doc/arm/man.ddns-confgen.html

	man.ddns-confgen.html revision 1ca759b3f5c0672b2a66bc02288fe010cabbfe37
48c0c81cd6fabac9d3386406d97633780365b839coar<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
f881b8be216de36c6b964324c772450bca38a4e6trawick<!--
2a6c49cfaef5979a5a06098f3ce987cd76769409manoj - Copyright (C) 2000-2015 Internet Systems Consortium, Inc. ("ISC")
2a6c49cfaef5979a5a06098f3ce987cd76769409manoj -
2a6c49cfaef5979a5a06098f3ce987cd76769409manoj - This Source Code Form is subject to the terms of the Mozilla Public
a8dda281113c5038945423320d8c9b42e3d1ddb1jwoolley - License, v. 2.0. If a copy of the MPL was not distributed with this
bf3d1782a29630335a1df535eb395355ab1cd154jwoolley - file, You can obtain one at http://mozilla.org/MPL/2.0/.
bf3d1782a29630335a1df535eb395355ab1cd154jwoolley-->
07847078a10fe4e9229cc08adda5f421cafc0665jwoolley<html lang="en">
0bd0176ce9f4321eeb506aa372d0bcc84befbf4cstriker<head>
d8028365066fca602bf35d014530a1802114378crbb<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
c25203fdca093d4504c51b4cd974ff60d5aa4fb1wrowe<title>ddns-confgen</title>
c25203fdca093d4504c51b4cd974ff60d5aa4fb1wrowe<meta name="generator" content="DocBook XSL Stylesheets V1.78.1">
c25203fdca093d4504c51b4cd974ff60d5aa4fb1wrowe<link rel="home" href="Bv9ARM.html" title="BIND 9 Administrator Reference Manual">
d89c116f82699294ca744125723651c554bc5925wrowe<link rel="up" href="Bv9ARM.ch13.html" title="Manual pages">
4214e98fc9045e5010e66f9a967bd6d68f40d342aaron<link rel="prev" href="man.rndc-confgen.html" title="rndc-confgen">
8721697e2aece27b0e738519329f7976c72b27bfjerenkrantz<link rel="next" href="man.arpaname.html" title="arpaname">
c25203fdca093d4504c51b4cd974ff60d5aa4fb1wrowe</head>
91cacb801f6c0215b38322f6d2fc58cbfedfecfbjerenkrantz<body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF">
91cacb801f6c0215b38322f6d2fc58cbfedfecfbjerenkrantz<div class="navheader">
df14f0d3a5191cdd7c4bb5b03acd135d43a6f51brbb<table width="100%" summary="Navigation header">
df14f0d3a5191cdd7c4bb5b03acd135d43a6f51brbb<tr><th colspan="3" align="center"><span class="application">ddns-confgen</span></th></tr>
ab71b233b3a36489e44a7b061c48293be0b17788jwoolley<tr>
571760de5e60c0b459cb11be45507b923cd023eejwoolley<td width="20%" align="left">
571760de5e60c0b459cb11be45507b923cd023eejwoolley<a accesskey="p" href="man.rndc-confgen.html">Prev</a>�</td>
9180a5933673ffb1af633c255ceee029340f3b1erbb<th width="60%" align="center">Manual pages</th>
bcb6e1be6041dfeb549c8ea8d37f97ad4e90a0c3rbb<td width="20%" align="right">�<a accesskey="n" href="man.arpaname.html">Next</a>
9bd71e35f5d26d26d23fe3a677401828e842ed72wrowe</td>
2900ab946a2d76b73a14cebfe2985d253f01c967stoddard</tr>
a548c09e6a8ca1b059d0e93b5256c6ccb2b3c3cdrbb</table>
a548c09e6a8ca1b059d0e93b5256c6ccb2b3c3cdrbb<hr>
a548c09e6a8ca1b059d0e93b5256c6ccb2b3c3cdrbb</div>
b876b7bcf0ce3d232da723246d709e8dbbfe8762rbb<div class="refentry">
