="The BIND 9 Lightweight Resolver"
1ca2cf024391992fe14b2df7d3ae0f575d074452Evan HuntHREF="Bv9ARM.ch05.html"><LINK
0726d872f6f36901ea09321df57084614e5bb6faTinderbox UserREL="NEXT"
1ca2cf024391992fe14b2df7d3ae0f575d074452Evan HuntTITLE="BIND 9 Security Considerations"
a2c370ca12bb0360ff7e969474ead3f788c65fffTinderbox UserHREF="Bv9ARM.ch07.html"></HEAD
8de3f14f1c300c3e1ed99084cc03485b42c92bf1Tinderbox User><BODY
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsBGCOLOR="#FFFFFF"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsTEXT="#000000"
b886b04d8d2b085cbf3e1bf4442dee87f43ba5e4Tinderbox UserLINK="#0000FF"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVLINK="#840084"
2b7254075b883d70852a2757210793603085a0f1Tinderbox UserALINK="#0000FF"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsCLASS="NAVHEADER"
b91d11bfcc30b96f2c80f3a76d12e3dcc8597a68Mark Andrews><TABLE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="100%"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsBORDER="0"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsCELLPADDING="0"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCELLSPACING="0"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews><TH
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsCOLSPAN="3"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsALIGN="center"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews></TH
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews></TR
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><TR
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><TD
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsWIDTH="10%"
efb0e886f18894a1d2489f1ad74ad14b579e11c7Mark AndrewsALIGN="left"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsVALIGN="bottom"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><A
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsHREF="Bv9ARM.ch05.html"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews>Prev</A
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TD
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><TD
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsWIDTH="80%"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserALIGN="center"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsVALIGN="bottom"
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox User></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
aa9c561961e9d877946ebaa8795fa2be054ab7bfEvan HuntWIDTH="10%"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="right"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="bottom"
aa9c561961e9d877946ebaa8795fa2be054ab7bfEvan Hunt><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsHREF="Bv9ARM.ch07.html"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Next</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
aa9c561961e9d877946ebaa8795fa2be054ab7bfEvan Hunt></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TABLE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><HR
aa9c561961e9d877946ebaa8795fa2be054ab7bfEvan HuntALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="100%"></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="chapter"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H1
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><A
cdfc81e048bd34c1d628380247bda6b80a89e20eAutomatic UpdaterNAME="ch06"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews>Chapter 6. <SPAN
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserCLASS="acronym"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>BIND</SPAN
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> 9 Configuration Reference</A
9513a2a6670951f5cf5477fcfec9f933fcaff628Automatic Updater></H1
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><DIV
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsCLASS="TOC"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><DL
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><DT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>Table of Contents</B
eabc9c3c07cd956d3c436bd7614cb162dabdda76Mark Andrews></DT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><DT
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews>6.1. <A
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserHREF="Bv9ARM.ch06.html#configuration_file_elements"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>Configuration File Elements</A
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox User></DT
3ccf87473f7cf6d9faac156df38a935a238f96fdTinderbox User><DT
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark Andrews>6.2. <A
b378314925e78f21853a98cec924788ce1822c6cTinderbox UserHREF="Bv9ARM.ch06.html#Configuration_File_Grammar"
ebe53509ca55a141131c104b6d722236b606e0efTinderbox User>Configuration File Grammar</A
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark Andrews></DT
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><DT
2ae159b376dac23870d8005563c585acf85a4b5aEvan Hunt>6.3. <A
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsHREF="Bv9ARM.ch06.html#AEN3382"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews>Zone File</A
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></DT
2ae159b376dac23870d8005563c585acf85a4b5aEvan Hunt></DL
7cc0a5d21ef046bfd630c4769943d896a7d7472cTinderbox User></DIV
3ccf87473f7cf6d9faac156df38a935a238f96fdTinderbox User><P
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews><SPAN
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserCLASS="acronym"
551e6d2414c4f47d58a9bb0b37f206f915a4f5acTinderbox User>BIND</SPAN
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews> 9 configuration is broadly similar to <SPAN
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserCLASS="acronym"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews>BIND</SPAN
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User> 8.x; however,
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox Userthere are a few new areas of configuration, such as views. <SPAN
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsCLASS="acronym"
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox User>BIND</SPAN
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews>
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User8.x configuration files should work with few alterations in <SPAN
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserCLASS="acronym"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews>BIND</SPAN
415d630b6309922caee8469384a6fab75cf05032Mark Andrews>
91216cff91b34c9ff6e846dc23f248219cafe660Andreas Gustafsson9, although more complex configurations should be reviewed to check
415d630b6309922caee8469384a6fab75cf05032Mark Andrewsif they can be more efficiently implemented using the new features
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrewsfound in <SPAN
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserCLASS="acronym"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>BIND</SPAN
415d630b6309922caee8469384a6fab75cf05032Mark Andrews> 9.</P
efb0e886f18894a1d2489f1ad74ad14b579e11c7Mark Andrews><P
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews><SPAN
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserCLASS="acronym"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>BIND</SPAN
415d630b6309922caee8469384a6fab75cf05032Mark Andrews> 4 configuration files can be converted to the new format
91216cff91b34c9ff6e846dc23f248219cafe660Andreas Gustafssonusing the shell script
415d630b6309922caee8469384a6fab75cf05032Mark Andrews<TT
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsCLASS="filename"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User>contrib/named-bootconf/named-bootconf.sh</TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>.</P
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><DIV
91216cff91b34c9ff6e846dc23f248219cafe660Andreas GustafssonCLASS="sect1"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><H1
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsCLASS="sect1"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><A
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsNAME="configuration_file_elements"
28a5dd720187fddb16055a0f64b63a7b66f29f64Mark Andrews>6.1. Configuration File Elements</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H1
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews><P
ebe53509ca55a141131c104b6d722236b606e0efTinderbox User>Following is a list of elements used throughout the <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews>BIND</SPAN
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark Andrews> configuration
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsfile documentation:</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark AndrewsCLASS="informaltable"
2a31bd531072824ef252c18303859d6af7451b00Francis Dupont><P
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox User></P
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews><TABLE
2a31bd531072824ef252c18303859d6af7451b00Francis DupontCELLPADDING="3"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsBORDER="1"
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox UserCLASS="CALSTABLE"
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews><TR
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews><TD
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark AndrewsWIDTH="178"
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox UserALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews><P
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews><TT
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox UserCLASS="varname"
b378314925e78f21853a98cec924788ce1822c6cTinderbox User>acl_name</TT
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews></P
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews></TD
2b7254075b883d70852a2757210793603085a0f1Tinderbox User><TD
66317da170ed35b08f5847db2d48b225826327cbTinderbox UserWIDTH="362"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsALIGN="LEFT"
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark AndrewsVALIGN="MIDDLE"
b625bdae12277225b076a002dd4af80902529181Tinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The name of an <TT
01a5c5503482fb3ba52088bf0178a7213273bf96Mark AndrewsCLASS="varname"
2b7254075b883d70852a2757210793603085a0f1Tinderbox User>address_match_list</TT
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox User> as
415d630b6309922caee8469384a6fab75cf05032Mark Andrewsdefined by the <B
cdfc81e048bd34c1d628380247bda6b80a89e20eAutomatic UpdaterCLASS="command"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews>acl</B
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User> statement.</P
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TD
415d630b6309922caee8469384a6fab75cf05032Mark Andrews></TR
fe80a4909bf62b602feaf246866e9d29f7654194Automatic Updater><TR
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><TD
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsWIDTH="178"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserALIGN="LEFT"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsVALIGN="MIDDLE"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><P
fa0326cc2cf428f67575b6ba3b97b528a31b0010Tinderbox User><TT
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsCLASS="varname"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews>address_match_list</TT
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></P
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TD
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><TD
fe80a4909bf62b602feaf246866e9d29f7654194Automatic UpdaterWIDTH="362"
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsALIGN="LEFT"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsVALIGN="MIDDLE"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><P
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>A list of one or more <TT
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsCLASS="varname"
91216cff91b34c9ff6e846dc23f248219cafe660Andreas Gustafsson>ip_addr</TT
415d630b6309922caee8469384a6fab75cf05032Mark Andrews>, <TT
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsCLASS="varname"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User>ip_prefix</TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>, <TT
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsCLASS="varname"
dd65eb1efb40b1c47d57963192bfc54873b219beAutomatic Updater>key_id</TT
415d630b6309922caee8469384a6fab75cf05032Mark Andrews>, or <TT
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsCLASS="varname"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User>acl_name</TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> elements, see
415d630b6309922caee8469384a6fab75cf05032Mark Andrews<A
133e6d43fa82e80d3798be4de00f4540f485ec6cAutomatic UpdaterHREF="Bv9ARM.ch06.html#address_match_lists"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews>Section 6.1.1</A
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews>.</P
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></TD
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TR
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><TR
91216cff91b34c9ff6e846dc23f248219cafe660Andreas Gustafsson><TD
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsWIDTH="178"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsALIGN="LEFT"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserVALIGN="MIDDLE"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><P
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><TT
5f7586ddbd3edd11272cdd30ed613d936129328bTinderbox UserCLASS="varname"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews>domain_name</TT
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews></P
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></TD
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><TD
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox UserWIDTH="362"
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox UserALIGN="LEFT"
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox UserVALIGN="MIDDLE"
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>A quoted string which will be used as
dc7e5458bbcb59ea310ed64ac7e77016e62e9c15Tinderbox Usera DNS name, for example "<SPAN
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox UserCLASS="systemitem"
1fce11b1d3f2d461d261156b8cdc64ab864f06a9Tinderbox User>my.test.domain</SPAN
fab54780409846f7c71f6026d665f18c77c649efTinderbox User>".</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox User><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="178"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
689fb19ba11ed40363cbc031d0396befdb409b89Tinderbox UserVALIGN="MIDDLE"
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan Hunt><P
8927a982bde7e4b665966b55f0fa57c5cf21b9d8Mark Andrews><TT
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox UserCLASS="varname"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>dotted_decimal</TT
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="362"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>One or more integers valued 0 through
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews255 separated only by dots (`.'), such as <B
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>123</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>, <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
c317b09bf112121245fafe61f38b95dc6e96acabTinderbox User>45.67</B
cdf1c3d486ec082ef6c92297d22d54a67cca0c90Tinderbox User> or <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>89.123.45.67</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="178"
8ac5ddf659a81ed668579818981fc1a5f28405d1Tinderbox UserALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="varname"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>ip4_addr</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="362"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
e5c7ef08d1bf9f8388de8174a47da78b9eeb7e5cTinderbox User>An IPv4 address with exactly four elements
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrewsin <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="varname"
2b7254075b883d70852a2757210793603085a0f1Tinderbox User>dotted_decimal</TT
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews> notation.</P
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews></TD
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark Andrews></TR
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews><TR
e5c7ef08d1bf9f8388de8174a47da78b9eeb7e5cTinderbox User><TD
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsWIDTH="178"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
2ca9cf1582ae972f8edc2b03bd846973b05dee6bTinderbox UserVALIGN="MIDDLE"
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TT
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox UserCLASS="varname"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>ip6_addr</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
076e51f1ff9497ae61a99994189ed8bf5a0d3472Tinderbox UserWIDTH="362"
076e51f1ff9497ae61a99994189ed8bf5a0d3472Tinderbox UserALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>An IPv6 address, such as <B
076e51f1ff9497ae61a99994189ed8bf5a0d3472Tinderbox UserCLASS="command"
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox User>fe80::200:f8ff:fe01:9742</B
91216cff91b34c9ff6e846dc23f248219cafe660Andreas Gustafsson>.</P
a2c370ca12bb0360ff7e969474ead3f788c65fffTinderbox User></TD
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox User></TR
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><TR
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><TD
8ac5ddf659a81ed668579818981fc1a5f28405d1Tinderbox UserWIDTH="178"
076e51f1ff9497ae61a99994189ed8bf5a0d3472Tinderbox UserALIGN="LEFT"
c4a35623959c143db02800584b8116d5b9cd72adTinderbox UserVALIGN="MIDDLE"
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan Hunt><P
b886b04d8d2b085cbf3e1bf4442dee87f43ba5e4Tinderbox User><TT
3ccf87473f7cf6d9faac156df38a935a238f96fdTinderbox UserCLASS="varname"
3857cb6fcabeb79d85de4b3e3e4ab99912b701f8Mark Andrews>ip_addr</TT
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></P
5e145d312503505bed49bcd72d1062b82989cadaTinderbox User></TD
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews><TD
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsWIDTH="362"
91216cff91b34c9ff6e846dc23f248219cafe660Andreas GustafssonALIGN="LEFT"
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsVALIGN="MIDDLE"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews><P
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User>An <TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="varname"
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox User>ip4_addr</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> or <TT
8292deab031e7599cd7622aa7675fbe139ca6095Mark AndrewsCLASS="varname"
c1e2310a3725eeed45e5e7c86750c64c5a02e993Francis Dupont>ip6_addr</TT
c1e2310a3725eeed45e5e7c86750c64c5a02e993Francis Dupont>.</P
4b61b671f5de767ec1d1b8e6cf7b849bddf08e98Tinderbox User></TD
4b61b671f5de767ec1d1b8e6cf7b849bddf08e98Tinderbox User></TR
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews><TR
3759f10fc543747668b1ca4b4671f35b0dea8445Francis Dupont><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="178"
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark AndrewsALIGN="LEFT"
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark AndrewsVALIGN="MIDDLE"
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews><P
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews><TT
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark AndrewsCLASS="varname"
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews>ip_port</TT
f1a2709aad7baa4161fdb6f63edf99b0150af252Evan Hunt></P
f1a2709aad7baa4161fdb6f63edf99b0150af252Evan Hunt></TD
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews><TD
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark AndrewsWIDTH="362"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark Andrews><P
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrews>An IP port <TT
e8fc8c884b44371784805e1e0d3100da403dd3f1Automatic UpdaterCLASS="varname"
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrews>number</TT
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews>.
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User <TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="varname"
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrews>number</TT
e8fc8c884b44371784805e1e0d3100da403dd3f1Automatic Updater> is limited to 0 through 65535, with values
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrewsbelow 1024 typically restricted to root-owned processes. In some
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrewscases an asterisk (`*') character can be used as a placeholder to
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox Userselect a random high-numbered port.</P
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TD
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrews></TR
e8fc8c884b44371784805e1e0d3100da403dd3f1Automatic Updater><TR
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrews><TD
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsWIDTH="178"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserALIGN="LEFT"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsVALIGN="MIDDLE"
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrews><P
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrews><TT
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark AndrewsCLASS="varname"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews>ip_prefix</TT
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></P
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrews></TD
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews><TD
ebe53509ca55a141131c104b6d722236b606e0efTinderbox UserWIDTH="362"
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark AndrewsALIGN="LEFT"
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserVALIGN="MIDDLE"
01a5c5503482fb3ba52088bf0178a7213273bf96Mark Andrews><P
9b0a4470f94e6e6c8ef5d85f3efa4fee0945796fTinderbox User>An IP network specified as an <TT
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark AndrewsCLASS="varname"
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews>ip_addr</TT
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark Andrews>,
9b0a4470f94e6e6c8ef5d85f3efa4fee0945796fTinderbox Userfollowed by a slash (`/') and then the number of bits in the netmask.
3bd8b5a8fb126e45c67ff53b68183c889cc27918Tinderbox UserTrailing zeros in a <TT
baeaed18341c015e9ad54ffa21973184c1bc432bMark AndrewsCLASS="varname"
3bd8b5a8fb126e45c67ff53b68183c889cc27918Tinderbox User>ip_addr</TT
9b0a4470f94e6e6c8ef5d85f3efa4fee0945796fTinderbox User> may omitted.
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsFor example, <B
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsCLASS="command"
4840ef4581a577a29a18d180b6bc2e7355378ed7Mark Andrews>127/8</B
4840ef4581a577a29a18d180b6bc2e7355378ed7Mark Andrews> is the network <B
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark AndrewsCLASS="command"
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews>127.0.0.0</B
8927a982bde7e4b665966b55f0fa57c5cf21b9d8Mark Andrews> with
4840ef4581a577a29a18d180b6bc2e7355378ed7Mark Andrewsnetmask <B
4840ef4581a577a29a18d180b6bc2e7355378ed7Mark AndrewsCLASS="command"
4840ef4581a577a29a18d180b6bc2e7355378ed7Mark Andrews>255.0.0.0</B
8927a982bde7e4b665966b55f0fa57c5cf21b9d8Mark Andrews> and <B
4840ef4581a577a29a18d180b6bc2e7355378ed7Mark AndrewsCLASS="command"
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews>1.2.3.0/28</B
4840ef4581a577a29a18d180b6bc2e7355378ed7Mark Andrews> is
bcfc5188be220e1334218dfe638dffce4744e792Tinderbox Usernetwork <B
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsCLASS="command"
8927a982bde7e4b665966b55f0fa57c5cf21b9d8Mark Andrews>1.2.3.0</B
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews> with netmask <B
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsCLASS="command"
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews>255.255.255.240</B
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews>.</P
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews></TD
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews></TR
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews><TR
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews><TD
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsWIDTH="178"
3bd8b5a8fb126e45c67ff53b68183c889cc27918Tinderbox UserALIGN="LEFT"
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox UserVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TT
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsCLASS="varname"
fab54780409846f7c71f6026d665f18c77c649efTinderbox User>key_id</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsWIDTH="362"
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark AndrewsALIGN="LEFT"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>A <TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="varname"
91216cff91b34c9ff6e846dc23f248219cafe660Andreas Gustafsson>domain_name</TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> representing
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrewsthe name of a shared key, to be used for transaction security.</P
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></TD
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TR
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><TR
efb0e886f18894a1d2489f1ad74ad14b579e11c7Mark Andrews><TD
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsWIDTH="178"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserALIGN="LEFT"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsVALIGN="MIDDLE"
3a988722ad9e209ba4064604d482dc4efe0e19ebTinderbox User><P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="varname"
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox User>key_list</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsWIDTH="362"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsALIGN="LEFT"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsVALIGN="MIDDLE"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews><P
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User>A list of one or more <TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="varname"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>key_id</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>s,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsseparated by semicolons and ending with a semicolon.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
a5636b773fa05a272b6876afd99309c0b3090e2fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
a5636b773fa05a272b6876afd99309c0b3090e2fMark AndrewsWIDTH="178"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox UserVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="varname"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>number</TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonWIDTH="362"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonALIGN="LEFT"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonVALIGN="MIDDLE"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>A non-negative integer with an entire
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellingtonrange limited by the range of a C language signed integer (2,147,483,647
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellingtonon a machine with 32 bit integers). Its acceptable value might further
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellingtonbe limited by the context in which it is used.</P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TR
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TR
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonWIDTH="178"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonALIGN="LEFT"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonVALIGN="MIDDLE"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="varname"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>path_name</TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonWIDTH="362"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonALIGN="LEFT"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonVALIGN="MIDDLE"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>A quoted string which will be used as
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellingtona pathname, such as <TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="filename"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>zones/master/my.test.domain</TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>.</P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TR
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TR
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonWIDTH="178"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonALIGN="LEFT"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonVALIGN="MIDDLE"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="varname"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>size_spec</TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TD
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox UserWIDTH="362"
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsALIGN="LEFT"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsVALIGN="MIDDLE"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><P
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews>A number, the word <TT
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserCLASS="userinput"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><B
2b7254075b883d70852a2757210793603085a0f1Tinderbox User>unlimited</B
ae7e54b14c946e0984c191554db9abb4893f9349Automatic Updater></TT
ae7e54b14c946e0984c191554db9abb4893f9349Automatic Updater>,
ae7e54b14c946e0984c191554db9abb4893f9349Automatic Updateror the word <TT
ae7e54b14c946e0984c191554db9abb4893f9349Automatic UpdaterCLASS="userinput"
ae7e54b14c946e0984c191554db9abb4893f9349Automatic Updater><B
ae7e54b14c946e0984c191554db9abb4893f9349Automatic Updater>default</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
ae7e54b14c946e0984c191554db9abb4893f9349Automatic Updater>.</P
ae7e54b14c946e0984c191554db9abb4893f9349Automatic Updater><P
ae7e54b14c946e0984c191554db9abb4893f9349Automatic Updater>The maximum
ae7e54b14c946e0984c191554db9abb4893f9349Automatic Updatervalue of <TT
ae7e54b14c946e0984c191554db9abb4893f9349Automatic UpdaterCLASS="varname"
ae7e54b14c946e0984c191554db9abb4893f9349Automatic Updater>size_spec</TT
ae7e54b14c946e0984c191554db9abb4893f9349Automatic Updater> is that of unsigned long integers
ae7e54b14c946e0984c191554db9abb4893f9349Automatic Updateron the machine. An <TT
b30ec46fec40a1b246f7965fbcd341fc6cfd1cc1Mark AndrewsCLASS="varname"
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox User>unlimited</TT
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox User> <TT
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox UserCLASS="varname"
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox User>size_spec</TT
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox User> requests unlimited
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox Useruse, or the maximum available amount. A <TT
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox UserCLASS="varname"
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox User>default size_spec</TT
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox User> uses
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox Userthe limit that was in force when the server was started.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox User>A <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="varname"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>number</TT
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox User> can
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox Useroptionally be followed by a scaling factor: <TT
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox UserCLASS="userinput"
c11c7b47726c02eb05e29ff7be56a3343146e396Tinderbox User><B
2b7254075b883d70852a2757210793603085a0f1Tinderbox User>K</B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> or <TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="userinput"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><B
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews>k</B
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> for
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewskilobytes, <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>M</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> or <TT
2b7254075b883d70852a2757210793603085a0f1Tinderbox UserCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>m</B
415d630b6309922caee8469384a6fab75cf05032Mark Andrews></TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> for
415d630b6309922caee8469384a6fab75cf05032Mark Andrewsmegabytes, and <TT
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsCLASS="userinput"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>G</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> or <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>g</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> for gigabytes,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewswhich scale by 1024, 1024*1024, and 1024*1024*1024 respectively.</P
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Integer
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellingtonstorage overflow is currently silently ignored during conversion
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellingtonof scaled values, resulting in values less than intended, possibly
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellingtoneven negative. Using <TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="varname"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>unlimited</TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington> is the best way
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellingtonto safely set a really large number.</P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TR
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TR
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonWIDTH="178"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonALIGN="LEFT"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonVALIGN="MIDDLE"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="varname"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>yes_or_no</TT
7adcb4de92bf4383a4c5624c4ed256736d02bc6dMark Andrews></P
7adcb4de92bf4383a4c5624c4ed256736d02bc6dMark Andrews></TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonWIDTH="362"
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox UserALIGN="LEFT"
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsVALIGN="MIDDLE"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><P
415d630b6309922caee8469384a6fab75cf05032Mark Andrews>Either <TT
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsCLASS="userinput"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>yes</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> or <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>no</B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TT
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews>.
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserThe words <TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>true</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> and <TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="userinput"
7adcb4de92bf4383a4c5624c4ed256736d02bc6dMark Andrews><B
7adcb4de92bf4383a4c5624c4ed256736d02bc6dMark Andrews>false</B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington> are
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellingtonalso accepted, as are the numbers <TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="userinput"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>1</B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington> and <TT
b7aab05edae933e169d5f83c653935b17c7f0a8bMark AndrewsCLASS="userinput"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>0</B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TT
409ba95e573b40cf36acf97dd62ee7e9c7775851Tinderbox User>.</P
7adcb4de92bf4383a4c5624c4ed256736d02bc6dMark Andrews></TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TR
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><TR
7adcb4de92bf4383a4c5624c4ed256736d02bc6dMark Andrews><TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonWIDTH="178"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonALIGN="LEFT"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="varname"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>dialup_option</TT
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews></P
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></TD
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonWIDTH="362"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonALIGN="LEFT"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonVALIGN="MIDDLE"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>One of <TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="userinput"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>yes</B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews<TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
5835beb229e17d583fb4b6fd4246bd014a68ddf6Tinderbox User><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>no</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>, <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User><B
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox User>notify</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
77997fab4b6b2d2c36ec66ace387447e8bc5c18eMark Andrews>,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews<TT
872e1437295dce8162ac7374317d593320ac2dd6Tinderbox UserCLASS="userinput"
872e1437295dce8162ac7374317d593320ac2dd6Tinderbox User><B
872e1437295dce8162ac7374317d593320ac2dd6Tinderbox User>notify-passive</B
872e1437295dce8162ac7374317d593320ac2dd6Tinderbox User></TT
872e1437295dce8162ac7374317d593320ac2dd6Tinderbox User>, <TT
872e1437295dce8162ac7374317d593320ac2dd6Tinderbox UserCLASS="userinput"
872e1437295dce8162ac7374317d593320ac2dd6Tinderbox User><B
872e1437295dce8162ac7374317d593320ac2dd6Tinderbox User>refresh</B
872e1437295dce8162ac7374317d593320ac2dd6Tinderbox User></TT
872e1437295dce8162ac7374317d593320ac2dd6Tinderbox User> or
872e1437295dce8162ac7374317d593320ac2dd6Tinderbox User<TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>passive</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>.
7adcb4de92bf4383a4c5624c4ed256736d02bc6dMark AndrewsWhen used in a zone, <TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="userinput"
7adcb4de92bf4383a4c5624c4ed256736d02bc6dMark Andrews><B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>notify-passive</B
7adcb4de92bf4383a4c5624c4ed256736d02bc6dMark Andrews></TT
7adcb4de92bf4383a4c5624c4ed256736d02bc6dMark Andrews>,
7adcb4de92bf4383a4c5624c4ed256736d02bc6dMark Andrews<TT
7adcb4de92bf4383a4c5624c4ed256736d02bc6dMark AndrewsCLASS="userinput"
7adcb4de92bf4383a4c5624c4ed256736d02bc6dMark Andrews><B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>refresh</B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>, and <TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="userinput"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>passive</B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellingtonare restricted to slave and stub zones.</P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TD
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TR
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TABLE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></P
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></DIV
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><DIV
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsCLASS="sect2"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><H2
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><A
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonNAME="address_match_lists"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.1.1. Address Match Lists</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect3"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><H3
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="sect3"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><A
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsNAME="AEN1204"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User>6.1.1.1. Syntax</A
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></H3
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User><PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="programlisting"
2b7254075b883d70852a2757210793603085a0f1Tinderbox User><TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="varname"
2b7254075b883d70852a2757210793603085a0f1Tinderbox User>address_match_list</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> = address_match_list_element ;
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews  [<SPAN
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="optional"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> address_match_list_element; ... </SPAN
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>]
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews<TT
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserCLASS="varname"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>address_match_list_element</TT
1fdd58445074579ee3b65c871137a7a1740eb542Mark Andrews> = [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ! </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>] (ip_address [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>/length</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>] |
620745a4c70077221fdeecaafd3252e9d3f944f3Tinderbox User   key key_id | acl_name | { address_match_list } )
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect3"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H3
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect3"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNAME="AEN1212"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.1.1.2. Definition and Usage</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H3
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>Address match lists are primarily used to determine access
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewscontrol for various server operations. They are also used to define
dde130e859339194eebd7184eaf440981838a7f0Mark Andrewspriorities for querying other nameservers and to set the addresses
ae454ec746d1d4db8d04e107d4d25ff13158c37fMark Andrewson which <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>named</B
34d1f3b65324f8fcf358fa2f47891441d4b1d2f0Tinderbox User> will listen for queries. The elements
dde130e859339194eebd7184eaf440981838a7f0Mark Andrewswhich constitute an address match list can be any of the following:</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><UL
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><LI
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
dde130e859339194eebd7184eaf440981838a7f0Mark Andrews>an IP address (IPv4 or IPv6)</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></LI
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><LI
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>an IP prefix (in the `/'-notation)</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></LI
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><LI
e8c17c74535be290abaaa160a434ed80bf0ad2feMark Andrews><P
bf19cffa72b8335c632232c497b64574f44d1176Tinderbox User>a key ID, as defined by the key statement</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></LI
6d6ac268afc251ebaaa98f22590334dccbe1f0bcTinderbox User><LI
f4ee48be3994797a8332b86c101db4d7b54799ceTinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>the name of an address match list previously defined with
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe <B
bf19cffa72b8335c632232c497b64574f44d1176Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>acl</B
662620c15ce856d8242e295228c54d1e0546d8c4Tinderbox User> statement</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></LI
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><LI
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>a nested address match list enclosed in braces</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></LI
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></UL
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Elements can be negated with a leading exclamation mark (`!')
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsand the match list names "any," "none," "localhost" and "localnets"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsare predefined. More information on those names can be found in
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe description of the acl statement.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The addition of the key clause made the name of this syntactic
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewselement something of a misnomer, since security keys can be used
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsto validate access without regard to a host or network address. Nonetheless,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe term "address match list" is still used throughout the documentation.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>When a given IP address or prefix is compared to an address
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsmatch list, the list is traversed in order until an element matches.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsThe interpretation of a match depends on whether the list is being used
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsfor access control, defining listen-on ports, or as a topology,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsand whether the element was negated.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>When used as an access control list, a non-negated match allows
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsaccess and a negated match denies access. If there is no match,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsaccess is denied. The clauses <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>allow-notify</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews<B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>allow-query</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>, <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>allow-transfer</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews<B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>allow-update</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> and <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>blackhole</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> all
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsuse address match lists  this. Similarly, the listen-on option will cause
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe server to not accept queries on any of the machine's addresses
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewswhich do not match the list.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>When used with the topology clause, a non-negated match returns
f39894c0b1cafb24035c14c74868e48be25f04a5Mark Andrewsa distance based on its position on the list (the closer the match
7f9e2fff07b9c17e0d7a0ea7abc9304ce9d01b61Tinderbox Useris to the start of the list, the shorter the distance is between
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsit and the server). A negated match will be assigned the maximum
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsdistance from the server. If there is no match, the address will
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsget a distance which is further than any non-negated list element,
bf8c3776f1bf1a1270e5e0443ae5a8df022632a8Mark Andrewsand closer than any negated element.</P
bf8c3776f1bf1a1270e5e0443ae5a8df022632a8Mark Andrews><P
bf8c3776f1bf1a1270e5e0443ae5a8df022632a8Mark Andrews>Because of the first-match aspect of the algorithm, an element
bf8c3776f1bf1a1270e5e0443ae5a8df022632a8Mark Andrewsthat defines a subset of another element in the list should come
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsbefore the broader element, regardless of whether either is negated. For
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsexample, in
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews<B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>1.2.3/24; ! 1.2.3.13;</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> the 1.2.3.13 element is
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewscompletely useless because the algorithm will match any lookup for
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews1.2.3.13 to the 1.2.3/24 element. Using <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
ec8755f605d7dcb2de1076040e77bc2d7ec33b4aTinderbox User>! 1.2.3.13; 1.2.3/24</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> fixes
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthat problem by having 1.2.3.13 blocked by the negation but all
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsother 1.2.3.* hosts fall through.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNAME="AEN1241"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.1.2. Comment Syntax</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 9 comment syntax allows for comments to appear
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      anywhere that white space may appear in a <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> configuration
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      file. To appeal to programmers of all kinds, they can be written
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      in C, C++, or shell/perl constructs.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect3"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H3
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect3"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNAME="AEN1246"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.1.2.1. Syntax</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H3
7f9e2fff07b9c17e0d7a0ea7abc9304ce9d01b61Tinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="programlisting"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>/* This is a <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
73537e8418e0c030063dbd863cf57feec026030aTinderbox User>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> comment as in C */</PRE
d4ef65050feac78554addf6e16a06c6e2e0bd331Brian Wellington>
d4ef65050feac78554addf6e16a06c6e2e0bd331Brian Wellington<PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="programlisting"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>// This is a <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> comment as in C++</PRE
9160e27507ba636887f6352bee5cb3729108fc76Tinderbox User>
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews<PRE
a03cb08d0c4f1ca5fbc121d2f02bdffa7eb52286Mark AndrewsCLASS="programlisting"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews># This is a <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> comment as in common UNIX shells and perl</PRE
a03cb08d0c4f1ca5fbc121d2f02bdffa7eb52286Mark Andrews>
a03cb08d0c4f1ca5fbc121d2f02bdffa7eb52286Mark Andrews      </P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User><DIV
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan HuntCLASS="sect3"
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan Hunt><H3
8f977d4d64b0ebe562607aaa044671ed34609978Tinderbox UserCLASS="sect3"
8f977d4d64b0ebe562607aaa044671ed34609978Tinderbox User><A
cdf1c3d486ec082ef6c92297d22d54a67cca0c90Tinderbox UserNAME="AEN1255"
cdf1c3d486ec082ef6c92297d22d54a67cca0c90Tinderbox User>6.1.2.2. Definition and Usage</A
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan Hunt></H3
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan Hunt><P
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>Comments may appear anywhere that whitespace may appear in
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Hunta <SPAN
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan HuntCLASS="acronym"
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Hunt>BIND</SPAN
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Hunt> configuration file.</P
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Hunt><P
efdfbc256c997060cfa0c2306c4fdd9dbc31342cTinderbox User>C-style comments start with the two characters /* (slash,
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Huntstar) and end with */ (star, slash). Because they are completely
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Huntdelimited with these characters, they can be used to comment only
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Hunta portion of a line or to span multiple lines.</P
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Hunt><P
efdfbc256c997060cfa0c2306c4fdd9dbc31342cTinderbox User>C-style comments cannot be nested. For example, the following
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Huntis not valid because the entire comment ends with the first */:</P
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Hunt><P
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Hunt><PRE
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan HuntCLASS="programlisting"
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Hunt>/* This is the start of a comment.
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Hunt   This is still part of the comment.
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Hunt/* This is an incorrect attempt at nesting a comment. */
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Hunt   This is no longer in any comment. */
d786bb0f8beee4425dc5ba21ea19f8f353c85a65Evan Hunt</PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>C++-style comments start with the two characters // (slash,
4b568c8873e83be023f2995e0a30de804499842dTinderbox Userslash) and continue to the end of the physical line. They cannot
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsbe continued across multiple physical lines; to have one logical
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewscomment span multiple lines, each line must use the // pair.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>For example:</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox User><PRE
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox UserCLASS="programlisting"
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox User>// This is the start of a comment.  The next line
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox User// is a new comment, even though it is logically
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews// part of the previous comment.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User>Shell-style (or perl-style, if you prefer) comments start
4c3d55cb2d2db8a4c52c99b0a76109fb3fe32151Mark Andrewswith the character <TT
4c3d55cb2d2db8a4c52c99b0a76109fb3fe32151Mark AndrewsCLASS="literal"
4c3d55cb2d2db8a4c52c99b0a76109fb3fe32151Mark Andrews>#</TT
4c3d55cb2d2db8a4c52c99b0a76109fb3fe32151Mark Andrews> (number sign) and continue to the end of the
4c3d55cb2d2db8a4c52c99b0a76109fb3fe32151Mark Andrewsphysical line, as in C++ comments.</P
4c3d55cb2d2db8a4c52c99b0a76109fb3fe32151Mark Andrews><P
4c3d55cb2d2db8a4c52c99b0a76109fb3fe32151Mark Andrews>For example:</P
4c3d55cb2d2db8a4c52c99b0a76109fb3fe32151Mark Andrews><P
4c3d55cb2d2db8a4c52c99b0a76109fb3fe32151Mark Andrews><PRE
4c3d55cb2d2db8a4c52c99b0a76109fb3fe32151Mark AndrewsCLASS="programlisting"
4c3d55cb2d2db8a4c52c99b0a76109fb3fe32151Mark Andrews># This is the start of a comment.  The next line
4c3d55cb2d2db8a4c52c99b0a76109fb3fe32151Mark Andrews# is a new comment, even though it is logically
4c3d55cb2d2db8a4c52c99b0a76109fb3fe32151Mark Andrews# part of the previous comment.
4b568c8873e83be023f2995e0a30de804499842dTinderbox User</PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="warning"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User><TABLE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="warning"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsBORDER="1"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="100%"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="CENTER"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Warning</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User>WARNING: you cannot use the semicolon (`;') character
7692464e78fc43578c394b8d1d30e81fec1d8523Tinderbox User          to start a comment such as you would in a zone file. The
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews          semicolon indicates the end of a configuration
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox User          statement.</P
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox User></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User></TABLE
076e51f1ff9497ae61a99994189ed8bf5a0d3472Tinderbox User></DIV
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User></DIV
b625bdae12277225b076a002dd4af80902529181Tinderbox User></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect1"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H1
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect1"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNAME="Configuration_File_Grammar"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.2. Configuration File Grammar</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H1
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>A <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 9 configuration consists of statements and comments.
b91d11bfcc30b96f2c80f3a76d12e3dcc8597a68Mark Andrews    Statements end with a semicolon. Statements and comments are the
b91d11bfcc30b96f2c80f3a76d12e3dcc8597a68Mark Andrews    only elements that can appear without enclosing braces. Many
b91d11bfcc30b96f2c80f3a76d12e3dcc8597a68Mark Andrews    statements contain a block of substatements, which are also
b91d11bfcc30b96f2c80f3a76d12e3dcc8597a68Mark Andrews    terminated with a semicolon.</P
b91d11bfcc30b96f2c80f3a76d12e3dcc8597a68Mark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The following statements are supported:</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsCLASS="informaltable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
b123be91958e0bc58a10c165be64d47661199e3bEvan Hunt><TABLE
b123be91958e0bc58a10c165be64d47661199e3bEvan HuntCELLPADDING="3"
b123be91958e0bc58a10c165be64d47661199e3bEvan HuntBORDER="1"
b123be91958e0bc58a10c165be64d47661199e3bEvan HuntCLASS="CALSTABLE"
b123be91958e0bc58a10c165be64d47661199e3bEvan Hunt><TR
b123be91958e0bc58a10c165be64d47661199e3bEvan Hunt><TD
b123be91958e0bc58a10c165be64d47661199e3bEvan HuntWIDTH="128"
b123be91958e0bc58a10c165be64d47661199e3bEvan HuntALIGN="LEFT"
b123be91958e0bc58a10c165be64d47661199e3bEvan HuntVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User><B
b123be91958e0bc58a10c165be64d47661199e3bEvan HuntCLASS="command"
b123be91958e0bc58a10c165be64d47661199e3bEvan Hunt>acl</B
b123be91958e0bc58a10c165be64d47661199e3bEvan Hunt></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="363"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>defines a named IP address
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsmatching list, for access control and other uses.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="128"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>controls</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></TD
8f3657636521817d2971ae29aa3fb66e33709753Mark Andrews><TD
8f3657636521817d2971ae29aa3fb66e33709753Mark AndrewsWIDTH="363"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>declares control channels to be used
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsby the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>rndc</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> utility.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
06ea55a43397bc38c34a6d7e5c6219fe483edbb2Tinderbox UserWIDTH="128"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
5e145d312503505bed49bcd72d1062b82989cadaTinderbox User>include</B
5e145d312503505bed49bcd72d1062b82989cadaTinderbox User></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="363"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>includes a file.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="128"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox UserCLASS="command"
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews>key</B
ecbc7ebb243a1f8a5dc6f28185ffe9e61d3b2102Mark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
6eb9141841e6ed9cbbdbbf41ab0e1c9592c5d078Mark Andrews><TD
6eb9141841e6ed9cbbdbbf41ab0e1c9592c5d078Mark AndrewsWIDTH="363"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
6eb9141841e6ed9cbbdbbf41ab0e1c9592c5d078Mark Andrews><P
6eb9141841e6ed9cbbdbbf41ab0e1c9592c5d078Mark Andrews>specifies key information for use in
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsauthentication and authorization using TSIG.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="128"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
6eb9141841e6ed9cbbdbbf41ab0e1c9592c5d078Mark AndrewsVALIGN="MIDDLE"
b30ec46fec40a1b246f7965fbcd341fc6cfd1cc1Mark Andrews><P
b30ec46fec40a1b246f7965fbcd341fc6cfd1cc1Mark Andrews><B
b30ec46fec40a1b246f7965fbcd341fc6cfd1cc1Mark AndrewsCLASS="command"
b30ec46fec40a1b246f7965fbcd341fc6cfd1cc1Mark Andrews>logging</B
b30ec46fec40a1b246f7965fbcd341fc6cfd1cc1Mark Andrews></P
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews></TD
b30ec46fec40a1b246f7965fbcd341fc6cfd1cc1Mark Andrews><TD
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsWIDTH="363"
b30ec46fec40a1b246f7965fbcd341fc6cfd1cc1Mark AndrewsALIGN="LEFT"
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsVALIGN="MIDDLE"
b30ec46fec40a1b246f7965fbcd341fc6cfd1cc1Mark Andrews><P
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews>specifies what the server logs, and where
b30ec46fec40a1b246f7965fbcd341fc6cfd1cc1Mark Andrewsthe log messages are sent.</P
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews></TD
b30ec46fec40a1b246f7965fbcd341fc6cfd1cc1Mark Andrews></TR
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews><TR
95c3a5e116c1da135f669c3f15398172fac6279dMark Andrews><TD
95c3a5e116c1da135f669c3f15398172fac6279dMark AndrewsWIDTH="128"
95c3a5e116c1da135f669c3f15398172fac6279dMark AndrewsALIGN="LEFT"
95c3a5e116c1da135f669c3f15398172fac6279dMark AndrewsVALIGN="MIDDLE"
95c3a5e116c1da135f669c3f15398172fac6279dMark Andrews><P
95c3a5e116c1da135f669c3f15398172fac6279dMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>options</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="363"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User><P
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt>controls global server configuration
2fee8782a6fd57d86a67949092ab9197111af390Evan Huntoptions and sets defaults for other statements.</P
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt></TD
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt></TR
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt><TR
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt><TD
2fee8782a6fd57d86a67949092ab9197111af390Evan HuntWIDTH="128"
2fee8782a6fd57d86a67949092ab9197111af390Evan HuntALIGN="LEFT"
2fee8782a6fd57d86a67949092ab9197111af390Evan HuntVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>server</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="363"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
f39894c0b1cafb24035c14c74868e48be25f04a5Mark Andrews><P
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>sets certain configuration options on
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsa per-server basis.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
4cd01ec68f8e73c59231598c3dde863df0c0554dTinderbox User><TD
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserWIDTH="128"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>trusted-keys</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="363"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>defines trusted DNSSEC keys.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="128"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>view</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserWIDTH="363"
b6561016dc8a813bfd91cef5b876b3dfc3f08ffaTinderbox UserALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>defines a view.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="128"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User><P
8ac5ddf659a81ed668579818981fc1a5f28405d1Tinderbox User><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
2b7254075b883d70852a2757210793603085a0f1Tinderbox User>zone</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
b6561016dc8a813bfd91cef5b876b3dfc3f08ffaTinderbox User></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="363"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>defines a zone.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TABLE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>logging</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> and
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>options</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> statements may only occur once per
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    configuration.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNAME="AEN1348"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>6.2.1. <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
ebe53509ca55a141131c104b6d722236b606e0efTinderbox User>acl</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> Statement Grammar</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="programlisting"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>acl</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> acl-name {
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    address_match_list
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews};
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
e1a389f7478d094ffbe592df28328a10d484cb38Tinderbox User><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNAME="acl"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.2.2. <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>acl</B
2da2220fe7af2c45724b50b0187523b1fab0cf08Rob Austein> Statement Definition and
e1a389f7478d094ffbe592df28328a10d484cb38Tinderbox UserUsage</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>acl</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> statement assigns a symbolic
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      name to an address match list. It gets its name from a primary
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      use of address match lists: Access Control Lists (ACLs).</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Note that an address match list's name must be defined
4bc4740495aca028379fecd2afac26b1d53a4e25Tinderbox User      with <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>acl</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> before it can be used elsewhere; no
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      forward references are allowed.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The following ACLs are built-in:</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
e1a389f7478d094ffbe592df28328a10d484cb38Tinderbox UserCLASS="informaltable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
e1a389f7478d094ffbe592df28328a10d484cb38Tinderbox User></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TABLE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCELLPADDING="3"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsBORDER="1"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="CALSTABLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="108"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>any</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="384"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
e1a389f7478d094ffbe592df28328a10d484cb38Tinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Matches all hosts.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="108"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark Andrews><P
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark Andrews><B
82b96702f09ed6bc5cd0f1aa5e54198c04cc192bTinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>none</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
c42fe4bf07216f2d2d058190f59e74cecdfe0f5aTinderbox UserWIDTH="384"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Matches no hosts.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="108"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
549c517e2ecad52bb1d32f08920e29d4e8cda71eTinderbox User><B
549c517e2ecad52bb1d32f08920e29d4e8cda71eTinderbox UserCLASS="command"
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox User>localhost</B
7204d08a319cf590ae4280b8cc20999320398574Mark Andrews></P
7204d08a319cf590ae4280b8cc20999320398574Mark Andrews></TD
7204d08a319cf590ae4280b8cc20999320398574Mark Andrews><TD
7204d08a319cf590ae4280b8cc20999320398574Mark AndrewsWIDTH="384"
7204d08a319cf590ae4280b8cc20999320398574Mark AndrewsALIGN="LEFT"
7204d08a319cf590ae4280b8cc20999320398574Mark AndrewsVALIGN="MIDDLE"
7204d08a319cf590ae4280b8cc20999320398574Mark Andrews><P
7204d08a319cf590ae4280b8cc20999320398574Mark Andrews>Matches the IP addresses of all interfaces
7204d08a319cf590ae4280b8cc20999320398574Mark Andrewson the system.</P
7204d08a319cf590ae4280b8cc20999320398574Mark Andrews></TD
7204d08a319cf590ae4280b8cc20999320398574Mark Andrews></TR
7204d08a319cf590ae4280b8cc20999320398574Mark Andrews><TR
8927a982bde7e4b665966b55f0fa57c5cf21b9d8Mark Andrews><TD
7204d08a319cf590ae4280b8cc20999320398574Mark AndrewsWIDTH="108"
7204d08a319cf590ae4280b8cc20999320398574Mark AndrewsALIGN="LEFT"
7204d08a319cf590ae4280b8cc20999320398574Mark AndrewsVALIGN="MIDDLE"
7204d08a319cf590ae4280b8cc20999320398574Mark Andrews><P
7204d08a319cf590ae4280b8cc20999320398574Mark Andrews><B
7204d08a319cf590ae4280b8cc20999320398574Mark AndrewsCLASS="command"
7204d08a319cf590ae4280b8cc20999320398574Mark Andrews>localnets</B
7204d08a319cf590ae4280b8cc20999320398574Mark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="384"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
052969f1f134d31c7f0fd0d55a89bfd53d538e77Tinderbox User><P
81573f7b114a4c71c0bf47058c00fffd245323ceTinderbox User>Matches any host on a network for which
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark Andrewsthe system has an interface.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
ae454ec746d1d4db8d04e107d4d25ff13158c37fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TABLE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
ae454ec746d1d4db8d04e107d4d25ff13158c37fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
ae454ec746d1d4db8d04e107d4d25ff13158c37fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
ae454ec746d1d4db8d04e107d4d25ff13158c37fMark Andrews><H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><A
ae454ec746d1d4db8d04e107d4d25ff13158c37fMark AndrewsNAME="AEN1390"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.2.3. <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
ae454ec746d1d4db8d04e107d4d25ff13158c37fMark Andrews>controls</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> Statement Grammar</A
ae454ec746d1d4db8d04e107d4d25ff13158c37fMark Andrews></H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><PRE
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserCLASS="programlisting"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>controls</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> {
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews   inet ( ip_addr | * ) [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> port ip_port </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>] allow <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> address_match_list </I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews                keys <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
ac2e2800b4ac9cbe4cb756d967f4583c611eb75eMark Andrews><I
ac2e2800b4ac9cbe4cb756d967f4583c611eb75eMark Andrews> key_list </I
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt></TT
f4f4b97a35429a21480a3858f96b8020f2a9f45dTinderbox User>;
ac2e2800b4ac9cbe4cb756d967f4583c611eb75eMark Andrews   [<SPAN
9dde9ce5558696850b6b9850a8475ae518409518Tinderbox UserCLASS="optional"
ac2e2800b4ac9cbe4cb756d967f4583c611eb75eMark Andrews> inet ...; </SPAN
9dde9ce5558696850b6b9850a8475ae518409518Tinderbox User>]
903fcd6a60c6420f5dbd753ab068ba5ca2af8e62Tinderbox User};
903fcd6a60c6420f5dbd753ab068ba5ca2af8e62Tinderbox User</PRE
ac2e2800b4ac9cbe4cb756d967f4583c611eb75eMark Andrews></DIV
ac2e2800b4ac9cbe4cb756d967f4583c611eb75eMark Andrews><DIV
ac2e2800b4ac9cbe4cb756d967f4583c611eb75eMark AndrewsCLASS="sect2"
ac2e2800b4ac9cbe4cb756d967f4583c611eb75eMark Andrews><H2
ac2e2800b4ac9cbe4cb756d967f4583c611eb75eMark AndrewsCLASS="sect2"
ac2e2800b4ac9cbe4cb756d967f4583c611eb75eMark Andrews><A
ac2e2800b4ac9cbe4cb756d967f4583c611eb75eMark AndrewsNAME="AEN1399"
ac2e2800b4ac9cbe4cb756d967f4583c611eb75eMark Andrews>6.2.4. <B
ac2e2800b4ac9cbe4cb756d967f4583c611eb75eMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>controls</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> Statement Definition and
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserUsage</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>controls</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> statement declares control
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      channels to be used by system administrators to affect the
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User      operation of the local nameserver. These control channels are
c4a35623959c143db02800584b8116d5b9cd72adTinderbox User      used by the <B
c4a35623959c143db02800584b8116d5b9cd72adTinderbox UserCLASS="command"
c4a35623959c143db02800584b8116d5b9cd72adTinderbox User>rndc</B
c4a35623959c143db02800584b8116d5b9cd72adTinderbox User> utility to send commands to
c4a35623959c143db02800584b8116d5b9cd72adTinderbox User      and retrieve non-DNS results from a nameserver.</P
c4a35623959c143db02800584b8116d5b9cd72adTinderbox User><P
c4a35623959c143db02800584b8116d5b9cd72adTinderbox User>An <B
c4a35623959c143db02800584b8116d5b9cd72adTinderbox UserCLASS="command"
c4a35623959c143db02800584b8116d5b9cd72adTinderbox User>inet</B
c4a35623959c143db02800584b8116d5b9cd72adTinderbox User> control channel is a TCP/IP
c4a35623959c143db02800584b8116d5b9cd72adTinderbox User      socket accessible to the Internet, created at the specified
c4a35623959c143db02800584b8116d5b9cd72adTinderbox User      <B
c4a35623959c143db02800584b8116d5b9cd72adTinderbox UserCLASS="command"
c4a35623959c143db02800584b8116d5b9cd72adTinderbox User>ip_port</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> on the specified
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
bd89a8c38d51f0a3035f6aa411e55e34a4b6f470Tinderbox User>ip_addr</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.  If no port is specified, port 953
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      is used by default.  "*" cannot be used for
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>ip_port</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>The ability to issue commands over the control channel is
620745a4c70077221fdeecaafd3252e9d3f944f3Tinderbox User      restricted by the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>allow</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> and
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>keys</B
51374c645c0e6dd77c369c13834c751785f96f14Tinderbox User> clauses.  Connections to the control
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      channel are permitted based on the address permissions in
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>address_match_list</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>. <B
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserCLASS="command"
620745a4c70077221fdeecaafd3252e9d3f944f3Tinderbox User>key_id</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      members of the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>address_match_list</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> are
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      ignored, and instead are interpreted independently based the
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>key_list</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.  Each <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>key_id</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> in
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>key_list</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> is allowed to be used to
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      authenticate commands and responses given over the control
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      channel by digitally signing each message between the server and
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      a command client (See <A
f09f1bf18e3ad40a0e8a6cc3dabf1c11f04992cbMark AndrewsHREF="Bv9ARM.ch03.html#rndc"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Remote Name Daemon Control application</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> in
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      <A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsHREF="Bv9ARM.ch03.html#admin_tools"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Section 3.4.1.2</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>). All commands to the control channel
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      must be signed by one of its specified keys to
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      be honored.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The UNIX control channel type of <SPAN
f09f1bf18e3ad40a0e8a6cc3dabf1c11f04992cbMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 8 is not supported
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      in <SPAN
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 9.0.0, and is not expected to be added in future
10702d681eb650391bcaa0e2704aa3cf2dbf0e98Mark Andrews      releases.  If it is present in the controls statement from a
10702d681eb650391bcaa0e2704aa3cf2dbf0e98Mark Andrews      <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User> 8 configuration file, a non-fatal warning will be
10702d681eb650391bcaa0e2704aa3cf2dbf0e98Mark Andrews      logged.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H2
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNAME="AEN1425"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.2.5. <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>include</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> Statement Grammar</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><PRE
93ca5ee4c4c77aca8d3bcffd70216f30ef398387Mark AndrewsCLASS="programlisting"
93ca5ee4c4c77aca8d3bcffd70216f30ef398387Mark Andrews>include <TT
93ca5ee4c4c77aca8d3bcffd70216f30ef398387Mark AndrewsCLASS="replaceable"
93ca5ee4c4c77aca8d3bcffd70216f30ef398387Mark Andrews><I
93ca5ee4c4c77aca8d3bcffd70216f30ef398387Mark Andrews>filename</I
f39894c0b1cafb24035c14c74868e48be25f04a5Mark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>;</PRE
1a63fb1d1448ed3f8fd7227ae57be67c2e71279eMark Andrews></DIV
1a63fb1d1448ed3f8fd7227ae57be67c2e71279eMark Andrews><DIV
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark AndrewsCLASS="sect2"
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark Andrews><H2
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark AndrewsCLASS="sect2"
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark Andrews><A
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark AndrewsNAME="AEN1430"
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark Andrews>6.2.6. <B
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark AndrewsCLASS="command"
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark Andrews>include</B
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark Andrews> Statement Definition and
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark AndrewsUsage</A
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark Andrews></H2
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark Andrews><P
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark Andrews>The <B
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark AndrewsCLASS="command"
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark Andrews>include</B
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark Andrews> statement inserts the
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark Andrews      specified file at the point that the <B
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark AndrewsCLASS="command"
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark Andrews>include</B
8e5fce1f9ceba17dd7e3ff0eb287e1e999c14249Mark Andrews>
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      statement is encountered. The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>include</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      statement facilitates the administration of configuration files
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      by permitting the reading or writing of some things but not
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      others. For example, the statement could include private keys
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      that are readable only by a nameserver.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNAME="AEN1437"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.2.7. <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>key</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> Statement Grammar</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H2
267e57d39b06f65eecb8f92e476dcf0c8cd90fabTinderbox User><PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="programlisting"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>key <TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>key_id</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> {
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    algorithm <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>string</I
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TT
7adcb4de92bf4383a4c5624c4ed256736d02bc6dMark Andrews>;
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    secret <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>string</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>;
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews};
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User</PRE
415d630b6309922caee8469384a6fab75cf05032Mark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
bec9d04b657e1582d2531bdc02503bebde2aa978Tinderbox UserCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H2
81573f7b114a4c71c0bf47058c00fffd245323ceTinderbox UserCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNAME="AEN1444"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.2.8. <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
81573f7b114a4c71c0bf47058c00fffd245323ceTinderbox User>key</B
81573f7b114a4c71c0bf47058c00fffd245323ceTinderbox User> Statement Definition and Usage</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>key</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> statement defines a shared
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      secret key for use with TSIG, see <A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsHREF="Bv9ARM.ch04.html#tsig"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Section 4.4</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
81573f7b114a4c71c0bf47058c00fffd245323ceTinderbox User>The <TT
81573f7b114a4c71c0bf47058c00fffd245323ceTinderbox UserCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
81573f7b114a4c71c0bf47058c00fffd245323ceTinderbox User>key_id</I
2b7254075b883d70852a2757210793603085a0f1Tinderbox User></TT
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox User>, also known as the
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox User      key name, is a domain name uniquely identifying the key. It can
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox User      be used in a "server" statement to cause requests sent to that
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox User      server to be signed with this key, or in address match lists to
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox User      verify that incoming requests have been signed with a key
82447d835d3ff5c658749b4e9b4f66166407b3eaAutomatic Updater      matching this name, algorithm, and secret.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
b886b04d8d2b085cbf3e1bf4442dee87f43ba5e4Tinderbox User>The <TT
e135e3c4b1f4f986f00997f5ad5866effb203139Tinderbox UserCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>algorithm_id</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> is a string
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      that specifies a security/authentication algorithm. The only
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      algorithm currently supported with TSIG authentication is
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="literal"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>hmac-md5</TT
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>.  The
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews      <TT
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsCLASS="replaceable"
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews><I
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews>secret_string</I
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews></TT
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews> is the secret to be
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews      used by the algorithm, and is treated as a base-64 encoded
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews      string.</P
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews></DIV
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews><DIV
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsCLASS="sect2"
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews><H2
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsCLASS="sect2"
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews><A
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsNAME="AEN1456"
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews>6.2.9. <B
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsCLASS="command"
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews>logging</B
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews> Statement Grammar</A
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews></H2
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews><PRE
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsCLASS="programlisting"
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews><B
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsCLASS="command"
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews>logging</B
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews> {
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews   [ <B
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsCLASS="command"
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews>channel</B
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews> <TT
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsCLASS="replaceable"
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews><I
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews>channel_name</I
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews></TT
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt> {
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt     ( <B
2fee8782a6fd57d86a67949092ab9197111af390Evan HuntCLASS="command"
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews>file</B
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews> <TT
7614afdab2abb26b34531409d2f28dcc56c52c6eEvan HuntCLASS="replaceable"
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews><I
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews>path name</I
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews></TT
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews>
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews         [ <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>versions</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ( <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
f0877b0237674d0519006ca7f8436e5f92250d30Mark Andrews>number</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> | <TT
c849f7acb025c73f56a8e28902a473f2aeaba39fTinderbox UserCLASS="literal"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>unlimited</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ) ]
c849f7acb025c73f56a8e28902a473f2aeaba39fTinderbox User         [ <B
c849f7acb025c73f56a8e28902a473f2aeaba39fTinderbox UserCLASS="command"
c849f7acb025c73f56a8e28902a473f2aeaba39fTinderbox User>size</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
c849f7acb025c73f56a8e28902a473f2aeaba39fTinderbox User><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>size spec</I
c849f7acb025c73f56a8e28902a473f2aeaba39fTinderbox User></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews       | <B
fdd0516065be2316409d0cc7dfb4e4f54eadc5afMark AndrewsCLASS="command"
c849f7acb025c73f56a8e28902a473f2aeaba39fTinderbox User>syslog</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
fdd0516065be2316409d0cc7dfb4e4f54eadc5afMark Andrews>syslog_facility</I
c849f7acb025c73f56a8e28902a473f2aeaba39fTinderbox User></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>
c849f7acb025c73f56a8e28902a473f2aeaba39fTinderbox User       | <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>stderr</B
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews       | <B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="command"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>null</B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington> );
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington     [ <B
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>severity</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> (<TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="option"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>critical</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> | <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="option"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>error</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> | <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="option"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>warning</TT
0d22fc8758297da217ac71ffdd6e47643bd506a2Mark Andrews> | <TT
74d98566ed6a2280ea84d146e7c81275f1c5649dMark AndrewsCLASS="option"
127d2b350ec0e5759e9fdc675ae63502208009bfTinderbox User>notice</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> |
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews                 <TT
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserCLASS="option"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>info</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> | <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="option"
4c3d55cb2d2db8a4c52c99b0a76109fb3fe32151Mark Andrews>debug</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> [ <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
e062b72f783cdb436a1a57a630bdff471dbb3038Mark Andrews>level</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ] | <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="option"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>dynamic</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ); ]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews     [ <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>print-category</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> <TT
cc17f4a672fc4ce67327902dd797c4465f12c4c9Mark AndrewsCLASS="option"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>yes</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> or <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="option"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>no</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>; ]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews     [ <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>print-severity</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> <TT
c855e7170a7ddb5d4ebab69a771f35dc93e95e43Mark AndrewsCLASS="option"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>yes</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> or <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="option"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>no</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>; ]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews     [ <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>print-time</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="option"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>yes</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> or <TT
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserCLASS="option"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>no</TT
4674e9e023d152960b580eeadb0accc14dba7627Tinderbox User>; ]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews   }; ]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews   [ <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
4674e9e023d152960b580eeadb0accc14dba7627Tinderbox User>category</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>category_name</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> {
1dbe80aade5bed39893d903cf9d7318a5265813aTinderbox User     <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
c42fe4bf07216f2d2d058190f59e74cecdfe0f5aTinderbox User><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>channel_name</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ; [ <TT
384e37a497027518dd33d9c78575e58dd24a796dTinderbox UserCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>channel_nam</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>e ; ... ]
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User   }; ]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews   ...