cf6bf6c34c936e6a6fe731dbce4a5c3c8bf8e9a3gstein<a name="man.ddns-confgen"></a><div class="titlepage"></div>
35330e0d79ceb8027223bbb8330a381b1f989d6etrawick<div class="refnamediv">
6f6f4a4bca281779d196acbdd5c017bb90858305trawick<h2>Name</h2>
8dd4618c4709236b4ea297d7250d282e463ce2d8rbb<p><span class="application">ddns-confgen</span> &#8212; ddns key generation tool</p>
09bd86d0db1114ee23eda0a6eb76ca055877a1cftrawick</div>
2deb319e6b3de239f45c16a3e9e836d44f1f7108rbb<div class="refsynopsisdiv">
bd929c73ef04789b7183b840d8db6e01d03a4d86rbb<h2>Synopsis</h2>
70f6f32765cfaadd6da8de6f0fea97ddd72d8fadmanoj<div class="cmdsynopsis"><p><code class="command">tsig-keygen</code>  [<code class="option">-a <em class="replaceable"><code>algorithm</code></em></code>] [<code class="option">-h</code>] [<code class="option">-r <em class="replaceable"><code>randomfile</code></em></code>] [name]</p></div>
2a6c49cfaef5979a5a06098f3ce987cd76769409manoj<div class="cmdsynopsis"><p><code class="command">ddns-confgen</code>  [<code class="option">-a <em class="replaceable"><code>algorithm</code></em></code>] [<code class="option">-h</code>] [<code class="option">-k <em class="replaceable"><code>keyname</code></em></code>] [<code class="option">-q</code>] [<code class="option">-r <em class="replaceable"><code>randomfile</code></em></code>] [ -s <em class="replaceable"><code>name</code></em>  |   -z <em class="replaceable"><code>zone</code></em> ]</p></div>
af4c982a7cf4515f124935f99a329744035fc699slive</div>
af4c982a7cf4515f124935f99a329744035fc699slive<div class="refsection">
af4c982a7cf4515f124935f99a329744035fc699slive<a name="id-1.14.30.7"></a><h2>DESCRIPTION</h2>
af4c982a7cf4515f124935f99a329744035fc699slive<p>
af4c982a7cf4515f124935f99a329744035fc699slive      <span class="command"><strong>tsig-keygen</strong></span> and <span class="command"><strong>ddns-confgen</strong></span>
af4c982a7cf4515f124935f99a329744035fc699slive      are invocation methods for a utility that generates keys for use
af4c982a7cf4515f124935f99a329744035fc699slive      in TSIG signing.  The resulting keys can be used, for example,
10270f6f94b2069d0d357805c140a9897449b9ccianh      to secure dynamic DNS updates to a zone or for the
4b62424416882687387923b3130b96241503cbe0jerenkrantz      <span class="command"><strong>rndc</strong></span> command channel.
5ca8e11fadb6f7a8d9d0367c1800205c99d4bcd6jerenkrantz    </p>
5ca8e11fadb6f7a8d9d0367c1800205c99d4bcd6jerenkrantz<p>
45b0e1c775c1cfed6473c9e5304179ccb9609f53stoddard      When run as <span class="command"><strong>tsig-keygen</strong></span>, a domain name
dbec4658981e4f9127e8676457c28d42932be7cdtrawick      can be specified on the command line which will be used as
92cff243c49d98aa820404b5d260f5dda425e579trawick      the name of the generated key.  If no name is specified,
92cff243c49d98aa820404b5d260f5dda425e579trawick      the default is <code class="constant">tsig-key</code>.