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews};
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNAME="AEN1496"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.2.10. <B
b577ce9ed2153db6539fb975b4a7aa16d9b3baeeTinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>logging</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> Statement Definition and
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsUsage</A
bd89a8c38d51f0a3035f6aa411e55e34a4b6f470Tinderbox User></H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt>The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>logging</B
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User> statement configures a wide
4b14dedee8b236fc66413d8589c4cb3d950092ceTinderbox Uservariety of logging options for the nameserver. Its <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
12ee3c02ab36d7e7430bd705cc289db1a69a5733Mark Andrews>channel</B
601c1908d06375f5dea00ab98671a6c934d8a840Automatic Updater> phrase
aa1d397c4736cd86540555193d71e55fa3b37b2aMark Andrewsassociates output methods, format options and severity levels with
601c1908d06375f5dea00ab98671a6c934d8a840Automatic Updatera name that can then be used with the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>category</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> phrase
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsto select how various classes of messages are logged.</P
edfc6f05eaff086af661b2535a766373dc1e8345Tinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Only one <B
edfc6f05eaff086af661b2535a766373dc1e8345Tinderbox UserCLASS="command"
1e07acce903514fd98ee0474a664e4a01908c791Tinderbox User>logging</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> statement is used to define
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsas many channels and categories as are wanted. If there is no <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>logging</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> statement,
5382b244c33da2a91116127313d6e8ad47175b41Tinderbox Userthe logging configuration will be:</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="programlisting"
80eaeb6c6f1b8170a84f8faef7264bd821036e8eTinderbox User><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
d642d3857129678797a01adee14fbd70335b05a9Mark Andrews>logging</B
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt> {
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt     category "default" { "default_syslog"; "default_debug"; };
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt};
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt</PRE
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt><P
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt>In <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
fd8fb4df8499e292daeac765f599ac7c507d9ca3Mark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 9, the logging configuration is only established when
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe entire configuration file has been parsed.  In <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 8, it was
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsestablished as soon as the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>logging</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> statement
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewswas parsed. When the server is starting up, all logging messages
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsregarding syntax errors in the configuration file go to the default
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewschannels, or to standard error if the "<TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="option"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>-g</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>" option
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewswas specified.</P
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User><DIV
7c8e44a2dc1121dbe3b615c9c934f37fb1741bb9Tinderbox UserCLASS="sect3"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H3
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect3"
bac4435d473c9a0281507524f084480c34aa942aTinderbox User><A
bac4435d473c9a0281507524f084480c34aa942aTinderbox UserNAME="AEN1513"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.2.10.1. The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>channel</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> Phrase</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H3
bac4435d473c9a0281507524f084480c34aa942aTinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>All log output goes to one or more <I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="emphasis"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>channels</I
bac4435d473c9a0281507524f084480c34aa942aTinderbox User>;
bac4435d473c9a0281507524f084480c34aa942aTinderbox Useryou can make as many of them as you want.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
e5c7ef08d1bf9f8388de8174a47da78b9eeb7e5cTinderbox User>Every channel definition must include a destination clause that
2128e98a141572c7cf701f3faee1a80c9c2a1a01Tinderbox Usersays whether messages selected for the channel go to a file, to a
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsparticular syslog facility, to the standard error stream, or are
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrewsdiscarded. It can optionally also limit the message severity level
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrewsthat will be accepted by the channel (the default is
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews<B
2128e98a141572c7cf701f3faee1a80c9c2a1a01Tinderbox UserCLASS="command"
bf8c3776f1bf1a1270e5e0443ae5a8df022632a8Mark Andrews>info</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>), and whether to include a
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews<B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>named</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>-generated time stamp, the category name
dda78c0f84895c174ef7206dca6082939c030792Tinderbox Userand/or severity level (the default is not to include any).</P
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>null</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> destination clause
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewscauses all messages sent to the channel to be discarded;
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsin that case, other options for the channel are meaningless.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
7c112f7d8f632412901d9f3c4445eb0db6db95feTinderbox User>The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>file</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> destination clause directs the channel
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsto a disk file.  It can include limitations
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsboth on how large the file is allowed to become, and how many versions
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsof the file will be saved each time the file is opened.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
4898d4ae6072702caa8a39a702f810212bca0473Tinderbox User>size</B
4898d4ae6072702caa8a39a702f810212bca0473Tinderbox User> option for files is simply a hard
4898d4ae6072702caa8a39a702f810212bca0473Tinderbox Userceiling on log growth. If the file ever exceeds the size, then <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>named</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> will
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsnot write anything more to it until the file is reopened; exceeding
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe size does not automatically trigger a reopen. The default behavior
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsis not to limit the size of the file.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>If you use the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>version</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> log file option,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthen <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>named</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> will retain that many backup versions
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsof the file by renaming them when opening. For example, if you choose
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsto keep 3 old versions of the file <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="filename"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>lamers.log</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> then
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsjust before it is opened <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="filename"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>lamers.log.1</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> is renamed
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsto <TT
16afb24a0006e01f1b9d9256b44be035b1bb2d32Tinderbox UserCLASS="filename"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>lamers.log.2</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>, <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="filename"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>lamers.log.0</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> is
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsrenamed to <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="filename"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>lamers.log.1</TT
16afb24a0006e01f1b9d9256b44be035b1bb2d32Tinderbox User>, and <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="filename"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>lamers.log</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> is
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsrenamed to <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="filename"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>lamers.log.0</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>. No rolled versions
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsare kept by default; any existing log file is simply appended. The <B
6b9225c4be71da5d6c426072c231a611b86459a7Tinderbox UserCLASS="command"
1dbe80aade5bed39893d903cf9d7318a5265813aTinderbox User>unlimited</B
632a81d4535df620c89e29c3948d1c197944570eTinderbox User> keyword
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsis synonymous with <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>99</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> in current <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> releases.</P
ae454ec746d1d4db8d04e107d4d25ff13158c37fMark Andrews><P
1dbe80aade5bed39893d903cf9d7318a5265813aTinderbox User>Example usage of the size and versions options:</P
1dbe80aade5bed39893d903cf9d7318a5265813aTinderbox User><PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="programlisting"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>channel "an_example_channel" {
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    file "example.log" versions 3 size 20m;
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    print-time yes;
632a81d4535df620c89e29c3948d1c197944570eTinderbox User    print-category yes;
7c112f7d8f632412901d9f3c4445eb0db6db95feTinderbox User};
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</PRE
9ff905d267731a305a37c85ca7feaf74a997f213Tinderbox User><P
de5440dafc70b840bbc21bf81815bab68e4398bfTinderbox User>The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>syslog</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> destination clause directs the
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewschannel to the system log.  Its argument is a
8760668accc65fa979e533074409396829eb85ffTinderbox Usersyslog facility as described in the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>syslog</B
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User> man
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox Userpage. How <B
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox UserCLASS="command"
3718b6ecfc40479988a9182701a4af5b3f8233f4Tinderbox User>syslog</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> will handle messages sent to
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthis facility is described in the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>syslog.conf</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> man
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewspage. If you have a system which uses a very old version of <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>syslog</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> that
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsonly uses two arguments to the <B
2706fce75f04398595d9648122c6b67164e94fccTinderbox UserCLASS="command"
609b8d08176469485edce25f3c2f50365bbd3819Mark Andrews>openlog()</B
609b8d08176469485edce25f3c2f50365bbd3819Mark Andrews> function,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthen this clause is silently ignored.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>severity</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> clause works like <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
ae454ec746d1d4db8d04e107d4d25ff13158c37fMark Andrews>syslog</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>'s
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews"priorities," except that they can also be used if you are writing
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsstraight to a file rather than using <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>syslog</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsMessages which are not at least of the severity level given will
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsnot be selected for the channel; messages of higher severity levels
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewswill be accepted.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>If you are using <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>syslog</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>, then the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>syslog.conf</B
eab4f224b546294db25e49b266cc68dd35898abdTinderbox User> priorities
d56349eff4a1ebb8f4370df5a8a507f1a8ecd0dfMark Andrewswill also determine what eventually passes through. For example,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsdefining a channel facility and severity as <B
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox UserCLASS="command"
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User>daemon</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> and <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>debug</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> but
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsonly logging <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>daemon.warning</B
d56349eff4a1ebb8f4370df5a8a507f1a8ecd0dfMark Andrews> via <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>syslog.conf</B
f4e993861df6317cf0dea2ad72f315e3c96d942aMark Andrews> will
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewscause messages of severity <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>info</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> and <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>notice</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> to
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsbe dropped. If the situation were reversed, with <B
f4e993861df6317cf0dea2ad72f315e3c96d942aMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>named</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> writing
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsmessages of only <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>warning</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> or higher, then <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User>syslogd</B
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User> would
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox Userprint all messages it received from the channel.</P
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User><P
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User>The <B
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox UserCLASS="command"
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User>stderr</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> destination clause directs the
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox Userchannel to the server's standard error stream.  This is intended for
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsuse when the server is running as a foreground process, for example
0c9af52e8ff870126d837c52f1d30d8ad0608733Tinderbox Userwhen debugging a configuration.</P
015f044f7f916eb18d053f2e5dcbee481425bc66Mark Andrews><P
8f977d4d64b0ebe562607aaa044671ed34609978Tinderbox User>The server can supply extensive debugging information when
015f044f7f916eb18d053f2e5dcbee481425bc66Mark Andrewsit is in debugging mode. If the server's global debug level is greater
8f977d4d64b0ebe562607aaa044671ed34609978Tinderbox Userthan zero, then debugging mode will be active. The global debug
34348322c7016b6b5d1bceee5b1cf42e2d2216b4Tinderbox Userlevel is set either by starting the <B
bec9d04b657e1582d2531bdc02503bebde2aa978Tinderbox UserCLASS="command"
b7f4a6fd8ac70ebf889179ee84c1dd35647bfc73Evan Hunt>named</B
b7f4a6fd8ac70ebf889179ee84c1dd35647bfc73Evan Hunt> server
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewswith the <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="option"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>-d</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> flag followed by a positive integer,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsor by running <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
b7f4a6fd8ac70ebf889179ee84c1dd35647bfc73Evan Hunt>rndc trace</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>. <DIV
b7f4a6fd8ac70ebf889179ee84c1dd35647bfc73Evan HuntCLASS="note"
b7f4a6fd8ac70ebf889179ee84c1dd35647bfc73Evan Hunt><BLOCKQUOTE
b7f4a6fd8ac70ebf889179ee84c1dd35647bfc73Evan HuntCLASS="note"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
b7f4a6fd8ac70ebf889179ee84c1dd35647bfc73Evan Hunt><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Note: </B
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews>the latter
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrewsmethod is not yet implemented</P
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews></BLOCKQUOTE
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews></DIV
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews> The global debug level
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrewscan be set to zero, and debugging mode turned off, by running <B
7e1a8f402e3881388db37152f71c698cb1f1c426Mark AndrewsCLASS="command"
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews>ndc
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrewsnotrace</B
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews>. All debugging messages in the server have a debug
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrewslevel, and higher debug levels give more detailed output. Channels
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrewsthat specify a specific debug severity, for example:</P
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews><PRE
7e1a8f402e3881388db37152f71c698cb1f1c426Mark AndrewsCLASS="programlisting"
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews>channel "specific_debug_level" {
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews    file "foo";
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews    severity debug 3;
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews};
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews</PRE
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews><P
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews>will get debugging output of level 3 or less any time the
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrewsserver is in debugging mode, regardless of the global debugging
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrewslevel. Channels with <B
7e1a8f402e3881388db37152f71c698cb1f1c426Mark AndrewsCLASS="command"
7e1a8f402e3881388db37152f71c698cb1f1c426Mark Andrews>dynamic</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> severity use the
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsserver's global level to determine what messages to print.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>If <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>print-time</B
3a988722ad9e209ba4064604d482dc4efe0e19ebTinderbox User> has been turned on, then
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe date and time will be logged. <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>print-time</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> may
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsbe specified for a <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>syslog</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> channel, but is usually
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewspointless since <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>syslog</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> also prints the date and
351eca011cf38fd3272b325029afce144a9a1ebaMark Andrewstime. If <B
351eca011cf38fd3272b325029afce144a9a1ebaMark AndrewsCLASS="command"
351eca011cf38fd3272b325029afce144a9a1ebaMark Andrews>print-category</B
351eca011cf38fd3272b325029afce144a9a1ebaMark Andrews> is requested, then the
351eca011cf38fd3272b325029afce144a9a1ebaMark Andrewscategory of the message will be logged as well. Finally, if <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>print-severity</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> is
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewson, then the severity level of the message will be logged. The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>print-</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> options may
dda78c0f84895c174ef7206dca6082939c030792Tinderbox Userbe used in any combination, and will always be printed in the following
000b9bc9dc696babb3908802e9145562b797c1b0Tinderbox Userorder: time, category, severity. Here is an example where all three <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>print-</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> options
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsare on:</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="computeroutput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>28-Feb-2000 15:05:32.863 general: notice: running</TT
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>There are four predefined channels that are used for
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews<B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>named</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>'s default logging as follows. How they are
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsused is described in <A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsHREF="Bv9ARM.ch06.html#the_category_phrase"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Section 6.2.10.2</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="programlisting"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>channel "default_syslog" {
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User    syslog daemon;          // end to syslog's daemon
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews                    // facility
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    severity info;          // only send priority info
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews                    // and higher
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews};
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewschannel "default_debug" {
08b7d0694645b474e8a57b663662c8162e7d8b8eTinderbox User    file "named.run";           // write to named.run in
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews                    // the working directory
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews                    // Note: stderr is used instead
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews                    // of "named.run"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews                    // if the server is started
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User                    // with the '-f' option.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    severity dynamic            // log at the server's
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews                    // current debug level
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews};
dda78c0f84895c174ef7206dca6082939c030792Tinderbox Userchannel "default_stderr" {      // writes to stderr
efdfbc256c997060cfa0c2306c4fdd9dbc31342cTinderbox User    stderr;
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    severity info;          // only send priority info
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews                    // and higher
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews};
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewschannel "null" {
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews   null;                // toss anything sent to
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews                    // this channel
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews};
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>default_debug</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> channel normally writes
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsto a file <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="filename"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>named.run</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> in the server's working
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsdirectory.  For security reasons, when the "<TT
a5636b773fa05a272b6876afd99309c0b3090e2fMark AndrewsCLASS="option"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>-u</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewscommand line option is used, the <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="filename"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>named.run</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> file
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsis created only after <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>named</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> has changed to the
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsnew UID, and any debug output generated while <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>named</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> is
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsstarting up and still running as root is discarded.  If you need
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsto capture this output, you must run the server with the "<TT
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserCLASS="option"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>-g</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsoption and redirect standard error to a file.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Once a channel is defined, it cannot be redefined. Thus you
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewscannot alter the built-in channels directly, but you can modify
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe default logging by pointing categories at channels you have defined.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect3"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H3
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect3"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNAME="the_category_phrase"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.2.10.2. The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>category</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> Phrase</A
20648865f1f76c4c34cbe33c18b62cfa0cfe0fc8Tinderbox User></H3
20648865f1f76c4c34cbe33c18b62cfa0cfe0fc8Tinderbox User><P
8fabea916f73d0b7c7371998dd041b41d1ad5296Tinderbox User>There are many categories, so you can send the logs you want
20648865f1f76c4c34cbe33c18b62cfa0cfe0fc8Tinderbox Userto see wherever you want, without seeing logs you don't want. If
20648865f1f76c4c34cbe33c18b62cfa0cfe0fc8Tinderbox Useryou don't specify a list of channels for a category, then log messages
70d987def5a58ebeb8243017c0ec2e9b2c326cf4Evan Huntin that category will be sent to the <B
70d987def5a58ebeb8243017c0ec2e9b2c326cf4Evan HuntCLASS="command"
70d987def5a58ebeb8243017c0ec2e9b2c326cf4Evan Hunt>default</B
2706fce75f04398595d9648122c6b67164e94fccTinderbox User> category
2706fce75f04398595d9648122c6b67164e94fccTinderbox Userinstead. If you don't specify a default category, the following
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews"default default" is used:</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="programlisting"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>category "default" { "default_syslog"; "default_debug"; };
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>As an example, let's say you want to log security events to
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsa file, but you also want keep the default logging behavior. You'd
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsspecify the following:</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><PRE
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserCLASS="programlisting"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>channel "my_security_channel" {
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    file "my_security_file";
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington    severity info;
a5636b773fa05a272b6876afd99309c0b3090e2fMark Andrews};
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewscategory "security" {
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    "my_security_channel";
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    "default_syslog";
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    "default_debug";
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews};</PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User>To discard all messages in a category, specify the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>null</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> channel:</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="programlisting"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>category "xfer-out" { "null"; };
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewscategory "notify" { "null"; };
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User</PRE
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Following are the available categories and brief descriptions
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsof the types of log information they contain. More
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewscategories may be added in future <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> releases.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="informaltable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TABLE
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserCELLPADDING="3"
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox UserBORDER="1"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="CALSTABLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User><TD
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox UserWIDTH="110"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
f7a71eef29bcbf892270460269c79664f600cffdAutomatic Updater><P
f7a71eef29bcbf892270460269c79664f600cffdAutomatic Updater><B
8f536463f9fdfa7da6a8310e4f4895373beb2961Mark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>default</B
f7a71eef29bcbf892270460269c79664f600cffdAutomatic Updater></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
5e145d312503505bed49bcd72d1062b82989cadaTinderbox UserWIDTH="322"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
dcd42a39d311b44877161ffd1e27fa62700c0171Mark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The default category defines the logging
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsoptions for those categories where no specific configuration has been
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsdefined.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="110"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>general</B
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="322"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonALIGN="LEFT"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian WellingtonVALIGN="MIDDLE"
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington><P
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>The catch-all. Many things still aren't
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsclassified into categories, and they all end up here.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="110"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>database</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="322"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserALIGN="LEFT"
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Messages relating to the databases used
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsinternally by the name server to store zone and cache data.</P
b625bdae12277225b076a002dd4af80902529181Tinderbox User></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="110"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
b6561016dc8a813bfd91cef5b876b3dfc3f08ffaTinderbox UserVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>security</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="322"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
b6561016dc8a813bfd91cef5b876b3dfc3f08ffaTinderbox UserVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Approval and denial of requests.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="110"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>config</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="322"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Configuration file parsing and processing.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="110"
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserALIGN="LEFT"
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsVALIGN="MIDDLE"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><P
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><B
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsCLASS="command"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User>resolver</B
415d630b6309922caee8469384a6fab75cf05032Mark Andrews></P
620745a4c70077221fdeecaafd3252e9d3f944f3Tinderbox User></TD
620745a4c70077221fdeecaafd3252e9d3f944f3Tinderbox User><TD
620745a4c70077221fdeecaafd3252e9d3f944f3Tinderbox UserWIDTH="322"
620745a4c70077221fdeecaafd3252e9d3f944f3Tinderbox UserALIGN="LEFT"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserVALIGN="MIDDLE"
620745a4c70077221fdeecaafd3252e9d3f944f3Tinderbox User><P
415d630b6309922caee8469384a6fab75cf05032Mark Andrews>DNS resolution, such as the recursive
415d630b6309922caee8469384a6fab75cf05032Mark Andrewslookups performed on behalf of clients by a caching name server.</P
415d630b6309922caee8469384a6fab75cf05032Mark Andrews></TD
415d630b6309922caee8469384a6fab75cf05032Mark Andrews></TR
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><TR
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><TD
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsWIDTH="110"
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsALIGN="LEFT"
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsVALIGN="MIDDLE"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><P
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><B
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsCLASS="command"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews>xfer-in</B
415d630b6309922caee8469384a6fab75cf05032Mark Andrews></P
415d630b6309922caee8469384a6fab75cf05032Mark Andrews></TD
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><TD
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserWIDTH="322"
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsALIGN="LEFT"
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsVALIGN="MIDDLE"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><P
415d630b6309922caee8469384a6fab75cf05032Mark Andrews>Zone transfers the server is receiving.</P
415d630b6309922caee8469384a6fab75cf05032Mark Andrews></TD
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></TR
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><TR
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><TD
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsWIDTH="110"
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsALIGN="LEFT"
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsVALIGN="MIDDLE"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><P
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><B
82447d835d3ff5c658749b4e9b4f66166407b3eaAutomatic UpdaterCLASS="command"
82447d835d3ff5c658749b4e9b4f66166407b3eaAutomatic Updater>xfer-out</B
82447d835d3ff5c658749b4e9b4f66166407b3eaAutomatic Updater></P
82447d835d3ff5c658749b4e9b4f66166407b3eaAutomatic Updater></TD
82447d835d3ff5c658749b4e9b4f66166407b3eaAutomatic Updater><TD
82447d835d3ff5c658749b4e9b4f66166407b3eaAutomatic UpdaterWIDTH="322"
7f514657e26e5eb066c2be710fd64ec6bfee1475Mark AndrewsALIGN="LEFT"
1ddabe157ced6d2d2ce6e9ddc1a29db588dd6908Tinderbox UserVALIGN="MIDDLE"
1ddabe157ced6d2d2ce6e9ddc1a29db588dd6908Tinderbox User><P
7f514657e26e5eb066c2be710fd64ec6bfee1475Mark Andrews>Zone transfers the server is sending.</P
5382b244c33da2a91116127313d6e8ad47175b41Tinderbox User></TD
5382b244c33da2a91116127313d6e8ad47175b41Tinderbox User></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
7f514657e26e5eb066c2be710fd64ec6bfee1475Mark AndrewsWIDTH="110"
7f514657e26e5eb066c2be710fd64ec6bfee1475Mark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
7f514657e26e5eb066c2be710fd64ec6bfee1475Mark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>notify</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
50cfe402e61ba8d816d845a9f297e3de18f4fc15Tinderbox User></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="322"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
7f514657e26e5eb066c2be710fd64ec6bfee1475Mark AndrewsVALIGN="MIDDLE"
549c517e2ecad52bb1d32f08920e29d4e8cda71eTinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The NOTIFY protocol.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="110"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
dda78c0f84895c174ef7206dca6082939c030792Tinderbox User><B
06ea55a43397bc38c34a6d7e5c6219fe483edbb2Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>client</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
06ea55a43397bc38c34a6d7e5c6219fe483edbb2Tinderbox User></TD
cdf1c3d486ec082ef6c92297d22d54a67cca0c90Tinderbox User><TD
cdf1c3d486ec082ef6c92297d22d54a67cca0c90Tinderbox UserWIDTH="322"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
cdf1c3d486ec082ef6c92297d22d54a67cca0c90Tinderbox User><P
cdf1c3d486ec082ef6c92297d22d54a67cca0c90Tinderbox User>Processing of client requests.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
f39894c0b1cafb24035c14c74868e48be25f04a5Mark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="110"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>network</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
dda78c0f84895c174ef7206dca6082939c030792Tinderbox UserWIDTH="322"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Network operations.</P
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TD
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TR
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><TR
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews><TD
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserWIDTH="110"
3759f10fc543747668b1ca4b4671f35b0dea8445Francis DupontALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="command"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>update</B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></P
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews></TD
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><TD
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsWIDTH="322"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Dynamic updates.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="110"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>queries</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="322"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Queries.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TABLE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNAME="AEN1698"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.2.11. <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>lwres</B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> Statement Grammar</A
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></H2
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews><P
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User> This is the grammar of the <B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="command"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>lwres</B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews      statement in the <TT
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsCLASS="filename"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User>named.conf</TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> file:</P
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><PRE
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsCLASS="programlisting"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><B
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsCLASS="command"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User>lwres</B
415d630b6309922caee8469384a6fab75cf05032Mark Andrews> {
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews    [<SPAN
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="optional"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> listen-on { <TT
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsCLASS="replaceable"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><I
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>address_match_list</I
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> }; </SPAN
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>]
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews    [<SPAN
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserCLASS="optional"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> view <TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="replaceable"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><I
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>view_name</I
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews></TT
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User>; </SPAN
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>]
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews    [<SPAN
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="optional"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> search { <TT
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsCLASS="replaceable"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><I
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>domain_name</I
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> ; [<SPAN
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="optional"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews> <TT
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserCLASS="replaceable"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>ip_addr</I
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington></TT
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington> ; ... </SPAN
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>] }; </SPAN
9e3a7b0faf417a10f5f689edf288807b2d5eedc5Brian Wellington>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
2fee8782a6fd57d86a67949092ab9197111af390Evan HuntCLASS="optional"
3ccf87473f7cf6d9faac156df38a935a238f96fdTinderbox User> ndots <TT
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>number</I
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews></TT
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark Andrews>; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews};
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark Andrews</PRE
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews><H2
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNAME="AEN1716"
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews>6.2.12. <B
088a5ec3df14e7af67b4602b143869a09f7eefb3Francis DupontCLASS="command"
abe52cd9882c2c27482a2781f30a34d67501fdf8Tinderbox User>lwres</B
abe52cd9882c2c27482a2781f30a34d67501fdf8Tinderbox User> Statement Definition and Usage</A
088a5ec3df14e7af67b4602b143869a09f7eefb3Francis Dupont></H2
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The <B
32eb4cec6f191d30c40b63e4f22647650b3bc9d4Tinderbox UserCLASS="command"
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews>lwres</B
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt> statement configures the name
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt      server to also act as a lightweight resolver server, see
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt      <A
2fee8782a6fd57d86a67949092ab9197111af390Evan HuntHREF="Bv9ARM.ch05.html#lwresd"
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark Andrews>Section 5.2</A
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox User>.  There may be be multiple
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      <B
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark AndrewsCLASS="command"
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews>lwres</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> statements configuring
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      lightweight resolver servers with different properties.</P
78f3ed4bc2fcd3d270bfd599804f3b27a1db4d91Mark Andrews><P
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>The <B
979e02d122cddf1624cca8a4dab8d084c900fa48Automatic UpdaterCLASS="command"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>listen-on</B
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews> statement specifies a list of
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User      addresses (and ports) that this instance of a lightweight resolver daemon
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews      should accept requests on.  If this statement is omitted, requests
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews      will be accepted on 127.0.0.1, port 53.</P
979e02d122cddf1624cca8a4dab8d084c900fa48Automatic Updater><P
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>The <B
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsCLASS="command"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User>view</B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> statement binds this instance of a
415d630b6309922caee8469384a6fab75cf05032Mark Andrews      lightweight resolver daemon to a view in the DNS namespace, so that the
56334ccb2d4b5a04fc12b70b5852049db5d24088Evan Hunt      response will be constructed in the same manner as a normal DNS query
415d630b6309922caee8469384a6fab75cf05032Mark Andrews      matching this view.  If this statement is omitted, the default view is
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews      used, and if there is no default view, an error is triggered.</P
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><P
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>The <B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="command"
979e02d122cddf1624cca8a4dab8d084c900fa48Automatic Updater>search</B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> statement is equivalent to the
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews      <B
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserCLASS="command"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>search</B
415d630b6309922caee8469384a6fab75cf05032Mark Andrews> statement in
088a5ec3df14e7af67b4602b143869a09f7eefb3Francis Dupont      <TT
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsCLASS="filename"
088a5ec3df14e7af67b4602b143869a09f7eefb3Francis Dupont>/etc/resolv.conf</TT
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User>.  It provides a list of domains
088a5ec3df14e7af67b4602b143869a09f7eefb3Francis Dupont      which are appended to relative names in queries.</P
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><P
c7f686829f05e44169d46746cfb25cadcf078585Tinderbox User>The <B
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsCLASS="command"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews>ndots</B
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User> statement is equivalent to the
c7f686829f05e44169d46746cfb25cadcf078585Tinderbox User      <B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsCLASS="command"
51901858be9d4632c1d0bed28cfa8f29932c1967Tinderbox User>ndots</B
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews> statement in
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews      <TT
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserCLASS="filename"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>/etc/resolv.conf</TT
3524df526a4ee88e017e218b70ea8712ff6147a1Tinderbox User>.  It indicates the minimum
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      number of dots in a relative domain name that should result in an
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews      exact match lookup before search path elements are appended.</P
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrews></DIV
91216cff91b34c9ff6e846dc23f248219cafe660Andreas Gustafsson><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrews><H2
4fe0411487e8e4401477684c0a2bac041ca7c2d5Tinderbox UserCLASS="sect2"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews><A
30370d905e9be3be7d9b947fd432bacecbb13bb9Evan HuntNAME="AEN1735"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>6.2.13. <B
80eaeb6c6f1b8170a84f8faef7264bd821036e8eTinderbox UserCLASS="command"
3524df526a4ee88e017e218b70ea8712ff6147a1Tinderbox User>options</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> Statement Grammar</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H2
91216cff91b34c9ff6e846dc23f248219cafe660Andreas Gustafsson><P
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>This is the grammar of the <B
3524df526a4ee88e017e218b70ea8712ff6147a1Tinderbox UserCLASS="command"
91216cff91b34c9ff6e846dc23f248219cafe660Andreas Gustafsson>options</B
91216cff91b34c9ff6e846dc23f248219cafe660Andreas Gustafsson>
91216cff91b34c9ff6e846dc23f248219cafe660Andreas Gustafsson      statement in the <TT
3a9593055ead76cbbb417aee2d2e656c2c92cf46Automatic UpdaterCLASS="filename"
edd791fb53fab504d52ccdda41e6acbf543ac0d0Tinderbox User>named.conf</TT
edd791fb53fab504d52ccdda41e6acbf543ac0d0Tinderbox User> file:</P
8bc3d252395842452a6d2c775cf8445f6349e331Tinderbox User><PRE
c317b09bf112121245fafe61f38b95dc6e96acabTinderbox UserCLASS="programlisting"
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews><B
8bc3d252395842452a6d2c775cf8445f6349e331Tinderbox UserCLASS="command"
de7b9a1dac0c293b39994c91d4376883da25554fTinderbox User>options</B
c7fd128f8ea8a527fe27c1b95ab46df7155bc8e4Tinderbox User> {
c7fd128f8ea8a527fe27c1b95ab46df7155bc8e4Tinderbox User    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> version <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>version_string</I
36ec0d374836d070ba05b495e6f0a27f60e94476Evan Hunt></TT
467a823e57af687ebd486dfd73ea32f9d2a145beTinderbox User>; </SPAN
467a823e57af687ebd486dfd73ea32f9d2a145beTinderbox User>]
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox User    [<SPAN
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox UserCLASS="optional"
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt> directory <TT
2fee8782a6fd57d86a67949092ab9197111af390Evan HuntCLASS="replaceable"
969eaf7df8ac651946f76b6631ff5db568c11ef6Tinderbox User><I
b886b04d8d2b085cbf3e1bf4442dee87f43ba5e4Tinderbox User>path_name</I
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt></TT
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt>; </SPAN
8711e5c73ca872d59810760af0332194cbdd619bAutomatic Updater>]
8711e5c73ca872d59810760af0332194cbdd619bAutomatic Updater    [<SPAN
2fee8782a6fd57d86a67949092ab9197111af390Evan HuntCLASS="optional"
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt> named-xfer <TT
2fee8782a6fd57d86a67949092ab9197111af390Evan HuntCLASS="replaceable"
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt><I
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt>path_name</I
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt></TT
821d2613356f81e5bb5c107288d6d5cf35c2a1e8Mark Andrews>; </SPAN
821d2613356f81e5bb5c107288d6d5cf35c2a1e8Mark Andrews>]
8711e5c73ca872d59810760af0332194cbdd619bAutomatic Updater    [<SPAN
821d2613356f81e5bb5c107288d6d5cf35c2a1e8Mark AndrewsCLASS="optional"
821d2613356f81e5bb5c107288d6d5cf35c2a1e8Mark Andrews> tkey-domain <TT
821d2613356f81e5bb5c107288d6d5cf35c2a1e8Mark AndrewsCLASS="replaceable"
821d2613356f81e5bb5c107288d6d5cf35c2a1e8Mark Andrews><I
821d2613356f81e5bb5c107288d6d5cf35c2a1e8Mark Andrews>domainname</I
821d2613356f81e5bb5c107288d6d5cf35c2a1e8Mark Andrews></TT
821d2613356f81e5bb5c107288d6d5cf35c2a1e8Mark Andrews>; </SPAN
821d2613356f81e5bb5c107288d6d5cf35c2a1e8Mark Andrews>]
f7a71eef29bcbf892270460269c79664f600cffdAutomatic Updater    [<SPAN
2fee8782a6fd57d86a67949092ab9197111af390Evan HuntCLASS="optional"
f751b1576ee6fef4023bf7101d10167e4fe520f3Tinderbox User> tkey-dhkey <TT
955ee8b865d70d02ad1fdc959382e6f8a07c1d14Tinderbox UserCLASS="replaceable"
955ee8b865d70d02ad1fdc959382e6f8a07c1d14Tinderbox User><I
955ee8b865d70d02ad1fdc959382e6f8a07c1d14Tinderbox User>key_name</I
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt></TT
8711e5c73ca872d59810760af0332194cbdd619bAutomatic Updater> <TT
8711e5c73ca872d59810760af0332194cbdd619bAutomatic UpdaterCLASS="replaceable"
261ef37955c3468cbcb55d54b83c9a3b14e114dfTinderbox User><I
22870a9f8df95488abe2b17ab92b7cb6a9fe6f14Tinderbox User>key_tag</I
22870a9f8df95488abe2b17ab92b7cb6a9fe6f14Tinderbox User></TT
22870a9f8df95488abe2b17ab92b7cb6a9fe6f14Tinderbox User>; </SPAN
261ef37955c3468cbcb55d54b83c9a3b14e114dfTinderbox User>]
22870a9f8df95488abe2b17ab92b7cb6a9fe6f14Tinderbox User    [<SPAN
22870a9f8df95488abe2b17ab92b7cb6a9fe6f14Tinderbox UserCLASS="optional"
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt> dump-file <TT
02d20c5d79600704d617d248642c477e9b5e6a2aTinderbox UserCLASS="replaceable"
02d20c5d79600704d617d248642c477e9b5e6a2aTinderbox User><I
02d20c5d79600704d617d248642c477e9b5e6a2aTinderbox User>path_name</I
3bd8b5a8fb126e45c67ff53b68183c889cc27918Tinderbox User></TT
02d20c5d79600704d617d248642c477e9b5e6a2aTinderbox User>; </SPAN
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt>]
955ee8b865d70d02ad1fdc959382e6f8a07c1d14Tinderbox User    [<SPAN
6d114a4c5cddb176ae5199eee154c0273d652ba4Tinderbox UserCLASS="optional"
02d20c5d79600704d617d248642c477e9b5e6a2aTinderbox User> memstatistics-file <TT
2fee8782a6fd57d86a67949092ab9197111af390Evan HuntCLASS="replaceable"
02d20c5d79600704d617d248642c477e9b5e6a2aTinderbox User><I
02d20c5d79600704d617d248642c477e9b5e6a2aTinderbox User>path_name</I
02d20c5d79600704d617d248642c477e9b5e6a2aTinderbox User></TT
02d20c5d79600704d617d248642c477e9b5e6a2aTinderbox User>; </SPAN
02d20c5d79600704d617d248642c477e9b5e6a2aTinderbox User>]
87d422bb38fa1c8f0fb29c2a1b8c044870a7df46Tinderbox User    [<SPAN
cdf1c3d486ec082ef6c92297d22d54a67cca0c90Tinderbox UserCLASS="optional"
87d422bb38fa1c8f0fb29c2a1b8c044870a7df46Tinderbox User> pid-file <TT
87d422bb38fa1c8f0fb29c2a1b8c044870a7df46Tinderbox UserCLASS="replaceable"
87d422bb38fa1c8f0fb29c2a1b8c044870a7df46Tinderbox User><I
87d422bb38fa1c8f0fb29c2a1b8c044870a7df46Tinderbox User>path_name</I
6d114a4c5cddb176ae5199eee154c0273d652ba4Tinderbox User></TT
955ee8b865d70d02ad1fdc959382e6f8a07c1d14Tinderbox User>; </SPAN
9e295ad801d5c986eb6c7745637b5dc0efb28711Tinderbox User>]
955ee8b865d70d02ad1fdc959382e6f8a07c1d14Tinderbox User    [<SPAN
955ee8b865d70d02ad1fdc959382e6f8a07c1d14Tinderbox UserCLASS="optional"
955ee8b865d70d02ad1fdc959382e6f8a07c1d14Tinderbox User> statistics-file <TT
955ee8b865d70d02ad1fdc959382e6f8a07c1d14Tinderbox UserCLASS="replaceable"
b8cc0c5d896c361525708a2be2e5af7df76c96d7Tinderbox User><I
959e5da49a2cff7dfd8fdb885cd11c5d7d94a292Tinderbox User>path_name</I
959e5da49a2cff7dfd8fdb885cd11c5d7d94a292Tinderbox User></TT
959e5da49a2cff7dfd8fdb885cd11c5d7d94a292Tinderbox User>; </SPAN
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt>]
959e5da49a2cff7dfd8fdb885cd11c5d7d94a292Tinderbox User    [<SPAN
959e5da49a2cff7dfd8fdb885cd11c5d7d94a292Tinderbox UserCLASS="optional"
959e5da49a2cff7dfd8fdb885cd11c5d7d94a292Tinderbox User> zone-statistics <TT
7a6494cfb6cc7d3f67af07359561e05e6bb8c0edTinderbox UserCLASS="replaceable"
cdf1c3d486ec082ef6c92297d22d54a67cca0c90Tinderbox User><I
7a6494cfb6cc7d3f67af07359561e05e6bb8c0edTinderbox User>yes_or_no</I
7a6494cfb6cc7d3f67af07359561e05e6bb8c0edTinderbox User></TT
7a6494cfb6cc7d3f67af07359561e05e6bb8c0edTinderbox User>; </SPAN
7a6494cfb6cc7d3f67af07359561e05e6bb8c0edTinderbox User>]
02d20c5d79600704d617d248642c477e9b5e6a2aTinderbox User    [<SPAN
02d20c5d79600704d617d248642c477e9b5e6a2aTinderbox UserCLASS="optional"
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt> auth-nxdomain <TT
02d20c5d79600704d617d248642c477e9b5e6a2aTinderbox UserCLASS="replaceable"
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User><I
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User>yes_or_no</I
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User></TT
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User>; </SPAN
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User>]
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User    [<SPAN
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox UserCLASS="optional"
dc7e5458bbcb59ea310ed64ac7e77016e62e9c15Tinderbox User> deallocate-on-exit <TT
dc7e5458bbcb59ea310ed64ac7e77016e62e9c15Tinderbox UserCLASS="replaceable"
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User><I
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User>yes_or_no</I
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User></TT
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User>; </SPAN
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User>]
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User    [<SPAN
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox UserCLASS="optional"
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User> dialup <TT
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox UserCLASS="replaceable"
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User><I
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User>dialup_option</I
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User></TT
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User>; </SPAN
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User>]
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User    [<SPAN
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox UserCLASS="optional"
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User> fake-iquery <TT
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox UserCLASS="replaceable"
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User><I
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User>yes_or_no</I
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User></TT
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User>; </SPAN
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User>]
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User    [<SPAN
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox UserCLASS="optional"
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox User> fetch-glue <TT
391130fffd3f517aa72c5e6bd35dc7894d7730f4Tinderbox UserCLASS="replaceable"
36ec0d374836d070ba05b495e6f0a27f60e94476Evan Hunt><I
36ec0d374836d070ba05b495e6f0a27f60e94476Evan Hunt>yes_or_no</I
36ec0d374836d070ba05b495e6f0a27f60e94476Evan Hunt></TT
2ec4ab21838e218863d052ebfa3e106e04f50820Evan Hunt>; </SPAN
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox User>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> has-old-clients <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
aa1d397c4736cd86540555193d71e55fa3b37b2aMark Andrews>yes_or_no</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>; </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> host-statistics <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>yes_or_no</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>; </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> multiple-cnames <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>yes_or_no</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>; </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> notify <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>yes_or_no</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> | <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>explicit</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>; </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> recursion <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>yes_or_no</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>; </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> rfc2308-type1 <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>yes_or_no</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>; </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
aa1d397c4736cd86540555193d71e55fa3b37b2aMark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> use-id-pool <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>yes_or_no</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>; </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> maintain-ixfr-base <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>yes_or_no</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>; </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> forward ( <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>only</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> | <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
aa1d397c4736cd86540555193d71e55fa3b37b2aMark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>first</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> ); </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> forwarders { [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>in_addr</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> ; [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>in_addr</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> ; ... </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>] </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>] }; </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> check-names ( <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>master</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> | <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>slave</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> | <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> response</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> )( <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>warn</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> | <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>fail</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> | <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>ignore</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> ); </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
9cd5eb6fe0f26d65724b99216cb31dcdd12e4afdAutomatic Updater    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> allow-notify { <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>address_match_list</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> }; </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> allow-query { <TT
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox UserCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>address_match_list</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> }; </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> allow-transfer { <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>address_match_list</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> }; </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> allow-recursion { <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>address_match_list</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> }; </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="optional"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> blackhole { <TT
4f087942583014b241adca1bc78c6db89ed96e94Mark AndrewsCLASS="replaceable"
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews><I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>address_match_list</I
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews></TT
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews> }; </SPAN
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews>]
4f087942583014b241adca1bc78c6db89ed96e94Mark Andrews    [<SPAN
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsCLASS="optional"
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews> listen-on [<SPAN
ab833877278ad5535eef57e4f62291becaea5bc5Mark AndrewsCLASS="optional"
ab833877278ad5535eef57e4f62291becaea5bc5Mark Andrews> port <TT
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox UserCLASS="replaceable"
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt><I
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt>ip_port</I
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt></TT
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt> </SPAN
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt>] { <TT
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan HuntCLASS="replaceable"
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt><I
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt>address_match_list</I
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt></TT
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt> }; </SPAN
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt>]
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt    [<SPAN
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan HuntCLASS="optional"
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt> listen-on-v6 [<SPAN
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan HuntCLASS="optional"
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt> port <TT
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan HuntCLASS="replaceable"
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt><I
e2d635d630f6f61fefd3d4475c45b097b16b8a2aEvan Hunt>ip_port</I
776a8e3ff8889711a1f61a9362607c42716563f4Tinderbox User></TT
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox User> </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>] { <TT
214af784e91553d387246fd9ce46cb1291697b9aTinderbox UserCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
72a6417eb3792914417031300a8589be63ab1102Tinderbox User>address_match_list</I
97669cab1f7e6f953dbf39ef1b2c4206ecb50d9eAutomatic Updater></TT
97669cab1f7e6f953dbf39ef1b2c4206ecb50d9eAutomatic Updater> }; </SPAN
97669cab1f7e6f953dbf39ef1b2c4206ecb50d9eAutomatic Updater>]
97669cab1f7e6f953dbf39ef1b2c4206ecb50d9eAutomatic Updater    [<SPAN
97669cab1f7e6f953dbf39ef1b2c4206ecb50d9eAutomatic UpdaterCLASS="optional"
97669cab1f7e6f953dbf39ef1b2c4206ecb50d9eAutomatic Updater> query-source [<SPAN
9e295ad801d5c986eb6c7745637b5dc0efb28711Tinderbox UserCLASS="optional"
9e295ad801d5c986eb6c7745637b5dc0efb28711Tinderbox User> address ( <TT
9e295ad801d5c986eb6c7745637b5dc0efb28711Tinderbox UserCLASS="replaceable"
97669cab1f7e6f953dbf39ef1b2c4206ecb50d9eAutomatic Updater><I
9e295ad801d5c986eb6c7745637b5dc0efb28711Tinderbox User>ip_addr</I
9e295ad801d5c986eb6c7745637b5dc0efb28711Tinderbox User></TT
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt> | <TT
97669cab1f7e6f953dbf39ef1b2c4206ecb50d9eAutomatic UpdaterCLASS="replaceable"
97669cab1f7e6f953dbf39ef1b2c4206ecb50d9eAutomatic Updater><I
97669cab1f7e6f953dbf39ef1b2c4206ecb50d9eAutomatic Updater>*</I
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox User></TT
aa1d397c4736cd86540555193d71e55fa3b37b2aMark Andrews> ) </SPAN
e4757e3dafe50ae59f693eec828f68c42c197a70Andreas Gustafsson>] [<SPAN
309b912841e8b97bf0b0df0d96c3eaf16990c080Automatic UpdaterCLASS="optional"
66d24a46538c7c2d29fdb5611ab1173e83685b1dTinderbox User> port ( <TT
66d24a46538c7c2d29fdb5611ab1173e83685b1dTinderbox UserCLASS="replaceable"
e4757e3dafe50ae59f693eec828f68c42c197a70Andreas Gustafsson><I
e4757e3dafe50ae59f693eec828f68c42c197a70Andreas Gustafsson>ip_port</I
754ebd37e782356aedbb2987e3c1a8ab4f29574eMark Andrews></TT
754ebd37e782356aedbb2987e3c1a8ab4f29574eMark Andrews> | <TT
754ebd37e782356aedbb2987e3c1a8ab4f29574eMark AndrewsCLASS="replaceable"
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrews><I
dfc3a0fffd5d0b9f174ebca77860ae9ffa616314Tinderbox User>*</I
776a8e3ff8889711a1f61a9362607c42716563f4Tinderbox User></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ) </SPAN
55affca0c40ca8862a5283a837f0c7a19b326ab3Tinderbox User>]; </SPAN
089d5091b781af7dfef225fbc828eb4e6d04bf4fTinderbox User>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> max-transfer-time-in <TT
5c679dbb66df92766f6a7e7bb93c18d61275d1feMark AndrewsCLASS="replaceable"
9a9ca3c4f120971b7091b28a5530e5eaf362f7e6Tinderbox User><I
5c679dbb66df92766f6a7e7bb93c18d61275d1feMark Andrews>number</I
9cd5eb6fe0f26d65724b99216cb31dcdd12e4afdAutomatic Updater></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
aa1d397c4736cd86540555193d71e55fa3b37b2aMark Andrews    [<SPAN
aa1d397c4736cd86540555193d71e55fa3b37b2aMark AndrewsCLASS="optional"
9e295ad801d5c986eb6c7745637b5dc0efb28711Tinderbox User> max-transfer-time-out <TT
9a9ca3c4f120971b7091b28a5530e5eaf362f7e6Tinderbox UserCLASS="replaceable"
da93950363b307b718d156514b95b9df93a63776Mark Andrews><I
da93950363b307b718d156514b95b9df93a63776Mark Andrews>number</I
06ea55a43397bc38c34a6d7e5c6219fe483edbb2Tinderbox User></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
f6056ad06781c95198505ae3a361e6dd98df4b91Automatic UpdaterCLASS="optional"
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt> max-transfer-idle-in <TT
2fee8782a6fd57d86a67949092ab9197111af390Evan HuntCLASS="replaceable"
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>number</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="optional"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User> max-transfer-idle-out <TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="replaceable"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User><I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>number</I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>; </SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>]
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User    [<SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="optional"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User> tcp-clients <TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="replaceable"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User><I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>number</I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>; </SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>]
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User    [<SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="optional"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User> recursive-clients <TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="replaceable"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User><I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>number</I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>; </SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>]
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User    [<SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="optional"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User> serial-queries <TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="replaceable"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User><I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>number</I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>; </SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>]
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User    [<SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="optional"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User> transfer-format <TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="replaceable"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User><I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>( one-answer | many-answers )</I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>; </SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>]
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User    [<SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="optional"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User> transfers-in  <TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="replaceable"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User><I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>number</I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>; </SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>]
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User    [<SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="optional"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User> transfers-out <TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="replaceable"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User><I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>number</I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>; </SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>]
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User    [<SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="optional"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User> transfers-per-ns <TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="replaceable"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User><I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>number</I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>; </SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>]
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User    [<SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="optional"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User> transfer-source (<TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="replaceable"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User><I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>ip4_addr</I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User> | <TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="constant"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>*</TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>) [<SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="optional"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>port <TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="replaceable"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User><I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>ip_port</I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>] ; </SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>]
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User    [<SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="optional"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User> transfer-source-v6 (<TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="replaceable"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User><I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>ip6_addr</I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User> | <TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="constant"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>*</TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>) [<SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="optional"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>port <TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="replaceable"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User><I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>ip_port</I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>] ; </SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>]
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User    [<SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="optional"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User> notify-source (<TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="replaceable"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User><I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>ip4_addr</I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User> | <TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="constant"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>*</TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>) [<SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="optional"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>port <TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox UserCLASS="replaceable"
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User><I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>ip_port</I
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></TT
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User></SPAN
05c0db3923b93c36afa488bffc7862e0ae554698Tinderbox User>] ; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
827f8cccb5280f4da66c46186e792d1cb9d73503Mark Andrews    [<SPAN
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox UserCLASS="optional"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User> notify-source-v6 (<TT
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox UserCLASS="replaceable"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User><I
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>ip6_addr</I
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User></TT
edd791fb53fab504d52ccdda41e6acbf543ac0d0Tinderbox User> | <TT
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox UserCLASS="constant"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>*</TT
08b7d0694645b474e8a57b663662c8162e7d8b8eTinderbox User>) [<SPAN
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox UserCLASS="optional"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>port <TT
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox UserCLASS="replaceable"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User><I
827f8cccb5280f4da66c46186e792d1cb9d73503Mark Andrews>ip_port</I
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User></TT
0726d872f6f36901ea09321df57084614e5bb6faTinderbox User></SPAN
a42655602677933f768df30059ac23cc98d71958Tinderbox User>] ; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
d0d09653ddbb5ff3c8d8bfe7537a58c3ee628157Tinderbox User    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> also-notify { <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
644973f327e9db74779e7c0426db90909173b284Automatic Updater><I
644973f327e9db74779e7c0426db90909173b284Automatic Updater>ip_addr</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
edd791fb53fab504d52ccdda41e6acbf543ac0d0Tinderbox User> [<SPAN
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox UserCLASS="optional"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>port <TT
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox UserCLASS="replaceable"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User><I
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>ip_port</I
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User></TT
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User></SPAN
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>] ; [<SPAN
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox UserCLASS="optional"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User> <TT
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox UserCLASS="replaceable"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User><I
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>ip_addr</I
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User></TT
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User> [<SPAN
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox UserCLASS="optional"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>port <TT
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox UserCLASS="replaceable"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User><I
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>ip_port</I
1520c6474f783fe67fc23ff8a78b1cde2ddcc01dTinderbox User></TT
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User></SPAN
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>] ; ... </SPAN
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>] }; </SPAN
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>]
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User    [<SPAN
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox UserCLASS="optional"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User> max-ixfr-log-size <TT
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox UserCLASS="replaceable"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User><I
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>number</I
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User></TT
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>; </SPAN
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User>]
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User    [<SPAN
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox UserCLASS="optional"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User> coresize <TT
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox UserCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>size_spec</I
827f8cccb5280f4da66c46186e792d1cb9d73503Mark Andrews></TT
08b7d0694645b474e8a57b663662c8162e7d8b8eTinderbox User> ; </SPAN
0726d872f6f36901ea09321df57084614e5bb6faTinderbox User>]
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox User    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
549c517e2ecad52bb1d32f08920e29d4e8cda71eTinderbox User> datasize <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>size_spec</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> files <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>size_spec</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> stacksize <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>size_spec</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
1ca2cf024391992fe14b2df7d3ae0f575d074452Evan Hunt> cleaning-interval <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
1ca2cf024391992fe14b2df7d3ae0f575d074452Evan Hunt><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>number</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
1ca2cf024391992fe14b2df7d3ae0f575d074452Evan Hunt    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> heartbeat-interval <TT
b886b04d8d2b085cbf3e1bf4442dee87f43ba5e4Tinderbox UserCLASS="replaceable"
45eca3a5d46ed15aee14d81f6cb6c9fb6f365344Mark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>number</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
45eca3a5d46ed15aee14d81f6cb6c9fb6f365344Mark Andrews    [<SPAN
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> interface-interval <TT
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>number</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>; </SPAN
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox User>]
77f9b64584056d769b3056980b4bf1a2bd1f484fTinderbox User    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> statistics-interval <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
81573f7b114a4c71c0bf47058c00fffd245323ceTinderbox User><I
827f8cccb5280f4da66c46186e792d1cb9d73503Mark Andrews>number</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
827f8cccb5280f4da66c46186e792d1cb9d73503Mark Andrews>; </SPAN
827f8cccb5280f4da66c46186e792d1cb9d73503Mark Andrews>]
5de1cdae8a44312ca0dbb2a0fd0388fa35676a84Tinderbox User    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> topology [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
827f8cccb5280f4da66c46186e792d1cb9d73503Mark Andrews>{ <TT
827f8cccb5280f4da66c46186e792d1cb9d73503Mark AndrewsCLASS="replaceable"
827f8cccb5280f4da66c46186e792d1cb9d73503Mark Andrews><I
827f8cccb5280f4da66c46186e792d1cb9d73503Mark Andrews>address_match_list</I
827f8cccb5280f4da66c46186e792d1cb9d73503Mark Andrews></TT
827f8cccb5280f4da66c46186e792d1cb9d73503Mark Andrews> }</SPAN
827f8cccb5280f4da66c46186e792d1cb9d73503Mark Andrews>]; </SPAN
827f8cccb5280f4da66c46186e792d1cb9d73503Mark Andrews>]
827f8cccb5280f4da66c46186e792d1cb9d73503Mark Andrews    [<SPAN
827f8cccb5280f4da66c46186e792d1cb9d73503Mark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> sortlist [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>{ <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>address_match_list</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt> }</SPAN
2fee8782a6fd57d86a67949092ab9197111af390Evan Hunt>]; </SPAN
5f7e0eb1cb917b788906d3e2aa01bfc4885dcae4Mark Andrews>]
bf1263835e8e35421960f65088c043f42aacef13Mark Andrews    [<SPAN
15ae68f3db8261770fc33b8e0f83f5d8c7021e84Mark AndrewsCLASS="optional"
ac4e70ff8955669341f435bc0a734a17c01af124Mark Andrews> rrset-order [<SPAN
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>{ <TT
fec6e13f2d1e69fe1c2b8fac36f732f124cf5398Mark AndrewsCLASS="replaceable"
ace0869e25f68cf1ba5093711331760464b08758Tinderbox User><I
b886b04d8d2b085cbf3e1bf4442dee87f43ba5e4Tinderbox User>order_spec</I
bd7a552249814fa4b03c69418c8d6828fc013f6bTinderbox User></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ; [<SPAN
3ccf87473f7cf6d9faac156df38a935a238f96fdTinderbox UserCLASS="optional"
c75bf330fc68e1c07cfb14631e7d3de7e2786ee7Mark Andrews> <TT
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox UserCLASS="replaceable"
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox User><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>order_spec</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ; ... </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>] </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>] }</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>];
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
10640b2e3efc7bc8034108136d7487f7407fbf37Andreas GustafssonCLASS="optional"
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox User> lame-ttl <TT
10640b2e3efc7bc8034108136d7487f7407fbf37Andreas GustafssonCLASS="replaceable"
a05244bb01d5a5f71b2ac9abe1601589cde79570Tinderbox User><I
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox User>number</I
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
8927a982bde7e4b665966b55f0fa57c5cf21b9d8Mark Andrews    [<SPAN
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic UpdaterCLASS="optional"
20648865f1f76c4c34cbe33c18b62cfa0cfe0fc8Tinderbox User> max-ncache-ttl <TT
37bf3e124e8b9689ed0890e462bfc5854dc3d252Tinderbox UserCLASS="replaceable"
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan Hunt><I
2b7254075b883d70852a2757210793603085a0f1Tinderbox User>number</I
0726d872f6f36901ea09321df57084614e5bb6faTinderbox User></TT
34348322c7016b6b5d1bceee5b1cf42e2d2216b4Tinderbox User>; </SPAN
2b7254075b883d70852a2757210793603085a0f1Tinderbox User>]
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
c3bf582eed0dc3ad4d865ae3a8611f0ac2d16670Tinderbox User> max-cache-ttl <TT
80eaeb6c6f1b8170a84f8faef7264bd821036e8eTinderbox UserCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>number</I
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan Hunt></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
a778b94bdb66d9e0b9a497d55a401dad0bcf3a0cTinderbox UserCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> sig-validity-interval <TT
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox UserCLASS="replaceable"
384e37a497027518dd33d9c78575e58dd24a796dTinderbox User><I
dc7e5458bbcb59ea310ed64ac7e77016e62e9c15Tinderbox User>number</I
1921b850640ae984448e8b87870c8527fa9cddb6Evan Hunt></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ; </SPAN
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
baeaed18341c015e9ad54ffa21973184c1bc432bMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> min-roots <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
2128e98a141572c7cf701f3faee1a80c9c2a1a01Tinderbox User><I
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews>number</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>; </SPAN
80eaeb6c6f1b8170a84f8faef7264bd821036e8eTinderbox User>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
b7f4a6fd8ac70ebf889179ee84c1dd35647bfc73Evan HuntCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> use-ixfr <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
2b7254075b883d70852a2757210793603085a0f1Tinderbox User><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>yes_or_no</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User> ; </SPAN
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox User>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
9160e27507ba636887f6352bee5cb3729108fc76Tinderbox UserCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> treat-cr-as-space <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>yes_or_no</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan HuntCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> min-refresh-time <TT
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox UserCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
2b7254075b883d70852a2757210793603085a0f1Tinderbox User>number</I
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan Hunt></TT
9160e27507ba636887f6352bee5cb3729108fc76Tinderbox User> ; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> max-refresh-time <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
ace87434ed3dc7b9d8b36835fd2ce497d29d8191Tinderbox User>number</I
dc7e5458bbcb59ea310ed64ac7e77016e62e9c15Tinderbox User></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox User    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> min-retry-time <TT
80eaeb6c6f1b8170a84f8faef7264bd821036e8eTinderbox UserCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
b7f4a6fd8ac70ebf889179ee84c1dd35647bfc73Evan Hunt>number</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan Hunt> ; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> max-retry-time <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>number</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
4c721f0e4530612d3c6aa8d9dd02b5e316b4a959Tinderbox User    [<SPAN
bd49a41f9688a35bcdc3c9217df9b7fb239e3b52Tinderbox UserCLASS="optional"
0c71e48c9cd6a3ee87600a45286f02451028757aTinderbox User> port <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>ip_port</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> additional-from-auth <TT
81573f7b114a4c71c0bf47058c00fffd245323ceTinderbox UserCLASS="replaceable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
4c721f0e4530612d3c6aa8d9dd02b5e316b4a959Tinderbox User>yes_or_no</I
b91d11bfcc30b96f2c80f3a76d12e3dcc8597a68Mark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> ; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews    [<SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="optional"
b91d11bfcc30b96f2c80f3a76d12e3dcc8597a68Mark Andrews> additional-from-cache <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="replaceable"
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>yes_or_no</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User> ; </SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>]
edd791fb53fab504d52ccdda41e6acbf543ac0d0Tinderbox User};
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</PRE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><H2
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="sect2"
cdf1c3d486ec082ef6c92297d22d54a67cca0c90Tinderbox User><A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNAME="AEN1938"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>6.2.14. <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>options</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> Statement Definition and
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsUsage</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></H2
4c721f0e4530612d3c6aa8d9dd02b5e316b4a959Tinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>options</B
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox User> statement sets up global options
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsto be used by <SPAN
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan HuntCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan Hunt>. This statement may appear only once in a configuration
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsfile. If more than one occurrence is found, the first occurrence
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrewsdetermines the actual options used, and a warning will be generated.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsIf there is no <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>options</B
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan Hunt> statement, an options
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsblock with each option set to its default will be used.<DIV
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox UserCLASS="informaltable"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TABLE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCELLPADDING="3"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsBORDER="1"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="CALSTABLE"
27c3c21f41520e8d6336d80a8094389e321cb6d2Mark Andrews><TR
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox User><TD
4c721f0e4530612d3c6aa8d9dd02b5e316b4a959Tinderbox UserWIDTH="153"
4c721f0e4530612d3c6aa8d9dd02b5e316b4a959Tinderbox UserALIGN="LEFT"
2b7254075b883d70852a2757210793603085a0f1Tinderbox UserVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox UserCLASS="command"
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox User>version</B
abe52cd9882c2c27482a2781f30a34d67501fdf8Tinderbox User></P
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox User></TD
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox User><TD
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox UserWIDTH="303"
c4a35623959c143db02800584b8116d5b9cd72adTinderbox UserALIGN="LEFT"
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox UserVALIGN="MIDDLE"
08b7d0694645b474e8a57b663662c8162e7d8b8eTinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The version the server should report
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsvia a query of name <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="filename"
c7fd128f8ea8a527fe27c1b95ab46df7155bc8e4Tinderbox User>version.bind</TT
c7fd128f8ea8a527fe27c1b95ab46df7155bc8e4Tinderbox User> in class <B
c7fd128f8ea8a527fe27c1b95ab46df7155bc8e4Tinderbox UserCLASS="command"
c4a35623959c143db02800584b8116d5b9cd72adTinderbox User>chaos</B
c7fd128f8ea8a527fe27c1b95ab46df7155bc8e4Tinderbox User>.
c7fd128f8ea8a527fe27c1b95ab46df7155bc8e4Tinderbox UserThe default is the real version number of this server.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox User></TR
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox User><TR
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox User><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="153"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews><P
1ddabe157ced6d2d2ce6e9ddc1a29db588dd6908Tinderbox User><B
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>directory</B
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="303"
34348322c7016b6b5d1bceee5b1cf42e2d2216b4Tinderbox UserALIGN="LEFT"
34348322c7016b6b5d1bceee5b1cf42e2d2216b4Tinderbox UserVALIGN="MIDDLE"
37bf3e124e8b9689ed0890e462bfc5854dc3d252Tinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The working directory of the server.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsAny non-absolute pathnames in the configuration file will be taken
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsas relative to this directory. The default location for most server
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsoutput files (e.g. <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="filename"
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User>named.run</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>) is this directory.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsIf a directory is not specified, the working directory defaults
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsto `<TT
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserCLASS="filename"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>', the directory from which the server
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewswas started. The directory specified should be an absolute path.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserWIDTH="153"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>named-xfer</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserWIDTH="303"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>&#13;<I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="emphasis"
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User>This option is obsolete.</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox UserIt was used in <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 8 to specify the pathname to the <B
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>named-xfer</B
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User> program.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews In <SPAN
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 9, no separate <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>named-xfer</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> program is
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsneeded; its functionality is built into the name server.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="153"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User>tkey-domain</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="303"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
f39894c0b1cafb24035c14c74868e48be25f04a5Mark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User>The domain appended to the names of all
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsshared keys generated with <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>TKEY</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>. When a client
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsrequests a <B
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>TKEY</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> exchange, it may or may not specify
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe desired name for the key. If present, the name of the shared
bd49a41f9688a35bcdc3c9217df9b7fb239e3b52Tinderbox Userkey will be "<TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="varname"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>client specified part</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>" + "<TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="varname"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>tkey-domain</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>".
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsOtherwise, the name of the shared key will be "<TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="varname"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>random hex
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox Userdigits</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>" + "<TT
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserCLASS="varname"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>tkey-domain</TT
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User>". In most cases,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe <B
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>domainname</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> should be the server's domain
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsname.</P
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserWIDTH="153"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User>tkey-dhkey</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="303"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User>The Diffie-Hellman key used by the server
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsto generate shared keys with clients using the Diffie-Hellman mode
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsof <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>TKEY</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>. The server must be able to load the
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox Userpublic and private keys from files in the working directory. In
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsmost cases, the keyname should be the server's host name.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
fda4ac481c16bb138e9d32e650264c89c12005faTinderbox UserWIDTH="153"
fda4ac481c16bb138e9d32e650264c89c12005faTinderbox UserALIGN="LEFT"
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox UserVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>dump-file</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserWIDTH="303"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User>The pathname of the file the server dumps
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe database to when instructed to do so with
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews<B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>rndc dumpdb</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.