92cff243c49d98aa820404b5d260f5dda425e579trawick    </p>
1b7e9aeb9867a1c94e24e8ae491d2dfcd0d225e3jerenkrantz<p>
f881b8be216de36c6b964324c772450bca38a4e6trawick      When run as <span class="command"><strong>ddns-confgen</strong></span>, the generated
f881b8be216de36c6b964324c772450bca38a4e6trawick      key is accompanied by configuration text and instructions
f881b8be216de36c6b964324c772450bca38a4e6trawick      that can be used with <span class="command"><strong>nsupdate</strong></span> and
f881b8be216de36c6b964324c772450bca38a4e6trawick      <span class="command"><strong>named</strong></span> when setting up dynamic DNS,
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz      including an example <span class="command"><strong>update-policy</strong></span>
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz      statement.  (This usage similar to the
f17588e04d2412bf1345783ed1d173322d728d6ftrawick      <span class="command"><strong>rndc-confgen</strong></span> command for setting
f17588e04d2412bf1345783ed1d173322d728d6ftrawick      up command channel security.)
f17588e04d2412bf1345783ed1d173322d728d6ftrawick    </p>
f17588e04d2412bf1345783ed1d173322d728d6ftrawick<p>
f17588e04d2412bf1345783ed1d173322d728d6ftrawick      Note that <span class="command"><strong>named</strong></span> itself can configure a
f17588e04d2412bf1345783ed1d173322d728d6ftrawick      local DDNS key for use with <span class="command"><strong>nsupdate -l</strong></span>:
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe      it does this when a zone is configured with
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz      <span class="command"><strong>update-policy local;</strong></span>.
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz      <span class="command"><strong>ddns-confgen</strong></span> is only needed when a
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz      more elaborate configuration is required: for instance,
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe      if <span class="command"><strong>nsupdate</strong></span> is to be used from a remote
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz      system.
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz    </p>
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz</div>
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz<div class="refsection">
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz<a name="id-1.14.30.8"></a><h2>OPTIONS</h2>
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz<div class="variablelist"><dl class="variablelist">
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz<dt><span class="term">-a <em class="replaceable"><code>algorithm</code></em></span></dt>
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz<dd><p>
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz            Specifies the algorithm to use for the TSIG key.  Available
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz            choices are: hmac-md5, hmac-sha1, hmac-sha224, hmac-sha256,
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz            hmac-sha384 and hmac-sha512.  The default is hmac-sha256.
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz            Options are case-insensitive, and the "hmac-" prefix
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe            may be omitted.
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz      </p></dd>
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz<dt><span class="term">-h</span></dt>
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz<dd><p>
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz        Prints a short summary of options and arguments.
ddd44b06b04507cae083c52451e28f54f0bdb5afstoddard      </p></dd>
1af5c0e25a649bb298e25ddfa5418fa18bdcb107aaron<dt><span class="term">-k <em class="replaceable"><code>keyname</code></em></span></dt>
82455c2e3b6991846fbcbf0c9e41f57dbc681217brianp<dd><p>
82455c2e3b6991846fbcbf0c9e41f57dbc681217brianp        Specifies the key name of the DDNS authentication key.
f4cb04eb78da02a38fcdd87489dc7b660107d55fjerenkrantz        The default is <code class="constant">ddns-key</code> when neither
1b3f48fd6b1ccb8745f908e40156c5a85ca3c347jerenkrantz        the <code class="option">-s</code> nor <code class="option">-z</code> option is
b05930e6008f69bd323abe0c10f81f40ffd27983brianp        specified; otherwise, the default
6362fd5c48f6b2193f5d356a9747172101b24e91jerenkrantz        is <code class="constant">ddns-key</code> as a separate label
6362fd5c48f6b2193f5d356a9747172101b24e91jerenkrantz        followed by the argument of the option, e.g.,
6362fd5c48f6b2193f5d356a9747172101b24e91jerenkrantz        <code class="constant">ddns-key.example.com.</code>
6362fd5c48f6b2193f5d356a9747172101b24e91jerenkrantz        The key name must have the format of a valid domain name,
6362fd5c48f6b2193f5d356a9747172101b24e91jerenkrantz        consisting of letters, digits, hyphens and periods.
b6bff62e5e6ae86726ec0b6445227f4852da8728aaron      </p></dd>
6362fd5c48f6b2193f5d356a9747172101b24e91jerenkrantz<dt><span class="term">-q</span></dt>
630f5fc1277582643fe0f831a4830e15127bd047jwoolley<dd><p>
630f5fc1277582643fe0f831a4830e15127bd047jwoolley        (<span class="command"><strong>ddns-confgen</strong></span> only.) Quiet mode:  Print
630f5fc1277582643fe0f831a4830e15127bd047jwoolley            only the key, with no explanatory text or usage examples;
630f5fc1277582643fe0f831a4830e15127bd047jwoolley            This is essentially identical to <span class="command"><strong>tsig-keygen</strong></span>.
56b2562cb4041a21bc313fde3204beabdb758800jwoolley      </p></dd>
56b2562cb4041a21bc313fde3204beabdb758800jwoolley<dt><span class="term">-r <em class="replaceable"><code>randomfile</code></em></span></dt>
56b2562cb4041a21bc313fde3204beabdb758800jwoolley<dd><p>
56b2562cb4041a21bc313fde3204beabdb758800jwoolley            Specifies a source of random data for generating the
56b2562cb4041a21bc313fde3204beabdb758800jwoolley            authorization.  If the operating system does not provide a
56b2562cb4041a21bc313fde3204beabdb758800jwoolley            <code class="filename">/dev/random</code> or equivalent device, the
56b2562cb4041a21bc313fde3204beabdb758800jwoolley            default source of randomness is keyboard input.
f881b8be216de36c6b964324c772450bca38a4e6trawick            <code class="filename">randomdev</code> specifies the name of a
f881b8be216de36c6b964324c772450bca38a4e6trawick            character device or file containing random data to be used
f881b8be216de36c6b964324c772450bca38a4e6trawick            instead of the default.  The special value
f881b8be216de36c6b964324c772450bca38a4e6trawick            <code class="filename">keyboard</code> indicates that keyboard input
f881b8be216de36c6b964324c772450bca38a4e6trawick            should be used.
f881b8be216de36c6b964324c772450bca38a4e6trawick      </p></dd>
56b2562cb4041a21bc313fde3204beabdb758800jwoolley<dt><span class="term">-s <em class="replaceable"><code>name</code></em></span></dt>
b05930e6008f69bd323abe0c10f81f40ffd27983brianp<dd><p>
b05930e6008f69bd323abe0c10f81f40ffd27983brianp            (<span class="command"><strong>ddns-confgen</strong></span> only.)
b05930e6008f69bd323abe0c10f81f40ffd27983brianp        Generate configuration example to allow dynamic updates
b05930e6008f69bd323abe0c10f81f40ffd27983brianp            of a single hostname.  The example <span class="command"><strong>named.conf</strong></span>
b05930e6008f69bd323abe0c10f81f40ffd27983brianp            text shows how to set an update policy for the specified
15304e476fb32988bf988864ddacc5375b9a6080stoddard            <em class="replaceable"><code>name</code></em>
15304e476fb32988bf988864ddacc5375b9a6080stoddard        using the "name" nametype.  The default key name is
8c8fbb8546af54582539898be704411a60058d85trawick        ddns-key.<em class="replaceable"><code>name</code></em>.
4c7dab038d90d7feb67ef8ddbfacc77be8c9dbf0jwoolley        Note that the "self" nametype cannot be used, since
4c7dab038d90d7feb67ef8ddbfacc77be8c9dbf0jwoolley        the name to be updated may differ from the key name.
4c7dab038d90d7feb67ef8ddbfacc77be8c9dbf0jwoolley        This option cannot be used with the <code class="option">-z</code> option.