11ebeaa09e72d096d521155b91b7f218049a6fa9Tinderbox UserIf not specified, the default is <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="filename"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>named_dump.db</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.</P
abe52cd9882c2c27482a2781f30a34d67501fdf8Tinderbox User>
ab0417b81b77394a48cbfdd8ec0aefc3530c1137Tinderbox User</TD
83a719787256d2a9909f94eadde46a53ea5d4168Tinderbox User></TR
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox UserWIDTH="153"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
adeafa4320b38ec9e809b43a0e48f41e25ca856fTinderbox UserVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0d3490f93bb980fde704055e74c1b508987a5fe4Mark Andrews><B
f549a65f4cbc84f2a4e5ce4ff78c30bb8f3a32d4Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>memstatistics-file</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
2b7254075b883d70852a2757210793603085a0f1Tinderbox UserWIDTH="303"
cdf1c3d486ec082ef6c92297d22d54a67cca0c90Tinderbox UserALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
d0d09653ddbb5ff3c8d8bfe7537a58c3ee628157Tinderbox User><P
169f44b082b340b952e26c0fdb930c102a957752Mark Andrews>The pathname of the file the server writes memory
a8cfd15880d65b9387dc7e094a2a7ba63ea65241Mark Andrewsusage statistics to on exit. If not specified, the default is <TT
048b775e5c130c7f99965cb10fc4361df8d266aaTinderbox UserCLASS="filename"
5382b244c33da2a91116127313d6e8ad47175b41Tinderbox User>named.memstats</TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.</P
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox User>
9160e27507ba636887f6352bee5cb3729108fc76Tinderbox User<DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="note"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><BLOCKQUOTE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="note"
dc7e5458bbcb59ea310ed64ac7e77016e62e9c15Tinderbox User><P
97f57cf53467d30ea0f448b64f2d9c056aa9f80cTinderbox User><B
97f57cf53467d30ea0f448b64f2d9c056aa9f80cTinderbox User>Note: </B
2b7254075b883d70852a2757210793603085a0f1Tinderbox User>Not yet implemented in <SPAN
2b7254075b883d70852a2757210793603085a0f1Tinderbox UserCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
2b7254075b883d70852a2757210793603085a0f1Tinderbox User> 9.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></BLOCKQUOTE
34348322c7016b6b5d1bceee5b1cf42e2d2216b4Tinderbox User></DIV
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
34348322c7016b6b5d1bceee5b1cf42e2d2216b4Tinderbox UserWIDTH="153"
97f57cf53467d30ea0f448b64f2d9c056aa9f80cTinderbox UserALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
a8cfd15880d65b9387dc7e094a2a7ba63ea65241Mark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
42c81cf2de732ec6d00e73fc755a399ca037e543Mark Andrews>pid-file</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
dc7e5458bbcb59ea310ed64ac7e77016e62e9c15Tinderbox UserWIDTH="303"
dc7e5458bbcb59ea310ed64ac7e77016e62e9c15Tinderbox UserALIGN="LEFT"
1921b850640ae984448e8b87870c8527fa9cddb6Evan HuntVALIGN="MIDDLE"
1921b850640ae984448e8b87870c8527fa9cddb6Evan Hunt><P
1921b850640ae984448e8b87870c8527fa9cddb6Evan Hunt>The pathname of the file the server writes
1921b850640ae984448e8b87870c8527fa9cddb6Evan Huntits process ID in. If not specified, the default is operating system
b886b04d8d2b085cbf3e1bf4442dee87f43ba5e4Tinderbox Userdependent, but is usually
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic Updater<TT
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic UpdaterCLASS="filename"
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic Updater>/var/run/named.pid</TT
71fc4775d04aea66809e3eb5b5159c55413bdc5cMark Andrews> or <TT
71fc4775d04aea66809e3eb5b5159c55413bdc5cMark AndrewsCLASS="filename"
71fc4775d04aea66809e3eb5b5159c55413bdc5cMark Andrews>/etc/named.pid</TT
7d704e522860496310bb29c28e76064868401a9cMark Andrews>.
7d704e522860496310bb29c28e76064868401a9cMark AndrewsThe pid-file is used by programs that want to send signals to the running
cc17f4a672fc4ce67327902dd797c4465f12c4c9Mark Andrewsnameserver.</P
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic Updater></TD
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic Updater></TR
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic Updater><TR
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic Updater><TD
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic UpdaterWIDTH="153"
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic UpdaterALIGN="LEFT"
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic UpdaterVALIGN="MIDDLE"
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic Updater><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>statistics-file</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="303"
048b775e5c130c7f99965cb10fc4361df8d266aaTinderbox UserALIGN="LEFT"
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox UserVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The pathname of the file the server appends statistics
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox Userto when instructed to do so using <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>rndc stats</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.
384e37a497027518dd33d9c78575e58dd24a796dTinderbox UserIf not specified, the default is <TT
8ac5ddf659a81ed668579818981fc1a5f28405d1Tinderbox UserCLASS="filename"
5835beb229e17d583fb4b6fd4246bd014a68ddf6Tinderbox User>named.stats</TT
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark Andrews> in the
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsserver's current directory.  The format of the file is described
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox Userin <A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsHREF="Bv9ARM.ch06.html#statsfile"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>Section 6.2.14.13</A
e4757e3dafe50ae59f693eec828f68c42c197a70Andreas Gustafsson></P
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TD
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews></TR
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><TR
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><TD
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox UserWIDTH="153"
baeaed18341c015e9ad54ffa21973184c1bc432bMark AndrewsALIGN="LEFT"
e4757e3dafe50ae59f693eec828f68c42c197a70Andreas GustafssonVALIGN="MIDDLE"
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews><P
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews><B
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserCLASS="command"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>port</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox User></TD
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox User><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="303"
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan HuntALIGN="LEFT"
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark AndrewsVALIGN="MIDDLE"
20648865f1f76c4c34cbe33c18b62cfa0cfe0fc8Tinderbox User><P
c75bf330fc68e1c07cfb14631e7d3de7e2786ee7Mark Andrews>&#13;The UDP/TCP port number the server uses for receiving and sending DNS protocol traffic.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsThe default is 53.  This option is mainly intended for server testing;
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsa server using a port other than 53 will not be able to communicate with
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe global DNS.
35eb1a5f072b9f1b7d7cbcc0c25e38611f373f6fTinderbox UserThe <B
2b7254075b883d70852a2757210793603085a0f1Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>port</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> option should be placed at
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe beginning of the options block, before
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsany other options that take port numbers or IP addresses,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsto ensure that the port value takes effect for all addresses
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsused by the server.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TABLE
d0d09653ddbb5ff3c8d8bfe7537a58c3ee628157Tinderbox User><P
5aebd7e7af8096a013fad2019ea819af0acde08cTinderbox User></P
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark Andrews></DIV
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark Andrews> </P
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark Andrews><DIV
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark AndrewsCLASS="sect3"
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark Andrews><H3
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark AndrewsCLASS="sect3"
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark Andrews><A
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark AndrewsNAME="boolean_options"
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark Andrews>6.2.14.1. Boolean Options</A
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark Andrews></H3
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark Andrews><DIV
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark AndrewsCLASS="informaltable"
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark Andrews><P
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark Andrews></P
c29c3e51b1d7502c8d9978633df43e6a267bc427Mark Andrews><TABLE
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCELLPADDING="3"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsBORDER="1"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="CALSTABLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox User><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="145"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan Hunt><P
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan Hunt><B
0e573cdd111e060e5f6c18249b5ccacbe8abe278Tinderbox UserCLASS="command"
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan Hunt>auth-nxdomain</B
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox User></P
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></TD
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan Hunt><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="287"
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox UserALIGN="LEFT"
1fdd58445074579ee3b65c871137a7a1740eb542Mark AndrewsVALIGN="MIDDLE"
20648865f1f76c4c34cbe33c18b62cfa0cfe0fc8Tinderbox User><P
16afb24a0006e01f1b9d9256b44be035b1bb2d32Tinderbox User>If <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>yes</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0726d872f6f36901ea09321df57084614e5bb6faTinderbox User>, then the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>AA</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> bit
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsis always set on NXDOMAIN responses, even if the server is not actually
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsauthoritative. The default is <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
edd791fb53fab504d52ccdda41e6acbf543ac0d0Tinderbox User>no</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
7711228a135a2fe85765ba13a67b8e397ed73489Mark Andrews>; this is
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsa change from <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox User> 8. If you are using very old DNS software, you
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsmay need to set it to <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
2b7254075b883d70852a2757210793603085a0f1Tinderbox User><B
f4ee48be3994797a8332b86c101db4d7b54799ceTinderbox User>yes</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.</P
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews></TD
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews></TR
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan Hunt><TR
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox User><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="145"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
9160e27507ba636887f6352bee5cb3729108fc76Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>deallocate-on-exit</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
f4ee48be3994797a8332b86c101db4d7b54799ceTinderbox User></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="287"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
edd791fb53fab504d52ccdda41e6acbf543ac0d0Tinderbox User>This option was used in <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 8 to enable checking
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsfor memory leaks on exit. <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
903fcd6a60c6420f5dbd753ab068ba5ca2af8e62Tinderbox User>BIND</SPAN
37bf3e124e8b9689ed0890e462bfc5854dc3d252Tinderbox User> 9 ignores the option and always performs
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox Userthe checks.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
2b7254075b883d70852a2757210793603085a0f1Tinderbox User></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
9dde9ce5558696850b6b9850a8475ae518409518Tinderbox UserWIDTH="145"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
16afb24a0006e01f1b9d9256b44be035b1bb2d32Tinderbox User><P
16afb24a0006e01f1b9d9256b44be035b1bb2d32Tinderbox User><B
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan HuntCLASS="command"
361967ea970ea8f0ef8875e769505ecdac74bfb0Tinderbox User>dialup</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="287"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
3718b6ecfc40479988a9182701a4af5b3f8233f4Tinderbox UserVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>If <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
f4ee48be3994797a8332b86c101db4d7b54799ceTinderbox User>yes</B
16afb24a0006e01f1b9d9256b44be035b1bb2d32Tinderbox User></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>, then the
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsserver treats all zones as if they are doing zone transfers across
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsa dial on demand dialup link, which can be brought up by traffic
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsoriginating from this server. This has different effects according
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsto zone type and concentrates the zone maintenance so that it all
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewshappens in a short interval, once every <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>heartbeat-interval</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> and
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewshopefully during the one call. It also suppresses some of the normal
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox Userzone maintenance traffic. The default is <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>no</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews<P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>The <B
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>dialup</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> option
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsmay also be specified in the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>view</B
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox User> and
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox User<B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
16afb24a0006e01f1b9d9256b44be035b1bb2d32Tinderbox User>zone</B
16afb24a0006e01f1b9d9256b44be035b1bb2d32Tinderbox User> statements,
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsin which case it overrides the global <B
689fb19ba11ed40363cbc031d0396befdb409b89Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>dialup</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsoption.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>If
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe zone is a master zone then the server will send out a NOTIFY request
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsto all the slaves. This will trigger the zone serial number check
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsin the slave (providing it supports NOTIFY) allowing the slave to
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsverify the zone while the connection is active.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
f4ee48be3994797a8332b86c101db4d7b54799ceTinderbox User>If the
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewszone is a slave or stub zone, then the server will suppress the regular
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews"zone up to date" (refresh) queries and only perform them when the
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews<B
c7fd128f8ea8a527fe27c1b95ab46df7155bc8e4Tinderbox UserCLASS="command"
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews>heartbeat-interval</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> expires in addition to sending
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNOTIFY requests.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
c7fd128f8ea8a527fe27c1b95ab46df7155bc8e4Tinderbox User>Finer control can be achieved by using
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews<TT
baeaed18341c015e9ad54ffa21973184c1bc432bMark AndrewsCLASS="userinput"
872e1437295dce8162ac7374317d593320ac2dd6Tinderbox User><B
872e1437295dce8162ac7374317d593320ac2dd6Tinderbox User>notify</B
872e1437295dce8162ac7374317d593320ac2dd6Tinderbox User></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> which only sends NOTIFY messages,
2b7254075b883d70852a2757210793603085a0f1Tinderbox User<TT
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox UserCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
3718b6ecfc40479988a9182701a4af5b3f8233f4Tinderbox User>notify-passive</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> which sends NOTIFY messages and
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox Usersuppresses the normal refresh queries, <TT
16afb24a0006e01f1b9d9256b44be035b1bb2d32Tinderbox UserCLASS="userinput"
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox User><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>refresh</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewswhich suppresses normal refresh processing and send refresh queries
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewswhen the <B
2b7254075b883d70852a2757210793603085a0f1Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>heartbeat-interval</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> expires and
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews<TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>passive</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> which just disables normal refresh
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsprocessing.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark AndrewsWIDTH="145"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
c7fd128f8ea8a527fe27c1b95ab46df7155bc8e4Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>fake-iquery</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="287"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox UserVALIGN="MIDDLE"
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>In <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 8, this option was used to enable simulating
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe obsolete DNS query type IQUERY. <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark Andrews> 9 never does IQUERY simulation.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox UserWIDTH="145"
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox UserALIGN="LEFT"
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox UserVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox User>fetch-glue</B
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox User></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
16afb24a0006e01f1b9d9256b44be035b1bb2d32Tinderbox User><TD
16afb24a0006e01f1b9d9256b44be035b1bb2d32Tinderbox UserWIDTH="287"
2b7254075b883d70852a2757210793603085a0f1Tinderbox UserALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>This option is obsolete.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsIn BIND 8, <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox User><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>fetch-glue yes</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox Usercaused the server to attempt to fetch glue resource records it
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsdidn't have when constructing the additional
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsdata section of a response.  This is now considered a bad idea
d0d09653ddbb5ff3c8d8bfe7537a58c3ee628157Tinderbox Userand BIND 9 never does it.</P
d0d09653ddbb5ff3c8d8bfe7537a58c3ee628157Tinderbox User>
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</TD
6c2a76b3e2ccd32c35814b6e0f54da00190749d7Evan Hunt></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
903fcd6a60c6420f5dbd753ab068ba5ca2af8e62Tinderbox User><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="145"
2b7254075b883d70852a2757210793603085a0f1Tinderbox UserALIGN="LEFT"
37bf3e124e8b9689ed0890e462bfc5854dc3d252Tinderbox UserVALIGN="MIDDLE"
39c56dd2b86e306f1416c352645920855f65648fTinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>has-old-clients</B
65a8034126b7ccfa0ad759a686c88c89f4112624Tinderbox User></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="287"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>This option was incorrectly implemented
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsin <SPAN
40e10611ee6a22ea17f13c15f2701385fe90ccc8Tinderbox UserCLASS="acronym"
632a81d4535df620c89e29c3948d1c197944570eTinderbox User>BIND</SPAN
2b7254075b883d70852a2757210793603085a0f1Tinderbox User> 8, and is ignored by <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 9.
5ee9f7f23852d92772c08ca6e4b46c549beaf660Mark AndrewsTo achieve the intended effect
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsof
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark Andrews<B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>has-old-clients</B
3ccf87473f7cf6d9faac156df38a935a238f96fdTinderbox User> <TT
80eaeb6c6f1b8170a84f8faef7264bd821036e8eTinderbox UserCLASS="userinput"
4e40289129b2a87cea5ec403620b3bb9a6182f9fTinderbox User><B
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox User>yes</B
903fcd6a60c6420f5dbd753ab068ba5ca2af8e62Tinderbox User></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>, specify
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe two separate options <B
2b7254075b883d70852a2757210793603085a0f1Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>auth-nxdomain</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> <TT
3fb635d1c5fad0b7380b8195750dc1057bb1abd6Tinderbox UserCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>yes</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> and <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>rfc2308-type1</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>no</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> instead.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
b7f4a6fd8ac70ebf889179ee84c1dd35647bfc73Evan Hunt></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
dbb012765c735ee0d82dedb116cdc7cf18957814Evan Hunt><TD
2b7254075b883d70852a2757210793603085a0f1Tinderbox UserWIDTH="145"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
f549a65f4cbc84f2a4e5ce4ff78c30bb8f3a32d4Tinderbox User><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>host-statistics</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="287"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
5835beb229e17d583fb4b6fd4246bd014a68ddf6Tinderbox User>In BIND 8, this enables keeping of
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsstatistics for every host that the nameserver interacts with.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNot implemented in BIND 9.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
2b7254075b883d70852a2757210793603085a0f1Tinderbox User><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="145"
903fcd6a60c6420f5dbd753ab068ba5ca2af8e62Tinderbox UserALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
2b7254075b883d70852a2757210793603085a0f1Tinderbox User><B
2b7254075b883d70852a2757210793603085a0f1Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>maintain-ixfr-base</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="287"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="emphasis"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>This option is obsolete</I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews It was used in <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 8 to determine whether a transaction log was
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewskept for Incremental Zone Transfer. <SPAN
689fb19ba11ed40363cbc031d0396befdb409b89Tinderbox UserCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 9 maintains a transaction
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewslog whenever possible.  If you need to disable outgoing incremental zone
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewstransfers, use <B
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark AndrewsCLASS="command"
b7f4a6fd8ac70ebf889179ee84c1dd35647bfc73Evan Hunt>provide-ixfr</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
dbb012765c735ee0d82dedb116cdc7cf18957814Evan Hunt><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>no</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
1bcc3273a80c256f11d9098a00ba2c041939e233Mark Andrews></TR
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark Andrews><TR
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox User><TD
e4757e3dafe50ae59f693eec828f68c42c197a70Andreas GustafssonWIDTH="145"
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox UserALIGN="LEFT"
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox UserVALIGN="MIDDLE"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><P
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>multiple-cnames</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
2b7254075b883d70852a2757210793603085a0f1Tinderbox User><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="287"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
ebe53509ca55a141131c104b6d722236b606e0efTinderbox User>This option was used in <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 8 to allow
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsa domain name to allow multiple CNAME records in violation of the
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsDNS standards.  <SPAN
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark AndrewsCLASS="acronym"
8ac5ddf659a81ed668579818981fc1a5f28405d1Tinderbox User>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 9.1 always strictly
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsenforces the CNAME rules both in master files and dynamic updates.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="145"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
4bc4740495aca028379fecd2afac26b1d53a4e25Tinderbox User><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>notify</B
c75bf330fc68e1c07cfb14631e7d3de7e2786ee7Mark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
fab54780409846f7c71f6026d665f18c77c649efTinderbox User><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="287"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>If <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>yes</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> (the default),
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsDNS NOTIFY messages are sent when a zone the server is authoritative for
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewschanges, see <A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsHREF="Bv9ARM.ch03.html#notify"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Section 3.3</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.  The messages are sent to the
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsservers listed in the zone's NS records (except the master server identified
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsin the SOA MNAME field), and to any servers listed in the
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews<B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>also-notify</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> option.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</P
cb5446c26093277f40e4c02c9eafcd9e50535994Tinderbox User><P
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox User>&#13;If <TT
e4757e3dafe50ae59f693eec828f68c42c197a70Andreas GustafssonCLASS="userinput"
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrews><B
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox User>explicit</B
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></TT
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>, notifies are sent only to
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsservers explicitly listed using <B
bd7a552249814fa4b03c69418c8d6828fc013f6bTinderbox UserCLASS="command"
20648865f1f76c4c34cbe33c18b62cfa0cfe0fc8Tinderbox User>also-notify</B
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox User>.
c75bf330fc68e1c07cfb14631e7d3de7e2786ee7Mark AndrewsIf <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>no</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>, no notifies are sent.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews</P
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>&#13;The <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>notify</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> option may also be specified in the <B
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox UserCLASS="command"
5b3dd19d815f0389d566d20c2fee57cb37d1dd47Tinderbox User>zone</B
d0d09653ddbb5ff3c8d8bfe7537a58c3ee628157Tinderbox User> statement,
bd7a552249814fa4b03c69418c8d6828fc013f6bTinderbox Userin which case it overrides the <B
bd7a552249814fa4b03c69418c8d6828fc013f6bTinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>options notify</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> statement.
cb5446c26093277f40e4c02c9eafcd9e50535994Tinderbox UserIt would only be necessary to turn off this option if it caused slaves
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox Userto crash<TT
e4757e3dafe50ae59f693eec828f68c42c197a70Andreas GustafssonCLASS="varname"
dedefc0bdbb4e6e39eeb98aa2fc6883efec2ddb0Mark Andrews>.</TT
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox User></P
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></TD
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
a04588e781b513ae3b30e061ac98035802b5e8e8Mark Andrews><TD
20648865f1f76c4c34cbe33c18b62cfa0cfe0fc8Tinderbox UserWIDTH="145"
c75bf330fc68e1c07cfb14631e7d3de7e2786ee7Mark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>recursion</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="287"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>If <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>yes</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>, and a
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsDNS query requests recursion, then the server will attempt to do
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsall the work required to answer the query. If recursion is off
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsand the server does not already know the answer, it will return a
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsreferral response. The default is <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>yes</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsNote that setting <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>recursion no;</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> does not prevent
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox Userclients from getting data from the server's cache; it only
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsprevents new data from being cached as an effect of client queries.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCaching may still occur as an effect the server's internal
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsoperation, such as NOTIFY address lookups.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsSee also <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>fetch-glue</B
77f9b64584056d769b3056980b4bf1a2bd1f484fTinderbox User> above.</P
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews><TR
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="145"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsALIGN="LEFT"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews><B
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>rfc2308-type1</B
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews></P
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsWIDTH="287"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews><P
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews>Setting this to <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews><B
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews>yes</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TT
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews> will
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrewscause the server to send NS records along with the SOA record for negative
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsanswers. The default is <TT
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsCLASS="userinput"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>no</B
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews></TT
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews>.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews<DIV
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsCLASS="note"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><BLOCKQUOTE
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsCLASS="note"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews>Note: </B
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews>Not yet implemented in <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews>BIND</SPAN
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews> 9.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></BLOCKQUOTE
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews></DIV
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews><TR
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="145"
c651f15b30f1dae5cc2f00878fb5da5b3a35a468Mark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
d0d09653ddbb5ff3c8d8bfe7537a58c3ee628157Tinderbox UserCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>use-id-pool</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
a04588e781b513ae3b30e061ac98035802b5e8e8Mark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="287"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><I
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="emphasis"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>This option is obsolete</I
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox User>.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews <SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="acronym"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>BIND</SPAN
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> 9 always allocates query IDs from a pool.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
415d630b6309922caee8469384a6fab75cf05032Mark Andrews></TR
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox User><TR
91216cff91b34c9ff6e846dc23f248219cafe660Andreas Gustafsson><TD
b7f4a6fd8ac70ebf889179ee84c1dd35647bfc73Evan HuntWIDTH="145"
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox UserALIGN="LEFT"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserVALIGN="MIDDLE"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>zone-statistics</B
950d203b64f512b85fcc093ee1e9e3e531a1aea3Tinderbox User></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
3ccf87473f7cf6d9faac156df38a935a238f96fdTinderbox User><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="287"
51aeb0ae19596e99b029cfa933e73b76ebec480aTinderbox UserALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>If <TT
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="userinput"
80eaeb6c6f1b8170a84f8faef7264bd821036e8eTinderbox User><B
415d630b6309922caee8469384a6fab75cf05032Mark Andrews>yes</B
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan Hunt></TT
415d630b6309922caee8469384a6fab75cf05032Mark Andrews>, the server will, by default, collect
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrewsstatistical data on all zones in the server.  These statistics may be accessed
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox Userusing <B
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan HuntCLASS="command"
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan Hunt>rndc stats</B
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan Hunt>, which will dump them to the file listed
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan Huntin the <B
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsCLASS="command"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User>statistics-file</B
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan Hunt>.  See also <A
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsHREF="Bv9ARM.ch06.html#statsfile"
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan Hunt>Section 6.2.14.13</A
415d630b6309922caee8469384a6fab75cf05032Mark Andrews>.</P
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews></TD
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User></TR
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan Hunt><TR
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><TD
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan HuntWIDTH="145"
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsALIGN="LEFT"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsVALIGN="MIDDLE"
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><P
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan Hunt><B
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsCLASS="command"
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan Hunt>use-ixfr</B
415d630b6309922caee8469384a6fab75cf05032Mark Andrews></P
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews></TD
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><TD
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan HuntWIDTH="287"
415d630b6309922caee8469384a6fab75cf05032Mark AndrewsALIGN="LEFT"
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan HuntVALIGN="MIDDLE"
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><P
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews></P
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox User><I
98922b2b2b024dcca25be7c220cf3b16b1e6c4b5Evan HuntCLASS="emphasis"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>This option is obsolete</I
713c3d5b18463f2479973e4d14f73248e60a5df7Mark Andrews>.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsIf you need to disable IXFR to a particular server or servers see
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsthe information on the <B
33b0d10552ea5f7716385b2cedff64daa1486c50Tinderbox UserCLASS="command"
5835beb229e17d583fb4b6fd4246bd014a68ddf6Tinderbox User>provide-ixfr</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> option
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrewsin <A
0eb371ca0dab50ae3462e98794a6126198c52f4bMark AndrewsHREF="Bv9ARM.ch06.html#server_statement_definition_and_usage"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>Section 6.2.16</A
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>. See also
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark Andrews<A
9218b940febade3085fd6d95a15e67d5f94833f0Tinderbox UserHREF="Bv9ARM.ch04.html#incremental_zone_transfers"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews>Section 4.2</A
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>.</TD
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews></TR
91216cff91b34c9ff6e846dc23f248219cafe660Andreas Gustafsson><TR
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsWIDTH="145"
e813f036c8251b6d9d2a72fa84f80c2c9d2795afMark AndrewsALIGN="LEFT"
30370d905e9be3be7d9b947fd432bacecbb13bb9Evan HuntVALIGN="MIDDLE"
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews><P
bed0874e1a09e810575328c4bfc346a47514b69fMark Andrews><B
bed0874e1a09e810575328c4bfc346a47514b69fMark AndrewsCLASS="command"
bed0874e1a09e810575328c4bfc346a47514b69fMark Andrews>treat-cr-as-space</B
bed0874e1a09e810575328c4bfc346a47514b69fMark Andrews></P
bed0874e1a09e810575328c4bfc346a47514b69fMark Andrews></TD
bed0874e1a09e810575328c4bfc346a47514b69fMark Andrews><TD
b886b04d8d2b085cbf3e1bf4442dee87f43ba5e4Tinderbox UserWIDTH="287"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
77932ac533c711eca5cd86de4e7eca8d91102b43Tinderbox User><P
1f9754245cbd5eec2d2a667bb292f62f72386d4bMark Andrews>This option was used in <SPAN
922e6a3c2ac4ef900dd9dc99f0cc137f18372583Andreas GustafssonCLASS="acronym"
015055b6e23f5c08f6a5b34726f90b62597e9e45Tinderbox User>BIND</SPAN
613fa3ce9d39f0c4057e4a14094ff29b7897406bMark Andrews> 8 to make
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userthe server treat carriage return ("<B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="command"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>\r</B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>") characters the same way
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Useras a space or tab character,
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userto facilitate loading of zone files on a UNIX system that were generated
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Useron an NT or DOS machine. In <SPAN
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="acronym"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>BIND</SPAN
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews> 9, both UNIX "<B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="command"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>\n</B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userand NT/DOS "<B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="command"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>\r\n</B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>" newlines are always accepted,
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userand the option is ignored.</P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></TR
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews><TR
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews><TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserWIDTH="145"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserALIGN="LEFT"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserVALIGN="MIDDLE"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>&#13;<P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><B
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark AndrewsCLASS="command"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>min-refresh-time</B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User<P
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews><B
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark AndrewsCLASS="command"
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews>max-refresh-time</B
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews></P
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews>
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User<P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="command"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>min-retry-time</B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User<P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="command"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>max-retry-time</B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User</TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserWIDTH="287"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserALIGN="LEFT"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserVALIGN="MIDDLE"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>&#13;These options control the server's behavior on refreshing a zone
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User(querying for SOA changes) or retrying failed transfers.
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserUsually the SOA values for the zone are used, but these values
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userare set by the master, giving slave server administrators little
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Usercontrol over their contents.
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User</P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>&#13;These options allow the administrator to set a minimum and maximum
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userrefresh and retry time either per-zone, per-view, or per-server.
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserThese options are valid for master, slave and stub zones, and clamp the SOA
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userrefresh and retry times to the specified values.
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User</P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User</TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></TR
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic Updater><TR
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserWIDTH="145"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserALIGN="LEFT"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserVALIGN="MIDDLE"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>&#13;<P
10702d681eb650391bcaa0e2704aa3cf2dbf0e98Mark Andrews><B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="command"
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic Updater>additional-from-auth</B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User<P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="command"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>additional-from-cache</B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User</TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserWIDTH="287"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserALIGN="LEFT"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserVALIGN="MIDDLE"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>&#13;These options control the server's behavior when answering queries
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userwhich have additional data, or when following CNAME and DNAME
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userchains to provide additional data.
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User</P
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>&#13;When both of these options are set to <TT
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="userinput"
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews><B
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews>yes</B
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews></TT
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User(the default) and a
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userquery is being answered from authoratitive data (a zone
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userconfigured into the server), the additional data section of the
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrewsreply will be filled in using data from other authoratitive zones
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userand from the cache.  In some situations this is undesirable, such
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Useras when there is concern over the correctness of the cache, or in
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userin servers where slave zones may be added and modified by
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Useruntrusted third parties.  Also, avoiding
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userthe search for this additional data will speed up server operations
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userat the possible expense of additional queries to resolve what would
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userotherwise be provided in the additional section.
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User</P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews>&#13;For example, if a query asks for an MX record for host <TT
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="literal"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>foo.example.com</TT
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>,
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userand the record found is "<TT
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="literal"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>MX 10 mail.example.net</TT
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>", normally the address
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userrecords (A, A6, and AAAA) for <TT
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="literal"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>mail.example.net</TT
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User> will be provided as well,
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userif known.  These options disable this behavior.
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User</P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews</TD
d3be47a4a841ca6fc07e8f18004cf72174e2d117Tinderbox User></TR
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></TABLE
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></DIV
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></DIV
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><DIV
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="sect3"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><H3
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="sect3"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><A
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserNAME="AEN2247"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>6.2.14.2. Forwarding</A
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews></H3
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews>The forwarding facility can be used to create a large site-wide
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Usercache on a few servers, reducing traffic over links to external
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Usernameservers. It can also be used to allow queries by servers that
3d2e052eb879189e6d853097f8b568d887323bebTinderbox Userdo not have direct access to the Internet, but wish to look up exterior
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Usernames anyway. Forwarding occurs only on those queries for which
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userthe server is not authoritative and does not have the answer in
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userits cache.</P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><DIV
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="informaltable"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TABLE
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCELLPADDING="3"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserBORDER="1"
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark AndrewsCLASS="CALSTABLE"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TR
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserWIDTH="93"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserALIGN="LEFT"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserVALIGN="MIDDLE"
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="command"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>forward</B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserWIDTH="339"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserALIGN="LEFT"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserVALIGN="MIDDLE"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>This option is only meaningful if the
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userforwarders list is not empty. A value of <TT
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="varname"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>first</TT
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews>,
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userthe default, causes the server to query the forwarders first, and
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userif that doesn't answer the question the server will then look for
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userthe answer itself. If <TT
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="varname"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>only</TT
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User> is specified, the
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userserver will only query the forwarders.</P
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic Updater></TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></TR
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews><TR
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TD
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark AndrewsWIDTH="93"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserALIGN="LEFT"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserVALIGN="MIDDLE"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="command"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>forwarders</B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserWIDTH="339"
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark AndrewsALIGN="LEFT"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserVALIGN="MIDDLE"
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic Updater><P
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic Updater>Specifies the IP addresses to be used
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userfor forwarding. The default is the empty list (no forwarding).</P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></TR
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></TABLE
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></P
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews></DIV
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>Forwarding can also be configured on a per-domain basis, allowing
10702d681eb650391bcaa0e2704aa3cf2dbf0e98Mark Andrewsfor the global forwarding options to be overridden in a variety
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userof ways. You can set particular domains to use different forwarders,
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Useror have a different <B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="command"
3e1a17d65ec6227900f388ba2f7561365f7d4f5cTinderbox User>forward only/first</B
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews> behavior,
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Useror not forward at all, see <A
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserHREF="Bv9ARM.ch06.html#zone_statement_grammar"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>Section 6.2.21</A
10702d681eb650391bcaa0e2704aa3cf2dbf0e98Mark Andrews>.</P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></DIV
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><DIV
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark AndrewsCLASS="sect3"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><H3
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="sect3"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><A
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserNAME="access_control"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>6.2.14.3. Access Control</A
6fe48fb46e53ffc37542853a1edb74cb481b7d94Automatic Updater></H3
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>Access to the server can be restricted based on the IP address
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userof the requesting system. See <A
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserHREF="Bv9ARM.ch06.html#address_match_lists"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>Section 6.1.1</A
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User> for
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userdetails on how to specify IP address lists.</P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><DIV
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark AndrewsCLASS="informaltable"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TABLE
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCELLPADDING="3"
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark AndrewsBORDER="1"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="CALSTABLE"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TR
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews><TD
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark AndrewsWIDTH="132"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserALIGN="LEFT"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserVALIGN="MIDDLE"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="command"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>allow-notify</B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserWIDTH="300"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserALIGN="LEFT"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserVALIGN="MIDDLE"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>Specifies which hosts are allowed to
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Usernotify slaves of a zone change in addition to the zone masters.
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User<B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="command"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>allow-notify</B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User> may also be specified in the
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User<B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserCLASS="command"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>zone</B
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews> statement, in which case it overrides the
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews<B
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark AndrewsCLASS="command"
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews>options allow-notify</B
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark Andrews> statement.  It is only meaningful
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Userfor a slave zone.  If not specified, the default is to process notify messages
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox Useronly from a zone's master.</P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></TR
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TR
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TD
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark AndrewsWIDTH="132"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserALIGN="LEFT"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserVALIGN="MIDDLE"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><B
e9ab17d95e4288ab5ddedb7c89a9588c13c74bddMark AndrewsCLASS="command"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User>allow-query</B
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></P
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User></TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox User><TD
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserWIDTH="300"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserALIGN="LEFT"
9f6827a4afb75224214ea96452e787e7f710b8b6Tinderbox UserVALIGN="MIDDLE"
5ca309a0fb9a75162852653f881d1e6290e28c2aTinderbox User><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Specifies which hosts are allowed to
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsask ordinary questions. <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>allow-query</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> may also
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsbe specified in the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
edd791fb53fab504d52ccdda41e6acbf543ac0d0Tinderbox User>zone</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> statement, in which
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewscase it overrides the <B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>options allow-query</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews> statement. If
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsnot specified, the default is to allow queries from all hosts.</P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TR
de2cc8b8729d88140cad62506769d0f9fedc7e48Tinderbox User><TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
9160e27507ba636887f6352bee5cb3729108fc76Tinderbox UserWIDTH="132"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
baeaed18341c015e9ad54ffa21973184c1bc432bMark Andrews><B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsCLASS="command"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>allow-recursion</B
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews></TD
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TD
1ca2cf024391992fe14b2df7d3ae0f575d074452Evan HuntWIDTH="300"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsALIGN="LEFT"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark AndrewsVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews>Specifies which hosts are allowed to
adeafa4320b38ec9e809b43a0e48f41e25ca856fTinderbox Usermake recursive queries through this server. If not specified, the
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrewsdefault is to allow recursive queries from all hosts.
edd791fb53fab504d52ccdda41e6acbf543ac0d0Tinderbox UserNote that disallowing recursive queries for a host does not prevent the
e1ebc476b08b4a498fcf3477e42c986eb1991360Tinderbox Userhost from retrieving data that is already in the server's cache.
0eb371ca0dab50ae3462e98794a6126198c52f4bMark Andrews</P
415d630b6309922caee8469384a6fab75cf05032Mark Andrews></TD
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox User></TR
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><TR
415d630b6309922caee8469384a6fab75cf05032Mark Andrews><TD
2fee8782a6fd57d86a67949092ab9197111af390Evan HuntWIDTH="132"
8927a982bde7e4b665966b55f0fa57c5cf21b9d8Mark AndrewsALIGN="LEFT"
5affecff6e148a8e124d03f5dbac0da11e30dcc5Tinderbox UserVALIGN="MIDDLE"
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><P
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews><B
8927a982bde7e4b665966b55f0fa57c5cf21b9d8Mark AndrewsCLASS="command"
>allow-transfer</B
></P
></TD
><TD
WIDTH="300"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Specifies which hosts are allowed to
receive zone transfers from the server. <B
CLASS="command"
>allow-transfer</B
> may
also be specified in the <B
CLASS="command"
>zone</B
> statement, in which
case it overrides the <B
CLASS="command"
>options allow-transfer</B
> statement.
If not specified, the default is to allow transfers from all hosts.</P
></TD
></TR
><TR
><TD
WIDTH="132"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>blackhole</B
></P
></TD
><TD
WIDTH="300"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Specifies a list of addresses that the
server will not accept queries from or use to resolve a query. Queries
from these addresses will not be responded to. The default is <TT
CLASS="userinput"
><B
>none</B
></TT
>.</P
></TD
></TR
></TABLE
><P
></P
></DIV
></P
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="AEN2323"
>6.2.14.4. Interfaces</A
></H3
><P
>The interfaces and ports that the server will answer queries
from may be specified using the <B
CLASS="command"
>listen-on</B
> option. <B
CLASS="command"
>listen-on</B
> takes
an optional port, and an <TT
CLASS="varname"
>address_match_list</TT
>.
The server will listen on all interfaces allowed by the address
match list. If a port is not specified, port 53 will be used.</P
><P
>Multiple <B
CLASS="command"
>listen-on</B
> statements are allowed.
For example,</P
><PRE
CLASS="programlisting"
>listen-on { 5.6.7.8; };
listen-on port 1234 { !1.2.3.4; 1.2/16; };
</PRE
><P
>will enable the nameserver on port 53 for the IP address
        5.6.7.8, and on port 1234 of an address on the machine in net
        1.2 that is not 1.2.3.4.</P
><P
>If no <B
CLASS="command"
>listen-on</B
> is specified, the
        server will listen on port 53 on all interfaces.</P
><P
>The <B
CLASS="command"
>listen-on-v6</B
> option is used to
        specify the ports on which the server will listen for incoming
        queries sent using IPv6.</P
><P
>The server does not bind a separate socket to each IPv6
        interface address as it does for IPv4. Instead, it always
        listens on the IPv6 wildcard address. Therefore, the only
        values allowed for the <TT
CLASS="varname"
>address_match_list</TT
>
        argument to the <B
CLASS="command"
>listen-on-v6</B
> statement are
        <PRE
CLASS="programlisting"
>{ any; }</PRE
> and
        <PRE
CLASS="programlisting"
>{ none;}</PRE
></P
><P
>Multiple <B
CLASS="command"
>listen-on-v6</B
> options can be
        used to listen on multiple ports:</P
><PRE
CLASS="programlisting"
>listen-on-v6 port 53 { any; };
listen-on-v6 port 1234 { any; };
</PRE
><P
>To make the server not listen on any IPv6 address, use</P
><PRE
CLASS="programlisting"
>listen-on-v6 { none; };
</PRE
><P
>If no <B
CLASS="command"
>listen-on-v6</B
> statement is specified,
the server will not listen on any IPv6 address.</P
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="AEN2349"
>6.2.14.5. Query Address</A
></H3
><P
>If the server doesn't know the answer to a question, it will
query other nameservers. <B
CLASS="command"
>query-source</B
> specifies
the address and port used for such queries. For queries sent over
IPv6, there is a separate <B
CLASS="command"
>query-source-v6</B
> option.
 If <B
CLASS="command"
>address</B
> is <B
CLASS="command"
>*</B
> or is omitted,
a wildcard IP address (<B
CLASS="command"
>INADDR_ANY</B
>) will be used.
If <B
CLASS="command"
>port</B
> is <B
CLASS="command"
>*</B
> or is omitted,
a random unprivileged port will be used. The defaults are</P
><PRE
CLASS="programlisting"
>query-source address * port *;
query-source-v6 address * port *
</PRE
><DIV
CLASS="note"
><BLOCKQUOTE
CLASS="note"
><P
><B
>Note: </B
><B
CLASS="command"
>query-source</B
> currently applies only
to UDP queries; TCP queries always use a wildcard IP address and
a random unprivileged port.</P
></BLOCKQUOTE
></DIV
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="zone_transfers"
>6.2.14.6. Zone Transfers</A
></H3
><P
><SPAN
CLASS="acronym"
>BIND</SPAN
> has mechanisms in place to facilitate zone transfers
and set limits on the amount of load that transfers place on the
system. The following options apply to zone transfers.</P
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="168"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>also-notify</B
></P
></TD
><TD
WIDTH="264"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Defines a global list of IP addresses of name servers
that are also sent NOTIFY messages whenever a fresh copy of the
zone is loaded, in addition to the servers listed in the zone's NS records.
This helps to ensure that copies of the zones will
quickly converge on stealth servers. If an <B
CLASS="command"
>also-notify</B
> list
is given in a <B
CLASS="command"
>zone</B
> statement, it will override
the <B
CLASS="command"
>options also-notify</B
> statement. When a <B
CLASS="command"
>zone notify</B
> statement
is set to <B
CLASS="command"
>no</B
>, the IP addresses in the global <B
CLASS="command"
>also-notify</B
> list will
not be sent NOTIFY messages for that zone. The default is the empty
list (no global notification list).</P
></TD
></TR
><TR
><TD
WIDTH="168"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>max-transfer-time-in</B
></P
></TD
><TD
WIDTH="264"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Inbound zone transfers running longer than
this many minutes will be terminated. The default is 120 minutes
(2 hours).</P
></TD
></TR
><TR
><TD
WIDTH="168"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>max-transfer-idle-in</B
></P
></TD
><TD
WIDTH="264"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Inbound zone transfers making no progress
in this many minutes will be terminated. The default is 60 minutes
(1 hour).</P
></TD
></TR
><TR
><TD
WIDTH="168"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>max-transfer-time-out</B
></P
></TD
><TD
WIDTH="264"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Outbound zone transfers running longer than
this many minutes will be terminated. The default is 120 minutes
(2 hours).</P
></TD
></TR
><TR
><TD
WIDTH="168"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>max-transfer-idle-out</B
></P
></TD
><TD
WIDTH="264"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Outbound zone transfers making no progress
in this many minutes will be terminated.  The default is 60 minutes (1
hour).</P
></TD
></TR
><TR
><TD
WIDTH="168"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>serial-queries</B
></P
></TD
><TD
WIDTH="264"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Slave servers will periodically query master
servers to find out if zone serial numbers have changed. Each such
query uses a minute amount of the slave server's network bandwidth,
but more importantly each query uses a small amount of memory in
the slave server while waiting for the master server to respond.
In BIND 8, the <B
CLASS="command"
>serial-queries</B
> option set the maximum number
of concurrent serial-number queries allowed to be outstanding at
any given time.  BIND 9 does not limit the number of outstanding
serial queries and ignores the The <B
CLASS="command"
>serial-queries</B
> option;
instead, it limits the rate at which the queries are sent.
The maximum rate is currently fixed at 20 queries
per second but may become configurable in a future release.
</P
>
</TD
></TR
><TR
><TD
WIDTH="168"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>transfer-format</B
></P
></TD
><TD
WIDTH="264"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The server supports two zone transfer methods. <B
CLASS="command"
>one-answer</B
> uses
one DNS message per resource record transferred. <B
CLASS="command"
>many-answers</B
> packs
as many resource records as possible into a message. <B
CLASS="command"
>many-answers</B
> is
more efficient, but is only known to be understood by <SPAN
CLASS="acronym"
>BIND</SPAN
> 9, <SPAN
CLASS="acronym"
>BIND</SPAN
>
8.x and patched versions of <SPAN
CLASS="acronym"
>BIND</SPAN
> 4.9.5. The default is <B
CLASS="command"
>many-answers</B
>. <B
CLASS="command"
>transfer-format</B
> may
be overridden on a per-server basis by using the <B
CLASS="command"
>server</B
> statement.</P
></TD
></TR
><TR
><TD
WIDTH="168"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>transfers-in</B
></P
></TD
><TD
WIDTH="264"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The maximum number of inbound zone transfers
that can be running concurrently. The default value is <TT
CLASS="literal"
>10</TT
>.
Increasing <B
CLASS="command"
>transfers-in</B
> may speed up the convergence
of slave zones, but it also may increase the load on the local system.</P
></TD
></TR
><TR
><TD
WIDTH="168"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>transfers-out</B
></P
></TD
><TD
WIDTH="264"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The maximum number of outbound zone transfers
that can be running concurrently. Zone transfer requests in excess
of the limit will be refused. The default value is <TT
CLASS="literal"
>10</TT
>.</P
></TD
></TR
><TR
><TD
WIDTH="168"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>transfers-per-ns</B
></P
></TD
><TD
WIDTH="264"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The maximum number of inbound zone transfers
that can be concurrently transferring from a given remote nameserver.
The default value is <TT
CLASS="literal"
>2</TT
>. Increasing <B
CLASS="command"
>transfers-per-ns</B
> may
speed up the convergence of slave zones, but it also may increase
the load on the remote nameserver. <B
CLASS="command"
>transfers-per-ns</B
> may
be overridden on a per-server basis by using the <B
CLASS="command"
>transfers</B
> phrase
of the <B
CLASS="command"
>server</B
> statement.</P
></TD
></TR
><TR
><TD
WIDTH="168"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>transfer-source</B
></P
></TD
><TD
WIDTH="264"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>transfer-source</B
> determines
which local address will be bound to IPv4 TCP connections used to
fetch zones transferred inbound by the server.  It also determines
the source IPv4 address, and optionally the UDP port, used for the
refresh queries and forwarded dynamic updates.  If not set, it defaults
to a system controlled value which will usually be the address of
the interface "closest to" the remote end. This address must appear
in the remote end's <B
CLASS="command"
>allow-transfer</B
> option for
the zone being transferred, if one is specified. This statement
sets the <B
CLASS="command"
>transfer-source</B
> for all zones, but can
be overridden on a per-view or per-zone basis by including a
<B
CLASS="command"
>transfer-source</B
> statement within the
<B
CLASS="command"
>view</B
> or <B
CLASS="command"
>zone</B
> block
in the configuration file.</P
></TD
></TR
><TR
><TD
WIDTH="168"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>transfer-source-v6</B
></P
></TD
><TD
WIDTH="264"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The same as <B
CLASS="command"
>transfer-source</B
>,
except zone transfers are performed using IPv6.</P
></TD
></TR
><TR
><TD
WIDTH="168"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>notify-source</B
></P
></TD
><TD
WIDTH="264"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>notify-source</B
> determines
which local source address, and optionally UDP port, will be used to
send NOTIFY messages.
This address must appear in the slave server's <B
CLASS="command"
>masters</B
>
zone clause or in an <B
CLASS="command"
>allow-notify</B
> clause.
This statement sets the <B
CLASS="command"
>notify-source</B
> for all zones,
but can be overridden on a per-zone / per-view basis by including a
<B
CLASS="command"
>notify-source</B
> statement within the <B
CLASS="command"
>zone</B
>
or <B
CLASS="command"
>view</B
> block in the configuration file.</P
></TD
></TR
><TR
><TD
WIDTH="168"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>notify-source-v6</B
></P
></TD
><TD
WIDTH="264"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Like <B
CLASS="command"
>notify-source</B
>,
but applies to notify messages sent to IPv6 addresses.</P
></TD
></TR
></TABLE
><P
></P
></DIV
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="AEN2496"
>6.2.14.7. Resource Limits</A
></H3
><P
>The server's usage of many system resources can be
        limited.  Some operating systems don't support some of the
        limits. On such systems, a warning will be issued if the
        unsupported limit is used. Some operating systems don't
        support limiting resources.</P
><P
>Scaled values are
        allowed when specifying resource limits.  For example,
        <B
CLASS="command"
>1G</B
> can be used instead of
        <B
CLASS="command"
>1073741824</B
> to specify a limit of one
        gigabyte. <B
CLASS="command"
>unlimited</B
> requests unlimited use,
        or the maximum available amount. <B
CLASS="command"
>default</B
>
        uses the limit that was in force when the server was
        started. See the description of <B
CLASS="command"
>size_spec</B
>
        in <A
HREF="Bv9ARM.ch06.html#configuration_file_elements"
>Section 6.1</A
>.</P
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="144"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>coresize</B
></P
></TD
><TD
WIDTH="288"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The maximum size of a core dump. The default
is <TT
CLASS="literal"
>default</TT
>.</P
></TD
></TR
><TR
><TD
WIDTH="144"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>datasize</B
></P
></TD
><TD
WIDTH="288"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The maximum amount of data memory the server
may use. The default is <TT
CLASS="literal"
>default</TT
>.</P
></TD
></TR
><TR
><TD
WIDTH="144"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>files</B
></P
></TD
><TD
WIDTH="288"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The maximum number of files the server
may have open concurrently. The default is <TT
CLASS="literal"
>unlimited</TT
>.
</P
></TD
></TR
><TR
><TD
WIDTH="144"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>max-ixfr-log-size</B
></P
></TD
><TD
WIDTH="288"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>This option is obsolete; it is accepted
and ignored for BIND 8 compatibility.</P
></TD
></TR
><TR
><TD
WIDTH="144"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>recursive-clients</B
></P
></TD
><TD
WIDTH="288"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The maximum number of simultaneous recursive
lookups the server will perform on behalf of clients.  The default
is <TT
CLASS="literal"
>1000</TT
>.</P
></TD
></TR
><TR
><TD
WIDTH="144"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>stacksize</B
></P
></TD
><TD
WIDTH="288"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The maximum amount of stack memory the server
may use. The default is <TT
CLASS="literal"
>default</TT
>.</P
></TD
></TR
><TR
><TD
WIDTH="144"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>tcp-clients</B
></P
></TD
><TD
WIDTH="288"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The maximum number of simultaneous client TCP
connections that the server will accept. The default is <TT
CLASS="literal"
>100</TT
>.</P
></TD
></TR
></TABLE
><P
></P
></DIV
><DIV
CLASS="note"
><BLOCKQUOTE
CLASS="note"
><P
><B
>Note: </B
>Resource limits are not yet implemented in <SPAN
CLASS="acronym"
>BIND</SPAN
> 9.</P
></BLOCKQUOTE
></DIV
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="AEN2562"
>6.2.14.8. Periodic Task Intervals</A
></H3
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="156"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>cleaning-interval</B
></P
></TD
><TD
WIDTH="276"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The server will remove expired resource records
from the cache every <B
CLASS="command"
>cleaning-interval</B
> minutes.
The default is 60 minutes.
If set to 0, no  periodic cleaning will occur.</P
></TD
></TR
><TR
><TD
WIDTH="156"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>heartbeat-interval</B
></P
></TD
><TD
WIDTH="276"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The server will perform zone maintenance tasks
for all zones marked as <B
CLASS="command"
>dialup</B
> whenever this
interval expires. The default is 60 minutes. Reasonable values are up
to 1 day (1440 minutes). If set to 0, no zone maintenance for these zones will occur.</P
></TD
></TR
><TR
><TD
WIDTH="156"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>interface-interval</B
></P
></TD
><TD
WIDTH="276"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The server will scan the network interface list
every <B
CLASS="command"
>interface-interval</B
> minutes. The default
is 60 minutes. If set to 0, interface scanning will only occur when
the configuration file is  loaded. After the scan, listeners will be
started on any new interfaces (provided they are allowed by the
<B
CLASS="command"
>listen-on</B
> configuration). Listeners on interfaces
that have gone away will be cleaned up.</P
></TD
></TR
><TR
><TD
WIDTH="156"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>statistics-interval</B
></P
></TD
><TD
WIDTH="276"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Nameserver statistics will be logged
every <B
CLASS="command"
>statistics-interval</B
> minutes. The default is
60. If set to 0, no statistics will be logged.</P
><DIV
CLASS="note"
><BLOCKQUOTE
CLASS="note"
><P
><B
>Note: </B
>Not yet implemented in <SPAN
CLASS="acronym"
>BIND</SPAN
>9.</P
></BLOCKQUOTE
></DIV
></TD
></TR
></TABLE
><P
></P
></DIV
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="topology"
>6.2.14.9. Topology</A
></H3
><P
>All other things being equal, when the server chooses a nameserver
to query from a list of nameservers, it prefers the one that is
topologically closest to itself. The <B
CLASS="command"
>topology</B
> statement
takes an <B
CLASS="command"
>address_match_list</B
> and interprets it
in a special way. Each top-level list element is assigned a distance.
Non-negated elements get a distance based on their position in the
list, where the closer the match is to the start of the list, the
shorter the distance is between it and the server. A negated match
will be assigned the maximum distance from the server. If there
is no match, the address will get a distance which is further than
any non-negated list element, and closer than any negated element.
For example,</P
><PRE
CLASS="programlisting"
>topology {
    10/8;
    !1.2.3/24;
    { 1.2/16; 3/8; };
};</PRE
><P
>will prefer servers on network 10 the most, followed by hosts
on network 1.2.0.0 (netmask 255.255.0.0) and network 3, with the
exception of hosts on network 1.2.3 (netmask 255.255.255.0), which
is preferred least of all.</P
><P
>The default topology is</P
><PRE
CLASS="programlisting"
>    topology { localhost; localnets; };
</PRE
><DIV
CLASS="note"
><BLOCKQUOTE
CLASS="note"
><P
><B
>Note: </B
>The <B
CLASS="command"
>topology</B
> option
is not yet implemented in <SPAN
CLASS="acronym"
>BIND</SPAN
> 9.</P
></BLOCKQUOTE
></DIV
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="the_sortlist_statement"
>6.2.14.10. The <B
CLASS="command"
>sortlist</B
> Statement</A
></H3
><P
>Resource Records (RRs) are the data associated with the names
in a  domain name space. The data is maintained in the form of sets
of RRs. The order of RRs in a set is, by default, not significant.
Therefore, to control the sorting of records in a set of resource
records, or <TT
CLASS="varname"
>RRset</TT
>, you must use the <B
CLASS="command"
>sortlist</B
> statement.</P
><P
>RRs are explained more fully in <A
HREF="Bv9ARM.ch06.html#types_of_resource_records_and_when_to_use_them"
>Section 6.3.1</A
>. Specifications for RRs
are documented in RFC 1035.</P
><P
>When returning multiple RRs the nameserver will normally return
them in <TT
CLASS="varname"
>Round Robin</TT
> order,
that is, after each request the first RR is put at the end of the
list. The client resolver code should rearrange the RRs as appropriate,
that is, using any addresses on the local net in preference to other addresses.
However, not all resolvers can do this or are correctly configured.
When a client is using a local server the sorting can be performed
in the server, based on the client's address. This only requires
configuring the nameservers, not all the clients.</P
><P
>The <B
CLASS="command"
>sortlist</B
> statement (see below) takes
an <B
CLASS="command"
>address_match_list</B
> and interprets it even
more specifically than the <B
CLASS="command"
>topology</B
> statement
does (<A
HREF="Bv9ARM.ch06.html#topology"
>Section 6.2.14.9</A
>). Each top level statement in the <B
CLASS="command"
>sortlist</B
> must
itself be an explicit <B
CLASS="command"
>address_match_list</B
> with
one or two elements. The first element (which may be an IP address,
an IP prefix, an ACL name or a nested <B
CLASS="command"
>address_match_list</B
>)
of each top level list is checked against the source address of
the query until a match is found.</P
><P
>Once the source address of the query has been matched, if
the top level statement contains only one element, the actual primitive
element that matched the source address is used to select the address
in the response to move to the beginning of the response. If the
statement is a list of two elements, then the second element is
treated the same as the <B
CLASS="command"
>address_match_list</B
> in
a <B
CLASS="command"
>topology</B
> statement. Each top level element
is assigned a distance and the address in the response with the minimum
distance is moved to the beginning of the response.</P
><P
>In the following example, any queries received from any of
the addresses of the host itself will get responses preferring addresses
on any of the locally connected networks. Next most preferred are addresses
on the 192.168.1/24 network, and after that either the 192.168.2/24
or
192.168.3/24 network with no preference shown between these two
networks. Queries received from a host on the 192.168.1/24 network
will prefer other addresses on that network to the 192.168.2/24
and
192.168.3/24 networks. Queries received from a host on the 192.168.4/24
or the 192.168.5/24 network will only prefer other addresses on
their directly connected networks.</P
><PRE
CLASS="programlisting"
>sortlist {
    { localhost;                   // IF   the local host
        { localnets;                   // THEN first fit on the
            192.168.1/24;              //   following nets
            { 192.168.2/24; 192.168.3/24; }; }; };
    { 192.168.1/24;                // IF   on class C 192.168.1
        { 192.168.1/24;                // THEN use .1, or .2 or .3
            { 192.168.2/24; 192.168.3/24; }; }; };
    { 192.168.2/24;                // IF   on class C 192.168.2
        { 192.168.2/24;                // THEN use .2, or .1 or .3
            { 192.168.1/24; 192.168.3/24; }; }; };
    { 192.168.3/24;                // IF   on class C 192.168.3
        { 192.168.3/24;                // THEN use .3, or .1 or .2
            { 192.168.1/24; 192.168.2/24; }; }; };
    { { 192.168.4/24; 192.168.5/24; };         // if .4 or .5, prefer that net
    };
};</PRE
><P
>The following example will give reasonable behavior for the
local host and hosts on directly connected networks. It is similar
to the behavior of the address sort in <SPAN
CLASS="acronym"
>BIND</SPAN
> 4.9.x. Responses sent
to queries from the local host will favor any of the directly connected
networks. Responses sent to queries from any other hosts on a directly
connected network will prefer addresses on that same network. Responses
to other queries will not be sorted.</P
><PRE
CLASS="programlisting"
>sortlist {
           { localhost; localnets; };
           { localnets; };
};
</PRE
><DIV
CLASS="note"
><BLOCKQUOTE
CLASS="note"
><P
><B
>Note: </B
>The <B
CLASS="command"
>sortlist</B
> option
is not yet implemented in <SPAN
CLASS="acronym"
>BIND</SPAN
> 9.</P
></BLOCKQUOTE
></DIV
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="rrset_ordering"
>6.2.14.11. RRset Ordering</A
></H3
><P
>When multiple records are returned in an answer it may be
useful to configure the order of the records placed into the response.
For example, the records for a zone might be configured always to
be returned in the order they are defined in the zone file. Or perhaps
a random shuffle of the records as they are returned is wanted.
The <B
CLASS="command"
>rrset-order</B
> statement permits configuration
of the ordering made of the records in a multiple record response.
The default, if no ordering is defined, is a cyclic ordering (round
robin).</P
><P
>An <B
CLASS="command"
>order_spec</B
> is defined as follows:</P
><PRE
CLASS="programlisting"
>[<SPAN
CLASS="optional"
> class <TT
CLASS="replaceable"
><I
>class_name</I
></TT
> </SPAN
>][<SPAN
CLASS="optional"
> type <TT
CLASS="replaceable"
><I
>type_name</I
></TT
> </SPAN
>][<SPAN
CLASS="optional"
> name <TT
CLASS="replaceable"
><I
>"domain_name"</I
></TT
></SPAN
>]
      order <TT
CLASS="replaceable"
><I
>ordering</I
></TT
>
</PRE
><P
>If no class is specified, the default is <B
CLASS="command"
>ANY</B
>.
If no type is specified, the default is <B
CLASS="command"
>ANY</B
>.
If no name is specified, the default is "<B
CLASS="command"
>*</B
>".</P
><P
>The legal values for <B
CLASS="command"
>ordering</B
> are:</P
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="72"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>fixed</B
></P
></TD
><TD
WIDTH="360"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Records are returned in the order they
are defined in the zone file.</P
></TD
></TR
><TR
><TD
WIDTH="72"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>random</B
></P
></TD
><TD
WIDTH="360"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Records are returned in some random order.</P
></TD
></TR
><TR
><TD
WIDTH="72"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>cyclic</B
></P
></TD
><TD
WIDTH="360"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Records are returned in a round-robin
order.</P
></TD
></TR
></TABLE
><P
></P
></DIV
><P
>For example:</P
><PRE
CLASS="programlisting"
>rrset-order {
   class IN type A name "host.example.com" order random;
   order cyclic;
};
</PRE
><P
>will cause any responses for type A records in class IN that
have "<SPAN
CLASS="systemitem"
>host.example.com</SPAN
>" as a suffix, to always be returned
in random order. All other records are returned in cyclic order.</P
><P
>If multiple <B
CLASS="command"
>rrset-order</B
> statements appear,
they are not combined-the last one applies.</P
><P
>If no <B
CLASS="command"
>rrset-order</B
> statement is specified,
then a default one of:
<PRE
CLASS="programlisting"
>rrset-order { class ANY type ANY name "*"; order cyclic ; };
</PRE
>
is used.</P
><DIV
CLASS="note"
><BLOCKQUOTE
CLASS="note"
><P
><B
>Note: </B
>The <B
CLASS="command"
>rrset-order</B
> statement
is not yet implemented in <SPAN
CLASS="acronym"
>BIND</SPAN
> 9.</P
></BLOCKQUOTE
></DIV
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="tuning"
>6.2.14.12. Tuning</A
></H3
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="120"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>lame-ttl</B
></P
></TD
><TD
WIDTH="312"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Sets the number of seconds to cache a
lame server indication. 0 disables caching. (This is
<I
CLASS="emphasis"
>NOT</I
> recommended.)