4c7dab038d90d7feb67ef8ddbfacc77be8c9dbf0jwoolley      </p></dd>
bb2a72a6e2327ae4f177c9d26e9d433033cfc27eaaron<dt><span class="term">-z <em class="replaceable"><code>zone</code></em></span></dt>
8c8fbb8546af54582539898be704411a60058d85trawick<dd><p>
8c8fbb8546af54582539898be704411a60058d85trawick            (<span class="command"><strong>ddns-confgen</strong></span> only.)
8c8fbb8546af54582539898be704411a60058d85trawick        Generate configuration example to allow dynamic updates
f9b8e29cfca92cf0a996e8ab17fa1a1f447cecc7stoddard            of a zone:  The example <span class="command"><strong>named.conf</strong></span> text
f9b8e29cfca92cf0a996e8ab17fa1a1f447cecc7stoddard            shows how to set an update policy for the specified
f9b8e29cfca92cf0a996e8ab17fa1a1f447cecc7stoddard        <em class="replaceable"><code>zone</code></em>
a23b1c5a74208b03884c09a6f9dd5d6c97fa6415trawick        using the "zonesub" nametype, allowing updates to
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe            all subdomain names within that
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe            <em class="replaceable"><code>zone</code></em>.
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe        This option cannot be used with the <code class="option">-s</code> option.
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe      </p></dd>
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe</dl></div>
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe</div>
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe<div class="refsection">
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe<a name="id-1.14.30.9"></a><h2>SEE ALSO</h2>
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe<p><span class="citerefentry"><span class="refentrytitle">nsupdate</span>(1)</span>,
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe      <span class="citerefentry"><span class="refentrytitle">named.conf</span>(5)</span>,
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe      <span class="citerefentry"><span class="refentrytitle">named</span>(8)</span>,
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe      <em class="citetitle">BIND 9 Administrator Reference Manual</em>.
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe    </p>
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe</div>
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe</div>
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe<div class="navfooter">
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe<hr>
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe<table width="100%" summary="Navigation footer">
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe<tr>
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe<td width="40%" align="left">
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe<a accesskey="p" href="man.rndc-confgen.html">Prev</a>�</td>
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe<td width="20%" align="center"><a accesskey="u" href="Bv9ARM.ch13.html">Up</a></td>
2fb49a1d25f38421a68d31b4cbb5d9293fdeafbewrowe<td width="40%" align="right">�<a accesskey="n" href="man.arpaname.html">Next</a>
638a9edaf48cf003cd40ac25ee8c25f572107414stoddard</td>
638a9edaf48cf003cd40ac25ee8c25f572107414stoddard</tr>
638a9edaf48cf003cd40ac25ee8c25f572107414stoddard<tr>
db2d668e6233d8949b35ee7f9f42f444758f9ce9rbb<td width="40%" align="left" valign="top">
db2d668e6233d8949b35ee7f9f42f444758f9ce9rbb<span class="application">rndc-confgen</span>�</td>
db2d668e6233d8949b35ee7f9f42f444758f9ce9rbb<td width="20%" align="center"><a accesskey="h" href="Bv9ARM.html">Home</a></td>
db2d668e6233d8949b35ee7f9f42f444758f9ce9rbb<td width="40%" align="right" valign="top">�<span class="application">arpaname</span>
db2d668e6233d8949b35ee7f9f42f444758f9ce9rbb</td>
db2d668e6233d8949b35ee7f9f42f444758f9ce9rbb</tr>
db2d668e6233d8949b35ee7f9f42f444758f9ce9rbb</table>
1ea5221b240a8b41a07c6fb04aab5a73adcddabfaaron</div>
1ea5221b240a8b41a07c6fb04aab5a73adcddabfaaron<p xmlns:db="http://docbook.org/ns/docbook" style="text-align: center;">BIND 9.11.0</p>
1ea5221b240a8b41a07c6fb04aab5a73adcddabfaaron</body>
1ea5221b240a8b41a07c6fb04aab5a73adcddabfaaron</html>
a12f07383f9c286519fe88f559187148d5bd1c16aaron