Default is <TT
CLASS="literal"
>600</TT
> (10 minutes). Maximum value is
<TT
CLASS="literal"
>1800</TT
> (30 minutes).</P
>
</TD
></TR
><TR
><TD
WIDTH="120"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>max-ncache-ttl</B
></P
></TD
><TD
WIDTH="312"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>To reduce network traffic and increase performance
the server stores negative answers. <B
CLASS="command"
>max-ncache-ttl</B
> is
used to set a maximum retention time for these answers in the server
in seconds. The default
<B
CLASS="command"
>max-ncache-ttl</B
> is <TT
CLASS="literal"
>10800</TT
> seconds (3 hours).
<B
CLASS="command"
>max-ncache-ttl</B
> cannot exceed 7 days and will
be silently truncated to 7 days if set to a greater value.</P
></TD
></TR
><TR
><TD
WIDTH="120"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>max-cache-ttl</B
></P
></TD
><TD
WIDTH="312"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>max-cache-ttl</B
> sets
the maximum time for which the server will cache ordinary (positive)
answers. The default is one week (7 days).</P
></TD
></TR
><TR
><TD
WIDTH="120"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>min-roots</B
></P
></TD
><TD
WIDTH="312"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The minimum number of root servers that
is required for a request for the root servers to be accepted. Default
is <TT
CLASS="userinput"
><B
>2</B
></TT
>.</P
>
<DIV
CLASS="note"
><BLOCKQUOTE
CLASS="note"
><P
><B
>Note: </B
>Not yet implemented in <SPAN
CLASS="acronym"
>BIND</SPAN
>
9.</P
></BLOCKQUOTE
></DIV
>
</TD
></TR
><TR
><TD
WIDTH="120"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>sig-validity-interval</B
></P
></TD
><TD
WIDTH="312"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Specifies the number of days into the
future when DNSSEC signatures automatically generated as a result
of dynamic updates (<A
HREF="Bv9ARM.ch04.html#dynamic_update"
>Section 4.1</A
>)
will expire. The default is <TT
CLASS="literal"
>30</TT
> days. The signature
inception time is unconditionally set to one hour before the current time
to allow for a limited amount of clock skew.</P
></TD
></TR
></TABLE
><P
></P
></DIV
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="statsfile"
>6.2.14.13. The Statistics File</A
></H3
><P
>The statistics file generated by <SPAN
CLASS="acronym"
>BIND</SPAN
> 9
is similar, but not identical, to that
generated by <SPAN
CLASS="acronym"
>BIND</SPAN
> 8.
</P
><P
>The statistics dump begins with the line <B
CLASS="command"
>+++ Statistics Dump
+++ (973798949)</B
>, where the number in parentheses is a standard
Unix-style timestamp, measured as seconds since January 1, 1970.  Following
that line are a series of lines containing a counter type, the value of the
counter, optionally a zone name, and optionally a view name.
The lines without view and zone listed are global statistics for the entire server.
Lines with a zone and view name for the given view and zone (the view name is
omitted for the default view).  The statistics dump ends
with the line <B
CLASS="command"
>--- Statistics Dump --- (973798949)</B
>, where the
number is identical to the number in the beginning line.</P
><P
>The following statistics counters are maintained:</P
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="110"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>success</B
></P
></TD
><TD
WIDTH="322"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The number of
successful queries made to the server or zone.  A successful query
is defined as query which returns a NOERROR response other than
a referral response.</P
></TD
></TR
><TR
><TD
WIDTH="110"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>referral</B
></P
></TD
><TD
WIDTH="322"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The number of queries which resulted
in referral responses.</P
></TD
></TR
><TR
><TD
WIDTH="110"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>nxrrset</B
></P
></TD
><TD
WIDTH="322"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The number of queries which resulted in
NOERROR responses with no data.</P
></TD
></TR
><TR
><TD
WIDTH="110"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>nxdomain</B
></P
></TD
><TD
WIDTH="322"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The number
of queries which resulted in NXDOMAIN responses.</P
></TD
></TR
><TR
><TD
WIDTH="110"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>recursion</B
></P
></TD
><TD
WIDTH="322"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The number of queries which caused the server
to perform recursion in order to find the final answer.</P
></TD
></TR
><TR
><TD
WIDTH="110"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>failure</B
></P
></TD
><TD
WIDTH="322"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The number of queries which resulted in a
failure response other than those above.</P
></TD
></TR
></TABLE
><P
></P
></DIV
></DIV
></DIV
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="server_statement_grammar"
>6.2.15. <B
CLASS="command"
>server</B
>
Statement Grammar</A
></H2
><PRE
CLASS="programlisting"
>server <TT
CLASS="replaceable"
><I
>ip_addr</I
></TT
> {
    [<SPAN
CLASS="optional"
> bogus <TT
CLASS="replaceable"
><I
>yes_or_no</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> provide-ixfr <TT
CLASS="replaceable"
><I
>yes_or_no</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> request-ixfr <TT
CLASS="replaceable"
><I
>yes_or_no</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> transfers <TT
CLASS="replaceable"
><I
>number</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> transfer-format <TT
CLASS="replaceable"
><I
>( one-answer | many-answers )</I
></TT
> ; ]</SPAN
>]
    [<SPAN
CLASS="optional"
> keys <TT
CLASS="replaceable"
><I
>{ string ; [<SPAN
CLASS="optional"
> string ; [<SPAN
CLASS="optional"
>...</SPAN
>]</SPAN
>] }</I
></TT
> ; </SPAN
>]
};
</PRE
></DIV
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="server_statement_definition_and_usage"
>6.2.16. <B
CLASS="command"
>server</B
> Statement Definition
and Usage</A
></H2
><P
>The <B
CLASS="command"
>server</B
> statement defines the characteristics
to be associated with a remote nameserver.</P
><P
>If you discover that a remote server is giving out bad data,
marking it as bogus will prevent further queries to it. The default
value of <B
CLASS="command"
>bogus</B
> is <B
CLASS="command"
>no</B
>.</P
><P
>The <B
CLASS="command"
>provide-ixfr</B
> clause determines whether
the local server, acting as master, will respond with an incremental
zone transfer when the given remote server, a slave, requests it.
If set to <B
CLASS="command"
>yes</B
>, incremental transfer will be provided
whenever possible. If set to <B
CLASS="command"
>no</B
>, all transfers
to the remote server will be nonincremental. If not set, the value
of the <B
CLASS="command"
>provide-ixfr</B
> option in the global options block
is used as a default.</P
><P
>The <B
CLASS="command"
>request-ixfr</B
> clause determines whether
the local server, acting as a slave, will request incremental zone
transfers from the given remote server, a master. If not set, the
value of the <B
CLASS="command"
>request-ixfr</B
> option in the global
options block is used as a default.</P
><P
>IXFR requests to servers that do not support IXFR will automatically
fall back to AXFR.  Therefore, there is no need to manually list
which servers support IXFR and which ones do not; the global default
of <B
CLASS="command"
>yes</B
> should always work. The purpose of the <B
CLASS="command"
>provide-ixfr</B
> and <B
CLASS="command"
>request-ixfr</B
> clauses is
to make it possible to disable the use of IXFR even when both master
and slave claim to support it, for example if one of the servers
is buggy and crashes or corrupts data when IXFR is used.</P
><P
>The server supports two zone transfer methods. The first, <B
CLASS="command"
>one-answer</B
>,
uses one DNS message per resource record transferred. <B
CLASS="command"
>many-answers</B
> packs
as many resource records as possible into a message. <B
CLASS="command"
>many-answers</B
> is
more efficient, but is only known to be understood by <SPAN
CLASS="acronym"
>BIND</SPAN
> 9, <SPAN
CLASS="acronym"
>BIND</SPAN
>
8.x, and patched versions of <SPAN
CLASS="acronym"
>BIND</SPAN
> 4.9.5. You can specify which method
to use for a server with the <B
CLASS="command"
>transfer-format</B
> option.
If <B
CLASS="command"
>transfer-format</B
> is not specified, the <B
CLASS="command"
>transfer-format</B
> specified
by the <B
CLASS="command"
>options</B
> statement will be used.</P
><P
><B
CLASS="command"
>transfers</B
> is used to limit the number of
concurrent inbound zone transfers from the specified server. If
no <B
CLASS="command"
>transfers</B
> clause is specified, the limit is
set according to the <B
CLASS="command"
>transfers-per-ns</B
> option.</P
><P
>The <B
CLASS="command"
>keys</B
> clause is used to identify a <B
CLASS="command"
>key_id</B
> defined
by the <B
CLASS="command"
>key</B
> statement, to be used for transaction
security when talking to the remote server. The <B
CLASS="command"
>key</B
> statement
must come before the <B
CLASS="command"
>server</B
> statement that references
it. When a request is sent to the remote server, a request signature
will be generated using the key specified here and appended to the
message. A request originating from the remote server is not required
to be signed by this key.</P
><P
>Although the grammar of the <B
CLASS="command"
>keys</B
> clause
allows for multiple keys, only a single key per server is currently
supported.</P
></DIV
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="AEN2863"
>6.2.17. <B
CLASS="command"
>trusted-keys</B
> Statement Grammar</A
></H2
><PRE
CLASS="programlisting"
>trusted-keys {
    <TT
CLASS="replaceable"
><I
>string</I
></TT
> <TT
CLASS="replaceable"
><I
>number</I
></TT
> <TT
CLASS="replaceable"
><I
>number</I
></TT
> <TT
CLASS="replaceable"
><I
>number</I
></TT
> <TT
CLASS="replaceable"
><I
>string</I
></TT
> ;
    [<SPAN
CLASS="optional"
> <TT
CLASS="replaceable"
><I
>string</I
></TT
> <TT
CLASS="replaceable"
><I
>number</I
></TT
> <TT
CLASS="replaceable"
><I
>number</I
></TT
> <TT
CLASS="replaceable"
><I
>number</I
></TT
> <TT
CLASS="replaceable"
><I
>string</I
></TT
> ; [<SPAN
CLASS="optional"
>...</SPAN
>]</SPAN
>]
};
</PRE
></DIV
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="AEN2879"
>6.2.18. <B
CLASS="command"
>trusted-keys</B
> Statement Definition
and Usage</A
></H2
><P
>The <B
CLASS="command"
>trusted-keys</B
> statement defines DNSSEC
security roots. DNSSEC is described in <A
HREF="Bv9ARM.ch04.html#DNSSEC"
>Section 4.7</A
>. A security root is defined when the public key for a non-authoritative
zone is known, but cannot be securely obtained through DNS, either
because it is the  DNS root zone or its parent zone is unsigned.
Once a key has been configured as a trusted key, it is treated as
if it had been validated and proven secure. The resolver attempts
DNSSEC validation on all DNS data in subdomains of a security root.</P
><P
>The <B
CLASS="command"
>trusted-keys</B
> statement can contain
multiple key entries, each consisting of the key's domain name,
flags, protocol, algorithm, and the base-64 representation of the
key data.</P
></DIV
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="AEN2887"
>6.2.19. <B
CLASS="command"
>view</B
> Statement Grammar</A
></H2
><PRE
CLASS="programlisting"
>view <TT
CLASS="replaceable"
><I
>view_name</I
></TT
> [<SPAN
CLASS="optional"
><TT
CLASS="replaceable"
><I
>class</I
></TT
></SPAN
>] {
      match-clients { <TT
CLASS="replaceable"
><I
>address_match_list</I
></TT
> } ;
      [<SPAN
CLASS="optional"
> <TT
CLASS="replaceable"
><I
>view_option</I
></TT
>; ...</SPAN
>]
      [<SPAN
CLASS="optional"
> zone-statistics <TT
CLASS="replaceable"
><I
>yes_or_no</I
></TT
> ; </SPAN
>]
      [<SPAN
CLASS="optional"
> <TT
CLASS="replaceable"
><I
>zone_statement</I
></TT
>; ...</SPAN
>]
};
</PRE
></DIV
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="AEN2901"
>6.2.20. <B
CLASS="command"
>view</B
> Statement Definition and Usage</A
></H2
><P
>The <B
CLASS="command"
>view</B
> statement is a powerful new feature
of <SPAN
CLASS="acronym"
>BIND</SPAN
> 9 that lets a name server answer a DNS query differently
depending on who is asking. It is particularly useful for implementing
split DNS setups without having to run multiple servers.</P
><P
>Each <B
CLASS="command"
>view</B
> statement defines a view of the
DNS namespace that will be seen by those clients whose IP addresses
match the <TT
CLASS="varname"
>address_match_list</TT
> of the view's <B
CLASS="command"
>match-clients</B
> clause.
 The order of the <B
CLASS="command"
>view</B
> statements is significant-a
client query will be resolved in the context of the first <B
CLASS="command"
>view</B
> whose <B
CLASS="command"
>match-clients</B
> list
matches the client's IP address.</P
><P
>Zones defined within a <B
CLASS="command"
>view</B
> statement will
be only be accessible to clients that match the <B
CLASS="command"
>view</B
>.
 By defining a zone of the same name in multiple views, different
zone data can be given to different clients, for example, "internal"
and "external" clients in a split DNS setup.</P
><P
>Many of the options given in the <B
CLASS="command"
>options</B
> statement
can also be used within a <B
CLASS="command"
>view</B
> statement, and then
apply only when resolving queries with that view.  When no view-specific
value is given, the value in the <B
CLASS="command"
>options</B
> statement
is used as a default.  Also, zone options can have default values specified
in the <B
CLASS="command"
>view</B
> statement; these view-specific defaults
take precedence over those in the <B
CLASS="command"
>options</B
> statement. </P
><P
>Views are class specific.  If no class is given, class IN
is assumed.  Note that all non-IN views must contain a hint zone,
since only the IN class has compiled-in default hints.</P
><P
>If there are no <B
CLASS="command"
>view</B
> statements in the
config file, a default view that matches any client is automatically
created in class IN, and any <B
CLASS="command"
>zone</B
> statements
specified on the top level of the configuration file are considered
to be part of this default view.  If any explicit <B
CLASS="command"
>view</B
> statements
are present, all <B
CLASS="command"
>zone</B
> statements must occur inside <B
CLASS="command"
>view</B
> statements.</P
><P
>Here is an example of a typical split DNS setup implemented
using <B
CLASS="command"
>view</B
> statements.</P
><PRE
CLASS="programlisting"
>view "internal" {
               // This should match our internal networks.
      match-clients { 10.0.0.0/8; };
               // Provide recursive service to internal clients only.
      recursion yes;
               // Provide a complete view of the example.com zone
               // including addresses of internal hosts.
      zone "example.com" {
            type master;
            file "example-internal.db";
      };
};
view "external" {
      match-clients { any; };
               // Refuse recursive service to external clients.
      recursion no;
               // Provide a restricted view of the example.com zone
               // containing only publicly accessible hosts.
      zone "example.com" {
           type master;
           file "example-external.db";
      };
};
</PRE
></DIV
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="zone_statement_grammar"
>6.2.21. <B
CLASS="command"
>zone</B
>
Statement Grammar</A
></H2
><PRE
CLASS="programlisting"
>zone <TT
CLASS="replaceable"
><I
>zone_name</I
></TT
> [<SPAN
CLASS="optional"
><TT
CLASS="replaceable"
><I
>class</I
></TT
></SPAN
>] [<SPAN
CLASS="optional"
>{
    type ( master | slave | hint | stub | forward ) ;
    [<SPAN
CLASS="optional"
> allow-notify { <TT
CLASS="replaceable"
><I
>address_match_list</I
></TT
> } ; </SPAN
>]
    [<SPAN
CLASS="optional"
> allow-query { <TT
CLASS="replaceable"
><I
>address_match_list</I
></TT
> } ; </SPAN
>]
    [<SPAN
CLASS="optional"
> allow-transfer { <TT
CLASS="replaceable"
><I
>address_match_list</I
></TT
> } ; </SPAN
>]
    [<SPAN
CLASS="optional"
> allow-update { <TT
CLASS="replaceable"
><I
>address_match_list</I
></TT
> } ; </SPAN
>]
    [<SPAN
CLASS="optional"
> update-policy { <TT
CLASS="replaceable"
><I
>update_policy_rule</I
></TT
> [<SPAN
CLASS="optional"
>...</SPAN
>] } ; </SPAN
>]
    [<SPAN
CLASS="optional"
> allow-update-forwarding { <TT
CLASS="replaceable"
><I
>address_match_list</I
></TT
> } ; </SPAN
>]
    [<SPAN
CLASS="optional"
> also-notify { <TT
CLASS="replaceable"
><I
>ip_addr</I
></TT
> [<SPAN
CLASS="optional"
>port <TT
CLASS="replaceable"
><I
>ip_port</I
></TT
></SPAN
>] ; [<SPAN
CLASS="optional"
> <TT
CLASS="replaceable"
><I
>ip_addr</I
></TT
> [<SPAN
CLASS="optional"
>port <TT
CLASS="replaceable"
><I
>ip_port</I
></TT
></SPAN
>] ; ... </SPAN
>] }; </SPAN
>]
    [<SPAN
CLASS="optional"
> check-names (<TT
CLASS="constant"
>warn</TT
>|<TT
CLASS="constant"
>fail</TT
>|<TT
CLASS="constant"
>ignore</TT
>) ; </SPAN
>]
    [<SPAN
CLASS="optional"
> dialup <TT
CLASS="replaceable"
><I
>dialup_option</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> file <TT
CLASS="replaceable"
><I
>string</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> forward (<TT
CLASS="constant"
>only</TT
>|<TT
CLASS="constant"
>first</TT
>) ; </SPAN
>]
    [<SPAN
CLASS="optional"
> forwarders { [<SPAN
CLASS="optional"
> <TT
CLASS="replaceable"
><I
>ip_addr</I
></TT
> ; [<SPAN
CLASS="optional"
> <TT
CLASS="replaceable"
><I
>ip_addr</I
></TT
> ; [<SPAN
CLASS="optional"
>...</SPAN
>]</SPAN
>]</SPAN
>] } ; </SPAN
>]
    [<SPAN
CLASS="optional"
> ixfr-base <TT
CLASS="replaceable"
><I
>string</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> ixfr-tmp-file <TT
CLASS="replaceable"
><I
>string</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> maintain-ixfr-base <TT
CLASS="replaceable"
><I
>yes_or_no</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> masters [<SPAN
CLASS="optional"
>port <TT
CLASS="replaceable"
><I
>ip_port</I
></TT
></SPAN
>] { <TT
CLASS="replaceable"
><I
>ip_addr</I
></TT
> [<SPAN
CLASS="optional"
>port <TT
CLASS="replaceable"
><I
>ip_port</I
></TT
></SPAN
>] [<SPAN
CLASS="optional"
>key <TT
CLASS="replaceable"
><I
>key</I
></TT
></SPAN
>]; [<SPAN
CLASS="optional"
>...</SPAN
>] } ; </SPAN
>]
    [<SPAN
CLASS="optional"
> max-ixfr-log-size <TT
CLASS="replaceable"
><I
>number</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> max-transfer-idle-in <TT
CLASS="replaceable"
><I
>number</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> max-transfer-idle-out <TT
CLASS="replaceable"
><I
>number</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> max-transfer-time-in <TT
CLASS="replaceable"
><I
>number</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> max-transfer-time-out <TT
CLASS="replaceable"
><I
>number</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> notify <TT
CLASS="replaceable"
><I
>yes_or_no</I
></TT
> | <TT
CLASS="replaceable"
><I
>explicit</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> pubkey <TT
CLASS="replaceable"
><I
>number</I
></TT
> <TT
CLASS="replaceable"
><I
>number</I
></TT
> <TT
CLASS="replaceable"
><I
>number</I
></TT
> <TT
CLASS="replaceable"
><I
>string</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> transfer-source (<TT
CLASS="replaceable"
><I
>ip4_addr</I
></TT
> | <TT
CLASS="constant"
>*</TT
>) [<SPAN
CLASS="optional"
>port <TT
CLASS="replaceable"
><I
>ip_port</I
></TT
></SPAN
>] ; </SPAN
>]
    [<SPAN
CLASS="optional"
> transfer-source-v6 (<TT
CLASS="replaceable"
><I
>ip6_addr</I
></TT
> | <TT
CLASS="constant"
>*</TT
>) [<SPAN
CLASS="optional"
>port <TT
CLASS="replaceable"
><I
>ip_port</I
></TT
></SPAN
>] ; </SPAN
>]
    [<SPAN
CLASS="optional"
> notify-source (<TT
CLASS="replaceable"
><I
>ip4_addr</I
></TT
> | <TT
CLASS="constant"
>*</TT
>) [<SPAN
CLASS="optional"
>port <TT
CLASS="replaceable"
><I
>ip_port</I
></TT
></SPAN
>] ; </SPAN
>]
    [<SPAN
CLASS="optional"
> notify-source-v6 (<TT
CLASS="replaceable"
><I
>ip6_addr</I
></TT
> | <TT
CLASS="constant"
>*</TT
>) [<SPAN
CLASS="optional"
>port <TT
CLASS="replaceable"
><I
>ip_port</I
></TT
></SPAN
>] ; </SPAN
>]
    [<SPAN
CLASS="optional"
> zone-statistics <TT
CLASS="replaceable"
><I
>yes_or_no</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> sig-validity-interval <TT
CLASS="replaceable"
><I
>number</I
></TT
> ; </SPAN
>]
    [<SPAN
CLASS="optional"
> database <TT
CLASS="replaceable"
><I
>string</I
></TT
> ; </SPAN
>]
}</SPAN
>];
</PRE
></DIV
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="AEN3038"
>6.2.22. <B
CLASS="command"
>zone</B
> Statement Definition and Usage</A
></H2
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="AEN3041"
>6.2.22.1. Zone Types</A
></H3
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="87"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="varname"
>master</TT
></P
></TD
><TD
WIDTH="405"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The server has a master copy of the data
for the zone and will be able to provide authoritative answers for
it.</P
></TD
></TR
><TR
><TD
WIDTH="87"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="varname"
>slave</TT
></P
></TD
><TD
WIDTH="405"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>A slave zone is a replica of a master
zone. The <B
CLASS="command"
>masters</B
> list specifies one or more IP addresses
of master servers that the slave contacts to update its copy of the zone.
By default, transfers are made from port 53 on the servers; this can
be changed for all servers by specifying a port number before the
list of IP addresses, or on a per-server basis after the IP address.
Authentication to the master can also be done with per-server TSIG keys.
If a file is specified, then the
replica will be written to this file whenever the zone is changed,
and reloaded from this file on a server restart. Use of a file is
recommended, since it often speeds server start-up and eliminates
a needless waste of bandwidth. Note that for large numbers (in the
tens or hundreds of thousands) of zones per server, it is best to
use a two level naming scheme for zone file names. For example,
a slave server for the zone <SPAN
CLASS="systemitem"
>example.com</SPAN
> might place
the zone contents into a file called
<TT
CLASS="filename"
>ex/example.com</TT
> where <TT
CLASS="filename"
>ex/</TT
> is
just the first two letters of the zone name. (Most operating systems
behave very slowly if you put 100K files into a single directory.)</P
></TD
></TR
><TR
><TD
WIDTH="87"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="varname"
>stub</TT
></P
></TD
><TD
WIDTH="405"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>A stub zone is similar to a slave zone,
except that it replicates only the NS records of a master zone instead
of the entire zone. Stub zones are not a standard part of the DNS;
they are a peculiarity of <SPAN
CLASS="acronym"
>BIND</SPAN
> 4 and <SPAN
CLASS="acronym"
>BIND</SPAN
> 8 that relies heavily
on the particular way the zone data is structured in those servers.
<SPAN
CLASS="acronym"
>BIND</SPAN
> 9 attempts to emulate the <SPAN
CLASS="acronym"
>BIND</SPAN
> 4/8 stub zone feature for backwards compatibility,
but we do not recommend its use in new configurations.</P
><P
>In
<SPAN
CLASS="acronym"
>BIND</SPAN
> 4/8, zone transfers of a parent zone included the NS records
from stub children of that zone. This meant that, in some cases,
users could get away with configuring child stubs only in the master
server for the parent zone. <SPAN
CLASS="acronym"
>BIND</SPAN
> 9 never mixes together zone data
from different zones in this way. Therefore, if a <SPAN
CLASS="acronym"
>BIND</SPAN
> 9 master
serving a parent zone has child stub zones configured, all the slave
servers for the parent zone also need to have the same child stub
zones configured..</P
></TD
></TR
><TR
><TD
WIDTH="87"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="varname"
>forward</TT
></P
></TD
><TD
WIDTH="405"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>A "forward zone" is a way to configure
forwarding on a per-domain basis.  A <B
CLASS="command"
>zone</B
> statement
of type <B
CLASS="command"
>forward</B
> can contain a <B
CLASS="command"
>forward</B
> and/or <B
CLASS="command"
>forwarders</B
> statement,
which will apply to queries within the domain given by the zone
name. If no <B
CLASS="command"
>forwarders</B
> statement is present or
an empty list for <B
CLASS="command"
>forwarders</B
> is given, then no
forwarding will be done for the domain, cancelling the effects of
any forwarders in the <B
CLASS="command"
>options</B
> statement. Thus
if you want to use this type of zone to change the behavior of the
global <B
CLASS="command"
>forward</B
> option (that is, "forward first
to", then "forward only", or vice versa, but want to use the same
servers as set globally) you need to respecify the global forwarders.</P
>
</TD
></TR
><TR
><TD
WIDTH="87"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="varname"
>hint</TT
></P
></TD
><TD
WIDTH="405"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The initial set of root nameservers is
specified using a "hint zone". When the server starts up, it uses
the root hints to find a root nameserver and get the most recent
list of root nameservers. If no hint zone is specified for class
IN, the server users a compiled-in default set of root servers hints.
Classes other than IN have no built-in defaults hints.</P
></TD
></TR
></TABLE
><P
></P
></DIV
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="AEN3098"
>6.2.22.2. Class</A
></H3
><P
>The zone's name may optionally be followed by a class. If
a class is not specified, class <TT
CLASS="literal"
>IN</TT
> (for <TT
CLASS="varname"
>Internet</TT
>),
is assumed. This is correct for the vast majority of cases.</P
><P
>The <TT
CLASS="literal"
>hesiod</TT
> class is
named for an information service from MIT's Project Athena. It is
used to share information about various systems databases, such
as users, groups, printers and so on. The keyword
<TT
CLASS="literal"
>HS</TT
> is
a synonym for hesiod.</P
><P
>Another MIT development is CHAOSnet, a LAN protocol created
in the mid-1970s. Zone data for it can be specified with the <TT
CLASS="literal"
>CHAOS</TT
> class.</P
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="AEN3108"
>6.2.22.3. Zone Options</A
></H3
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>allow-notify</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>See the description of
<B
CLASS="command"
>allow-notify</B
> in <A
HREF="Bv9ARM.ch06.html#access_control"
>Section 6.2.14.3</A
></P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>allow-query</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>See the description of
<B
CLASS="command"
>allow-query</B
> in <A
HREF="Bv9ARM.ch06.html#access_control"
>Section 6.2.14.3</A
></P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>allow-transfer</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>See the description of <B
CLASS="command"
>allow-transfer</B
> in <A
HREF="Bv9ARM.ch06.html#access_control"
>Section 6.2.14.3</A
>.</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>allow-update</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Specifies which hosts are allowed to
submit Dynamic DNS updates for master zones. The default is to deny
updates from all hosts.</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>update-policy</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Specifies a "Simple Secure Update" policy. See
<A
HREF="Bv9ARM.ch06.html#dynamic_update_policies"
>Section 6.2.22.4</A
>.</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>allow-update-forwarding</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Specifies which hosts are allowed to
submit Dynamic DNS updates to slave zones to be forwarded to the
master.  The default is <TT
CLASS="userinput"
><B
>{ none; }</B
></TT
>, which
means that no update forwarding will be performed.  To enable
update forwarding, specify  <TT
CLASS="userinput"
><B
>allow-update-forwarding { any; };</B
></TT
>.
Specifying values other than <TT
CLASS="userinput"
><B
>{ none; }</B
></TT
> or
<TT
CLASS="userinput"
><B
>{ any; }</B
></TT
> is usually counterproductive, since
the responsibility for update access control should rest with the
master server, not the slaves.</P
>

<P
>Note that enabling the update forwarding feature on a slave server
may expose master servers relying on insecure IP address based
access control to attacks; see <A
HREF="Bv9ARM.ch07.html#dynamic_update_security"
>Section 7.3</A
>
for more details.</P
>
</TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>also-notify</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Only meaningful if <B
CLASS="command"
>notify</B
> is
active for this zone. The set of machines that will receive a
<TT
CLASS="literal"
>DNS NOTIFY</TT
> message
for this zone is made up of all the listed nameservers (other than
the primary master) for the zone plus any IP addresses specified
with <B
CLASS="command"
>also-notify</B
>. A port may be specified
with each <B
CLASS="command"
>also-notify</B
> address to send the notify
messages to a port other than the default of 53.
<B
CLASS="command"
>also-notify</B
> is not meaningful for stub zones.
The default is the empty list.</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>check-names</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>&#13;This option was used in BIND 8 to restrict the character set of
domain names in master files and/or DNS responses received from the
netowrk.  BIND 9 does not restrict the character set of domain names
and does not implement the <B
CLASS="command"
>check-names</B
> option.
</P
>
</TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>database</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Specify the type of database to be used for storing the
zone data.  The string following the <B
CLASS="command"
>database</B
> keyword
is interpreted as a list of whitespace-delimited words.  The first word
identifies the database type, and any subsequent words are passed
as arguments to the database to be interpreted in a way specific
to the database type.</P
>
<P
>The default is <TT
CLASS="userinput"
><B
>"rbt"</B
></TT
>, BIND 9's native in-memory
red-black-tree database.  This database does not take arguments.</P
>
<P
>Other values are possible if additional database drivers
have been linked into the server.  Some sample drivers are included
with the distribution but none are linked in by default.</P
>
</TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>dialup</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>See the description of
<B
CLASS="command"
>dialup</B
> in <A
HREF="Bv9ARM.ch06.html#boolean_options"
>Section 6.2.14.1</A
>.</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>forward</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Only meaningful if the zone has a forwarders
list. The <B
CLASS="command"
>only</B
> value causes the lookup to fail
after trying the forwarders and getting no answer, while <B
CLASS="command"
>first</B
> would
allow a normal lookup to be tried.</P
>
</TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>forwarders</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Used to override the list of global forwarders.
If it is not specified in a zone of type <B
CLASS="command"
>forward</B
>,
no forwarding is done for the zone; the global options are not used.</P
>
</TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>ixfr-base</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Was used in <SPAN
CLASS="acronym"
>BIND</SPAN
> 8 to specify the name
of the transaction log (journal) file for dynamic update and IXFR.
<SPAN
CLASS="acronym"
>BIND</SPAN
> 9 ignores the option and constructs the name of the journal
file by appending ".<TT
CLASS="filename"
>jnl</TT
>" to the name of the
zone file.</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>max-transfer-time-in</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>See the description of
<B
CLASS="command"
>max-transfer-time-in</B
> in <A
HREF="Bv9ARM.ch06.html#zone_transfers"
>Section 6.2.14.6</A
>.</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>max-transfer-idle-in</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>See the description of
<B
CLASS="command"
>max-transfer-idle-in</B
> in <A
HREF="Bv9ARM.ch06.html#zone_transfers"
>Section 6.2.14.6</A
>.</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>max-transfer-time-out</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>See the description of
<B
CLASS="command"
>max-transfer-time-out</B
> in <A
HREF="Bv9ARM.ch06.html#zone_transfers"
>Section 6.2.14.6</A
>.</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>max-transfer-idle-out</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>See the description of
<B
CLASS="command"
>max-transfer-idle-out</B
> in <A
HREF="Bv9ARM.ch06.html#zone_transfers"
>Section 6.2.14.6</A
>.</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>notify</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>See the description of
<B
CLASS="command"
>notify</B
> in <A
HREF="Bv9ARM.ch06.html#boolean_options"
>Section 6.2.14.1</A
>.</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>pubkey</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>In <SPAN
CLASS="acronym"
>BIND</SPAN
> 8, this option was intended for specifying
a public zone key for verification of signatures in DNSSEC signed
zones when they are loaded from disk. <SPAN
CLASS="acronym"
>BIND</SPAN
> 9 does not verify signatures
on loading and ignores the option.</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>zone-statistics</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>If <TT
CLASS="userinput"
><B
>yes</B
></TT
>, the server will keep statistical
information for this zone, which can be dumped to the
<B
CLASS="command"
>statistics-file</B
> defined in the server options.</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>sig-validity-interval</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>See the description of
<B
CLASS="command"
>sig-validity-interval</B
> in <A
HREF="Bv9ARM.ch06.html#tuning"
>Section 6.2.14.12</A
>.</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>transfer-source</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>See the description of
<B
CLASS="command"
>transfer-source</B
> in <A
HREF="Bv9ARM.ch06.html#zone_transfers"
>Section 6.2.14.6</A
>
</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>transfer-source-v6</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>See the description of
<B
CLASS="command"
>transfer-source-v6</B
> in <A
HREF="Bv9ARM.ch06.html#zone_transfers"
>Section 6.2.14.6</A
>
</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>notify-source</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>See the description of
<B
CLASS="command"
>notify-source</B
> in <A
HREF="Bv9ARM.ch06.html#zone_transfers"
>Section 6.2.14.6</A
>
</P
></TD
></TR
><TR
><TD
WIDTH="159"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>notify-source-v6</B
></P
></TD
><TD
WIDTH="273"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>See the description of
<B
CLASS="command"
>notify-source-v6</B
> in <A
HREF="Bv9ARM.ch06.html#zone_transfers"
>Section 6.2.14.6</A
>.
</P
></TD
></TR
></TABLE
><P
></P
></DIV
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="dynamic_update_policies"
>6.2.22.4. Dynamic Update Policies</A
></H3
><P
><SPAN
CLASS="acronym"
>BIND</SPAN
> 9 supports two alternative methods of granting clients
the right to perform dynamic updates to a zone, configured by the <B
CLASS="command"
>allow-update</B
> and <B
CLASS="command"
>update-policy</B
> option,
respectively.</P
><P
>The <B
CLASS="command"
>allow-update</B
> clause works the same
way as in previous versions of <SPAN
CLASS="acronym"
>BIND</SPAN
>. It grants given clients the
permission to update any record of any name in the zone.</P
><P
>The <B
CLASS="command"
>update-policy</B
> clause is new in <SPAN
CLASS="acronym"
>BIND</SPAN
>
9 and allows more fine-grained control over what updates are allowed.
A set of rules is specified, where each rule either grants or denies
permissions for one or more names to be updated by one or more identities.
 If the dynamic update request message is signed (that is, it includes
either a TSIG or SIG(0) record), the identity of the signer can
be determined.</P
><P
>Rules are specified in the <B
CLASS="command"
>update-policy</B
> zone
option, and are only meaningful for master zones.  When the <B
CLASS="command"
>update-policy</B
> statement
is present, it is a configuration error for the <B
CLASS="command"
>allow-update</B
> statement
to be present.  The <B
CLASS="command"
>update-policy</B
> statement only
examines the signer of a message; the source address is not relevant.</P
><P
>This is how a rule definition looks:</P
><PRE
CLASS="programlisting"
>&#13;( <B
CLASS="command"
>grant</B
> | <B
CLASS="command"
>deny</B
> ) <TT
CLASS="replaceable"
><I
>identity</I
></TT
> <TT
CLASS="replaceable"
><I
>nametype</I
></TT
> <TT
CLASS="replaceable"
><I
>name</I
></TT
> [<SPAN
CLASS="optional"
> <TT
CLASS="replaceable"
><I
>types</I
></TT
> </SPAN
>]
</PRE
><P
>Each rule grants or denies privileges.  Once a message has
successfully matched a rule, the operation is immediately granted
or denied and no further rules are examined.  A rule is matched
when the signer matches the identity field, the name matches the
name field, and the type is specified in the type field.</P
><P
>The identity field specifies a name or a wildcard name.  The
nametype field has 4 values: <TT
CLASS="varname"
>name</TT
>, <TT
CLASS="varname"
>subdomain</TT
>, <TT
CLASS="varname"
>wildcard</TT
>,
and <TT
CLASS="varname"
>self</TT
>
</P
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="79"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="varname"
>name</TT
></P
></TD
><TD
WIDTH="353"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Matches when the updated name is the
same as the name in the name field.</P
></TD
></TR
><TR
><TD
WIDTH="79"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="varname"
>subdomain</TT
></P
></TD
><TD
WIDTH="353"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Matches when the updated name is a subdomain
of the name in the name field.</P
></TD
></TR
><TR
><TD
WIDTH="79"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="varname"
>wildcard</TT
></P
></TD
><TD
WIDTH="353"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Matches when the updated name is a valid
expansion of the wildcard name in the name field.</P
></TD
></TR
><TR
><TD
WIDTH="79"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="varname"
>self</TT
></P
></TD
><TD
WIDTH="353"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Matches when the updated name is the
same as the message signer. The name field is ignored.</P
></TD
></TR
></TABLE
><P
></P
></DIV
><P
>If no types are specified, the rule matches all types except
SIG, NS, SOA, and NXT. Types may be specified by name, including
"ANY" (ANY matches all types except NXT, which can never be updated).
</P
></DIV
></DIV
></DIV
><DIV
CLASS="sect1"
><H1
CLASS="sect1"
><A
NAME="AEN3382"
>6.3. Zone File</A
></H1
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="types_of_resource_records_and_when_to_use_them"
>6.3.1. Types of Resource Records and When to Use Them</A
></H2
><P
>This section, largely borrowed from RFC 1034, describes the
concept of a Resource Record (RR) and explains when each is used.
Since the publication of RFC 1034, several new RRs have been identified
and implemented in the DNS. These are also included.</P
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="AEN3387"
>6.3.1.1. Resource Records</A
></H3
><P
>A domain name identifies a node.  Each node has a set of
        resource information, which may be empty.  The set of resource
        information associated with a particular name is composed of
        separate RRs. The order of RRs in a set is not significant and
        need not be preserved by nameservers, resolvers, or other
        parts of the DNS. However, sorting of multiple RRs is
        permitted for optimization purposes, for example, to specify
        that a particular nearby server be tried first. See <A
HREF="Bv9ARM.ch06.html#the_sortlist_statement"
>Section 6.2.14.10</A
> and <A
HREF="Bv9ARM.ch06.html#rrset_ordering"
>Section 6.2.14.11</A
>.</P
><P
>The components of a Resource Record are:</P
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="96"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>owner name</P
></TD
><TD
WIDTH="336"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>the domain name where the RR is found.</P
></TD
></TR
><TR
><TD
WIDTH="96"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>type</P
></TD
><TD
WIDTH="336"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>an encoded 16 bit value that specifies
the type of the resource in this resource record. Types refer to
abstract resources.</P
></TD
></TR
><TR
><TD
WIDTH="96"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>TTL</P
></TD
><TD
WIDTH="336"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>the time to live of the RR. This field
is a 32 bit integer in units of seconds, and is primarily used by
resolvers when they cache RRs. The TTL describes how long a RR can
be cached before it should be discarded.</P
></TD
></TR
><TR
><TD
WIDTH="96"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>class</P
></TD
><TD
WIDTH="336"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>an encoded 16 bit value that identifies
a protocol family or instance of a protocol.</P
></TD
></TR
><TR
><TD
WIDTH="96"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>RDATA</P
></TD
><TD
WIDTH="336"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>the type and sometimes class-dependent
data that describes the resource.</P
></TD
></TR
></TABLE
><P
></P
></DIV
><P
>The following are <I
CLASS="emphasis"
>types</I
> of valid RRs
(some of these listed, although not obsolete, are experimental (x)
or historical (h) and no longer in general use):</P
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>A</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>a host address.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>A6</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>an IPv6 address.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>AAAA</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Obsolete format of IPv6 address</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>AFSDB</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>(x) location of AFS database servers.
Experimental.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>CNAME</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>identifies the canonical name of an alias.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>DNAME</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>for delegation of reverse addresses.
Replaces the domain name specified with another name to be looked
up. Described in RFC 2672.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>HINFO</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>identifies the CPU and OS used by a host.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>ISDN</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>(x) representation of ISDN addresses.
Experimental.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>KEY</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>stores a public key associated with a
DNS name.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>LOC</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>(x) for storing GPS info. See RFC 1876.
Experimental.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>MX</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>identifies a mail exchange for the domain.
 See RFC 974 for details.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>NS</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>the authoritative nameserver for the
domain.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>NXT</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>used in DNSSEC to securely indicate that
RRs with an owner name in a certain name interval do not exist in
a zone and indicate what RR types are present for an existing name.
See RFC 2535 for details.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>PTR</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>a pointer to another part of the domain
name space.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>RP</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>(x) information on persons responsible
for the domain. Experimental.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>RT</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>(x) route-through binding for hosts that
do not have their own direct wide area network addresses. Experimental.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>SIG</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>("signature") contains data authenticated
in the secure DNS. See RFC 2535 for details.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>SOA</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>identifies the start of a zone of authority.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>SRV</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>information about well known network
services (replaces WKS).</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>WKS</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>(h) information about which well known
network services, such as SMTP, that a domain supports. Historical,
replaced by newer RR SRV.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>X25</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>(x) representation of X.25 network addresses. Experimental.</P
></TD
></TR
></TABLE
><P
></P
></DIV
><P
>The following <I
CLASS="emphasis"
>classes</I
> of resource records
are currently valid in the DNS:</P
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>IN</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>the Internet system.</P
></TD
></TR
><TR
><TD
COLSPAN="2"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>For information about other,
older classes of RRs, see <A
HREF="Bv9ARM.ch09.html#classes_of_resource_records"
>Section A.2.1</A
>.</P
></TD
></TR
></TABLE
><P
></P
></DIV
><P
><I
CLASS="emphasis"
>RDATA</I
> is the type-dependent or class-dependent
data that describes the resource:</P
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>A</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>for the IN class, a 32 bit IP address.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>A6</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>maps a domain name to an IPv6 address,
with a provision for indirection for leading "prefix" bits.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>CNAME</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>a domain name.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>DNAME</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>provides alternate naming to an entire
subtree of the domain name space, rather than to a single node.
 It causes some suffix of a queried name to be substituted with
a name from the DNAME record's RDATA.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>MX</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>a 16 bit preference value (lower is better)
followed by a host name willing to act as a mail exchange for the
owner domain.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>NS</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>a fully qualified domain name.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>PTR</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>a fully qualified domain name.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>SOA</P
></TD
><TD
WIDTH="348"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>several fields.</P
></TD
></TR
></TABLE
><P
></P
></DIV
><P
>The owner name is often implicit, rather than forming an integral
part of the RR.  For example, many nameservers internally form tree
or hash structures for the name space, and chain RRs off nodes.
 The remaining RR parts are the fixed header (type, class, TTL)
which is consistent for all RRs, and a variable part (RDATA) that
fits the needs of the resource being described.</P
><P
>The meaning of the TTL field is a time limit on how long an
RR can be kept in a cache.  This limit does not apply to authoritative
data in zones; it is also timed out, but by the refreshing policies
for the zone.  The TTL is assigned by the administrator for the
zone where the data originates.  While short TTLs can be used to
minimize caching, and a zero TTL prohibits caching, the realities
of Internet performance suggest that these times should be on the
order of days for the typical host.  If a change can be anticipated,
the TTL can be reduced prior to the change to minimize inconsistency
during the change, and then increased back to its former value following
the change.</P
><P
>The data in the RDATA section of RRs is carried as a combination
of binary strings and domain names.  The domain names are frequently
used as "pointers" to other data in the DNS.</P
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="AEN3601"
>6.3.1.2. Textual expression of RRs</A
></H3
><P
>RRs are represented in binary form in the packets of the DNS
protocol, and are usually represented in highly encoded form when
stored in a nameserver or resolver.  In the examples provided in
RFC 1034, a style similar to that used in master files was employed
in order to show the contents of RRs.  In this format, most RRs
are shown on a single line, although continuation lines are possible
using parentheses.</P
><P
>The start of the line gives the owner of the RR.  If a line
begins with a blank, then the owner is assumed to be the same as
that of the previous RR.  Blank lines are often included for readability.</P
><P
>Following the owner, we list the TTL, type, and class of the
RR.  Class and type use the mnemonics defined above, and TTL is
an integer before the type field.  In order to avoid ambiguity in
parsing, type and class mnemonics are disjoint, TTLs are integers,
and the type mnemonic is always last. The IN class and TTL values
are often omitted from examples in the interests of clarity.</P
><P
>The resource data or RDATA section of the RR are given using
knowledge of the typical representation for the data.</P
><P
>For example, we might show the RRs carried in a message as:</P
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="133"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>ISI.EDU.</TT
></P
></TD
><TD
WIDTH="98"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>MX</TT
></P
></TD
><TD
WIDTH="202"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>10 VENERA.ISI.EDU.</TT
></P
></TD
></TR
><TR
><TD
WIDTH="133"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
></P
></TD
><TD
WIDTH="98"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>MX</TT
></P
></TD
><TD
WIDTH="202"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>10 VAXA.ISI.EDU</TT
></P
></TD
></TR
><TR
><TD
WIDTH="133"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>VENERA.ISI.EDU</TT
></P
></TD
><TD
WIDTH="98"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>A</TT
></P
></TD
><TD
WIDTH="202"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>128.9.0.32</TT
></P
></TD
></TR
><TR
><TD
WIDTH="133"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
></P
></TD
><TD
WIDTH="98"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>A</TT
></P
></TD
><TD
WIDTH="202"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>10.1.0.52</TT
></P
></TD
></TR
><TR
><TD
WIDTH="133"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>VAXA.ISI.EDU</TT
></P
></TD
><TD
WIDTH="98"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>A</TT
></P
></TD
><TD
WIDTH="202"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>10.2.0.27</TT
></P
></TD
></TR
><TR
><TD
WIDTH="133"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
></P
></TD
><TD
WIDTH="98"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>A</TT
></P
></TD
><TD
WIDTH="202"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>128.9.0.33</TT
></P
></TD
></TR
></TABLE
><P
></P
></DIV
><P
>The MX RRs have an RDATA section which consists of a 16 bit
number followed by a domain name.  The address RRs use a standard
IP address format to contain a 32 bit internet address.</P
><P
>This example shows six RRs, with two RRs at each of three
domain names.</P
><P
>Similarly we might see:</P
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="143"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>XX.LCS.MIT.EDU. IN</TT
></P
></TD
><TD
WIDTH="102"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>A</TT
></P
></TD
><TD
WIDTH="198"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>10.0.0.44</TT
></P
></TD
></TR
><TR
><TD
WIDTH="143"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>CH</TT
></P
></TD
><TD
WIDTH="102"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>A</TT
></P
></TD
><TD
WIDTH="198"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>MIT.EDU. 2420</TT
></P
></TD
></TR
></TABLE
><P
></P
></DIV
><P
>This example shows two addresses for <SPAN
CLASS="systemitem"
>XX.LCS.MIT.EDU</SPAN
>,
each of a different class.</P
></DIV
></DIV
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="AEN3702"
>6.3.2. Discussion of MX Records</A
></H2
><P
>As described above, domain servers store information as a
series of resource records, each of which contains a particular
piece of information about a given domain name (which is usually,
but not always, a host). The simplest way to think of a RR is as
a typed pair of datum, a domain name matched with relevant data,
and stored with some additional type information to help systems determine
when the RR is relevant.</P
><P
>MX records are used to control delivery of email. The data
specified in the record is a priority and a domain name. The priority
controls the order in which email delivery is attempted, with the
lowest number first. If two priorities are the same, a server is
chosen randomly. If no servers at a given priority are responding,
the mail transport agent will fall back to the next largest priority.
Priority numbers do not have any absolute meaning &#8212; they are relevant
only respective to other MX records for that domain name. The domain
name given is the machine to which the mail will be delivered. It <I
CLASS="emphasis"
>must</I
> have
an associated A record &#8212; CNAME is not sufficient.</P
><P
>For a given domain, if there is both a CNAME record and an
MX record, the MX record is in error, and will be ignored. Instead,
the mail will be delivered to the server specified in the MX record
pointed to by the CNAME.</P
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="164"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>example.com.</TT
></P
></TD
><TD
WIDTH="43"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>IN</TT
></P
></TD
><TD
WIDTH="43"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>MX</TT
></P
></TD
><TD
WIDTH="94"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>10</TT
></P
></TD
><TD
WIDTH="149"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>mail.example.com.</TT
></P
></TD
></TR
><TR
><TD
WIDTH="164"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
></P
></TD
><TD
WIDTH="43"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>IN</TT
></P
></TD
><TD
WIDTH="43"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>MX</TT
></P
></TD
><TD
WIDTH="94"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>10</TT
></P
></TD
><TD
WIDTH="149"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>mail2.example.com.</TT
></P
></TD
></TR
><TR
><TD
WIDTH="164"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
></P
></TD
><TD
WIDTH="43"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>IN</TT
></P
></TD
><TD
WIDTH="43"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>MX</TT
></P
></TD
><TD
WIDTH="94"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>20</TT
></P
></TD
><TD
WIDTH="149"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>mail.backup.org.</TT
></P
></TD
></TR
><TR
><TD
WIDTH="164"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>mail.example.com.</TT
></P
></TD
><TD
WIDTH="43"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>IN</TT
></P
></TD
><TD
WIDTH="43"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>A</TT
></P
></TD
><TD
WIDTH="94"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>10.0.0.1</TT
></P
></TD
><TD
WIDTH="149"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
></P
></TD
></TR
><TR
><TD
WIDTH="164"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>mail2.example.com.</TT
></P
></TD
><TD
WIDTH="43"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>IN</TT
></P
></TD
><TD
WIDTH="43"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>A</TT
></P
></TD
><TD
WIDTH="94"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>10.0.0.2</TT
></P
></TD
><TD
WIDTH="149"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
></P
></TD
></TR
></TABLE
><P
></P
></DIV
><P
>For example:</P
><P
>Mail delivery will be attempted to <SPAN
CLASS="systemitem"
>mail.example.com</SPAN
> and <SPAN
CLASS="systemitem"
>mail2.example.com</SPAN
> (in
any order), and if neither of those succeed, delivery to <SPAN
CLASS="systemitem"
>mail.backup.org</SPAN
> will
be attempted.</P
></DIV
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="Setting_TTLs"
>6.3.3. Setting TTLs</A
></H2
><P
>The time to live of the RR field is a 32 bit integer represented
in units of seconds, and is primarily used by resolvers when they
cache RRs. The TTL describes how long a RR can be cached before it
should be discarded. The following three types of TTL are currently
used in a zone file.</P
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="72"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>SOA</P
></TD
><TD
WIDTH="420"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The last field in the SOA is the negative
caching TTL. This controls how long other servers will cache no-such-domain
(NXDOMAIN) responses from you.</P
><P
>The maximum time for
negative caching is 3 hours (3h).</P
></TD
></TR
><TR
><TD
WIDTH="72"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>$TTL</P
></TD
><TD
WIDTH="420"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>The $TTL directive at the top of the
zone file (before the SOA) gives a default TTL for every RR without
a specific TTL set.</P
></TD
></TR
><TR
><TD
WIDTH="72"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>RR TTLs</P
></TD
><TD
WIDTH="420"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>Each RR can have a TTL as the second
field in the RR, which will control how long other servers can cache
the it.</P
></TD
></TR
></TABLE
><P
></P
></DIV
><P
>All of these TTLs default to units of seconds, though units
can be explicitly specified, for example, <TT
CLASS="literal"
>1h30m</TT
>. </P
></DIV
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="AEN3823"
>6.3.4. Inverse Mapping in IPv4</A
></H2
><P
>Reverse name resolution (that is, translation from IP address
to name) is achieved by means of the <I
CLASS="emphasis"
>in-addr.arpa</I
> domain
and PTR records. Entries in the in-addr.arpa domain are made in
least-to-most significant order, read left to right. This is the
opposite order to the way IP addresses are usually written. Thus,
a machine with an IP address of 10.1.2.3 would have a corresponding
in-addr.arpa name of
3.2.1.10.in-addr.arpa. This name should have a PTR resource record
whose data field is the name of the machine or, optionally, multiple
PTR records if the machine has more than one name. For example,
in the [<SPAN
CLASS="optional"
>example.com</SPAN
>] domain:</P
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="108"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>$ORIGIN</TT
></P
></TD
><TD
WIDTH="384"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>2.1.10.in-addr.arpa</TT
></P
></TD
></TR
><TR
><TD
WIDTH="108"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>3</TT
></P
></TD
><TD
WIDTH="384"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><TT
CLASS="literal"
>IN PTR foo.example.com.</TT
></P
></TD
></TR
></TABLE
><P
></P
></DIV
><DIV
CLASS="note"
><BLOCKQUOTE
CLASS="note"
><P
><B
>Note: </B
>The <B
CLASS="command"
>$ORIGIN</B
> lines in the examples
are for providing context to the examples only-they do not necessarily
appear in the actual usage. They are only used here to indicate
that the example is relative to the listed origin.</P
></BLOCKQUOTE
></DIV
></DIV
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="AEN3850"
>6.3.5. Other Zone File Directives</A
></H2
><P
>The Master File Format was initially defined in RFC 1035 and
has subsequently been extended. While the Master File Format itself
is class independent all records in a Master File must be of the same
class.</P
><P
>Master File Directives include <B
CLASS="command"
>$ORIGIN</B
>, <B
CLASS="command"
>$INCLUDE</B
>,
and <B
CLASS="command"
>$TTL.</B
></P
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="AEN3857"
>6.3.5.1. The <B
CLASS="command"
>$ORIGIN</B
> Directive</A
></H3
><P
>Syntax: <B
CLASS="command"
>$ORIGIN
</B
><TT
CLASS="replaceable"
><I
>domain-name</I
></TT
> [<SPAN
CLASS="optional"
> <TT
CLASS="replaceable"
><I
>comment</I
></TT
></SPAN
>]</P
><P
><B
CLASS="command"
>$ORIGIN</B
> sets the domain name that will
be appended to any unqualified records. When a zone is first read
in there is an implicit <B
CLASS="command"
>$ORIGIN</B
> &#60;<TT
CLASS="varname"
>zone-name</TT
>&#62;<B
CLASS="command"
>.</B
> The
current <B
CLASS="command"
>$ORIGIN</B
> is appended to the domain specified
in the <B
CLASS="command"
>$ORIGIN</B
> argument if it is not absolute.</P
><PRE
CLASS="programlisting"
><TT
CLASS="literal"
>$ORIGIN example.com
WWW     CNAME   MAIN-SERVER</TT
></PRE
><P
>is equivalent to</P
><PRE
CLASS="programlisting"
><TT
CLASS="literal"
>WWW.EXAMPLE.COM CNAME MAIN-SERVER.EXAMPLE.COM.</TT
></PRE
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="AEN3877"
>6.3.5.2. The <B
CLASS="command"
>$INCLUDE</B
> Directive</A
></H3
><P
>Syntax: <B
CLASS="command"
>$INCLUDE</B
>
<TT
CLASS="replaceable"
><I
>filename</I
></TT
> [<SPAN
CLASS="optional"
>&#13;<TT
CLASS="replaceable"
><I
>origin</I
></TT
> </SPAN
>] [<SPAN
CLASS="optional"
> <TT
CLASS="replaceable"
><I
>comment</I
></TT
> </SPAN
>]</P
><P
>Read and process the file <TT
CLASS="filename"
>filename</TT
> as
if it were included into the file at this point.  If <B
CLASS="command"
>origin</B
> is
specified the file is processed with <B
CLASS="command"
>$ORIGIN</B
> set
to that value, otherwise the current <B
CLASS="command"
>$ORIGIN</B
> is
used.</P
><DIV
CLASS="note"
><BLOCKQUOTE
CLASS="note"
><P
><B
>Note: </B
>The behavior when <B
CLASS="command"
>origin</B
> is
specified differs from that described in RFC 1035. The origin and
current domain revert to the values they were prior to the <B
CLASS="command"
>$INCLUDE</B
> once
the file has been read.</P
></BLOCKQUOTE
></DIV
></DIV
><DIV
CLASS="sect3"
><H3
CLASS="sect3"
><A
NAME="AEN3896"
>6.3.5.3. The <B
CLASS="command"
>$TTL</B
> Directive</A
></H3
><P
>Syntax: <B
CLASS="command"
>$TTL</B
>
<TT
CLASS="replaceable"
><I
>default-ttl</I
></TT
> [<SPAN
CLASS="optional"
>&#13;<TT
CLASS="replaceable"
><I
>comment</I
></TT
> </SPAN
>]</P
><P
>Set the default Time To Live (TTL) for subsequent records
with undefined TTLs. Valid TTLs are of the range 0-2147483647 seconds.</P
><P
><B
CLASS="command"
>$TTL</B
> is defined in RFC 2308.</P
></DIV
></DIV
><DIV
CLASS="sect2"
><H2
CLASS="sect2"
><A
NAME="AEN3907"
>6.3.6. <SPAN
CLASS="acronym"
>BIND</SPAN
> Master File Extension: the  <B
CLASS="command"
>$GENERATE</B
> Directive</A
></H2
><P
>Syntax: <B
CLASS="command"
>$GENERATE</B
> <TT
CLASS="replaceable"
><I
>range</I
></TT
> <TT
CLASS="replaceable"
><I
>hs</I
></TT
> <TT
CLASS="replaceable"
><I
>type</I
></TT
> <TT
CLASS="replaceable"
><I
>rhs</I
></TT
> [<SPAN
CLASS="optional"
> <TT
CLASS="replaceable"
><I
>comment</I
></TT
> </SPAN
>]</P
><P
><B
CLASS="command"
>$GENERATE</B
> is used to create a series of
resource records that only differ from each other by an iterator. <B
CLASS="command"
>$GENERATE</B
> can
be used to easily generate the sets of records required to support
sub /24 reverse delegations described in RFC 2317: Classless IN-ADDR.ARPA
delegation.</P
><PRE
CLASS="programlisting"
><TT
CLASS="literal"
>$ORIGIN 0.0.192.IN-ADDR.ARPA.
$GENERATE 1-2 0 NS SERVER$.EXAMPLE.
$GENERATE 1-127 $ CNAME $.0</TT
></PRE
><P
>is equivalent to</P
><PRE
CLASS="programlisting"
><TT
CLASS="literal"
>0.0.0.192.IN-ADDR.ARPA NS SERVER1.EXAMPLE.
0.0.0.192.IN-ADDR.ARPA NS SERVER2.EXAMPLE.
1.0.0.192.IN-ADDR.ARPA CNAME 1.0.0.0.192.IN-ADDR.ARPA
2.0.0.192.IN-ADDR.ARPA CNAME 2.0.0.0.192.IN-ADDR.ARPA
...
127.0.0.192.IN-ADDR.ARPA CNAME 127.0.0.0.192.IN-ADDR.ARPA
.</TT
></PRE
><DIV
CLASS="informaltable"
><P
></P
><TABLE
CELLPADDING="3"
BORDER="1"
CLASS="CALSTABLE"
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>range</B
></P
></TD
><TD
WIDTH="408"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>This can be one of two forms: start-stop
or start-stop/step. If the first form is used then step is set to
        1. All of start, stop and step must be positive.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>lhs</B
></P
></TD
><TD
WIDTH="408"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>lhs</B
> describes the
owner name of the resource records to be created.      Any single <B
CLASS="command"
>$</B
> symbols
within the <B
CLASS="command"
>lhs</B
> side are replaced by the iterator
value.
To get a $ in the output you need to escape the <B
CLASS="command"
>$</B
>
using a backslash <B
CLASS="command"
>\</B
>,
e.g. <B
CLASS="command"
>\$</B
>. The <B
CLASS="command"
>$</B
> may optionally be followed
by modifiers which change the offset from the interator, field width and base.
Modifiers are introduced by a <B
CLASS="command"
>{</B
> immediately following the
<B
CLASS="command"
>$</B
> as <B
CLASS="command"
>${offset[,width[,base]]}</B
>.
e.g. <B
CLASS="command"
>${-20,3,d}</B
> which subtracts 20 from the current value,
prints the result as a decimal in a zero padded field of with 3.  Available
output forms are decimal (<B
CLASS="command"
>d</B
>), octal (<B
CLASS="command"
>o</B
>)
and hexadecimal (<B
CLASS="command"
>x</B
> or <B
CLASS="command"
>X</B
> for uppercase).
The default modifier is <B
CLASS="command"
>${0,0,d}</B
>.
If the <B
CLASS="command"
>lhs</B
> is not
absolute, the current <B
CLASS="command"
>$ORIGIN</B
> is appended to
the name.</P
>
<P
>For compatability with earlier versions <B
CLASS="command"
>$$</B
> is still
recognised a indicating a literal $ in the output.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>type</B
></P
></TD
><TD
WIDTH="408"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>At present the only supported types are
PTR, CNAME and NS.</P
></TD
></TR
><TR
><TD
WIDTH="84"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
><B
CLASS="command"
>rhs</B
></P
></TD
><TD
WIDTH="408"
ALIGN="LEFT"
VALIGN="MIDDLE"
><P
>rhs is a domain name. It is processed
similarly to lhs.</P
></TD
></TR
></TABLE
><P
></P
></DIV
><P
>The <B
CLASS="command"
>$GENERATE</B
> directive is a <SPAN
CLASS="acronym"
>BIND</SPAN
> extension
and not part of the standard zone file format.</P
></DIV
></DIV
></DIV
><DIV
CLASS="NAVFOOTER"
><HR
ALIGN="LEFT"
WIDTH="100%"><TABLE
WIDTH="100%"
BORDER="0"
CELLPADDING="0"
CELLSPACING="0"
><TR
><TD
WIDTH="33%"
ALIGN="left"
VALIGN="top"
><A
HREF="Bv9ARM.ch05.html"
>Prev</A
></TD
><TD
WIDTH="34%"
ALIGN="center"
VALIGN="top"
><A
HREF="Bv9ARM.html"
>Home</A
></TD
><TD
WIDTH="33%"
ALIGN="right"
VALIGN="top"
><A
HREF="Bv9ARM.ch07.html"
>Next</A
></TD
></TR
><TR
><TD
WIDTH="33%"
ALIGN="left"
VALIGN="top"
>The <SPAN
CLASS="acronym"
>BIND</SPAN
> 9 Lightweight Resolver</TD
><TD
WIDTH="34%"
ALIGN="center"
VALIGN="top"
>&nbsp;</TD
><TD
WIDTH="33%"
ALIGN="right"
VALIGN="top"
><SPAN
CLASS="acronym"
>BIND</SPAN
> 9 Security Considerations</TD
></TR
></TABLE
></DIV
></BODY
></HTML
>