man.named.html revision 1224c3b69b3d18f7127aa042644936af25a2d679
b53688bfed888214b485cf76439d57262d80e0a7Christian Maeder - Copyright (C) 2004-2007 Internet Systems Consortium, Inc. ("ISC")
e6d40133bc9f858308654afb1262b8b483ec5922Till Mossakowski - Copyright (C) 2000-2003 Internet Software Consortium.
98890889ffb2e8f6f722b00e265a211f13b5a861Corneliu-Claudiu Prodescu - Permission to use, copy, modify, and distribute this software for any
b53688bfed888214b485cf76439d57262d80e0a7Christian Maeder - purpose with or without fee is hereby granted, provided that the above
34bff097c14521b5e57ce37279a34256e1f78aa5Klaus Luettich - copyright notice and this permission notice appear in all copies.
b53688bfed888214b485cf76439d57262d80e0a7Christian Maeder - THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
b53688bfed888214b485cf76439d57262d80e0a7Christian Maeder - REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
4c8d3c5a9e938633f6147b5a595b9b93bfca99e6Christian Maeder - AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
4c8d3c5a9e938633f6147b5a595b9b93bfca99e6Christian Maeder - INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
b53688bfed888214b485cf76439d57262d80e0a7Christian Maeder - LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
b53688bfed888214b485cf76439d57262d80e0a7Christian Maeder - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
b53688bfed888214b485cf76439d57262d80e0a7Christian Maeder - PERFORMANCE OF THIS SOFTWARE.
b53688bfed888214b485cf76439d57262d80e0a7Christian Maeder<!-- $Id: man.named.html,v 1.54 2007/06/20 02:27:33 marka Exp $ -->
bbcb456803d40f9b48dd43b1c84bdf8932d2672bChristian Maeder<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
4c8d3c5a9e938633f6147b5a595b9b93bfca99e6Christian Maeder<meta name="generator" content="DocBook XSL Stylesheets V1.71.1">
b0b5ce95f738d35e520c20d1b0bd253f152a677fChristian Maeder<link rel="start" href="Bv9ARM.html" title="BIND 9 Administrator Reference Manual">
ef9e8535c168d3f774d9e74368a2317a9eda5826Christian Maeder<link rel="up" href="Bv9ARM.ch10.html" title="Manual pages">
be43c3fa0292555bd126784ae27ff5c1d23438cbChristian Maeder<link rel="prev" href="man.named-checkzone.html" title="named-checkzone">
ffd2214759f0055aa5dfa95583a6060516ad766fChristian Maeder<link rel="next" href="man.rndc.html" title="rndc">
ffd2214759f0055aa5dfa95583a6060516ad766fChristian Maeder<body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF">
b53688bfed888214b485cf76439d57262d80e0a7Christian Maeder<table width="100%" summary="Navigation header">
91a356d176c7e9b4eef6e8734559bfb858d5e630Christian Maeder<tr><th colspan="3" align="center"><span class="application">named</span></th></tr>
897a04683fb30873e84dc3360dea770a4435971cChristian Maeder<a accesskey="p" href="man.named-checkzone.html">Prev</a>�</td>
be43c3fa0292555bd126784ae27ff5c1d23438cbChristian Maeder<th width="60%" align="center">Manual pages</th>
be43c3fa0292555bd126784ae27ff5c1d23438cbChristian Maeder<td width="20%" align="right">�<a accesskey="n" href="man.rndc.html">Next</a>
b53688bfed888214b485cf76439d57262d80e0a7Christian Maeder<a name="man.named"></a><div class="titlepage"></div>
3753288339ad80053053d92409bd37b335a96197Christian Maeder<p><span class="application">named</span> — Internet domain name server</p>
897a04683fb30873e84dc3360dea770a4435971cChristian Maeder<div class="cmdsynopsis"><p><code class="command">named</code> [<code class="option">-4</code>] [<code class="option">-6</code>] [<code class="option">-c <em class="replaceable"><code>config-file</code></em></code>] [<code class="option">-d <em class="replaceable"><code>debug-level</code></em></code>] [<code class="option">-f</code>] [<code class="option">-g</code>] [<code class="option">-m <em class="replaceable"><code>flag</code></em></code>] [<code class="option">-n <em class="replaceable"><code>#cpus</code></em></code>] [<code class="option">-p <em class="replaceable"><code>port</code></em></code>] [<code class="option">-s</code>] [<code class="option">-t <em class="replaceable"><code>directory</code></em></code>] [<code class="option">-u <em class="replaceable"><code>user</code></em></code>] [<code class="option">-v</code>] [<code class="option">-x <em class="replaceable"><code>cache-file</code></em></code>]</p></div>
897a04683fb30873e84dc3360dea770a4435971cChristian Maeder<a name="id2602177"></a><h2>DESCRIPTION</h2>
3753288339ad80053053d92409bd37b335a96197Christian Maeder<p><span><strong class="command">named</strong></span>
897a04683fb30873e84dc3360dea770a4435971cChristian Maeder is a Domain Name System (DNS) server,
897a04683fb30873e84dc3360dea770a4435971cChristian Maeder part of the BIND 9 distribution from ISC. For more
897a04683fb30873e84dc3360dea770a4435971cChristian Maeder information on the DNS, see RFCs 1033, 1034, and 1035.
897a04683fb30873e84dc3360dea770a4435971cChristian Maeder When invoked without arguments, <span><strong class="command">named</strong></span>
897a04683fb30873e84dc3360dea770a4435971cChristian Maeder read the default configuration file
897a04683fb30873e84dc3360dea770a4435971cChristian Maeder <code class="filename">/etc/named.conf</code>, read any initial
897a04683fb30873e84dc3360dea770a4435971cChristian Maeder data, and listen for queries.
4a8de8e9b8ebf0aca7a401253c4d56334bdbdd48Christian Maeder Use IPv4 only even if the host machine is capable of IPv6.
4a8de8e9b8ebf0aca7a401253c4d56334bdbdd48Christian Maeder <code class="option">-4</code> and <code class="option">-6</code> are mutually
0ce46d5315b16108b74d20b86aeff37c48f48828Christian Maeder Use IPv6 only even if the host machine is capable of IPv4.
897a04683fb30873e84dc3360dea770a4435971cChristian Maeder <code class="option">-4</code> and <code class="option">-6</code> are mutually
06b97c160c9160682f18591409cadc9e97873020Christian Maeder<dt><span class="term">-c <em class="replaceable"><code>config-file</code></em></span></dt>
254df6f22d01eacf7c57b85729e0445747b630d9Christian Maeder Use <em class="replaceable"><code>config-file</code></em> as the
254df6f22d01eacf7c57b85729e0445747b630d9Christian Maeder configuration file instead of the default,
8869b0b47d4ebc275098d1777301b652648b3c45Christian Maeder <code class="filename">/etc/named.conf</code>. To
254df6f22d01eacf7c57b85729e0445747b630d9Christian Maeder ensure that reloading the configuration file continues
38c817b94e0a5b1ae94178b1075c187e07bcc5e1Christian Maeder to work after the server has changed its working
254df6f22d01eacf7c57b85729e0445747b630d9Christian Maeder directory due to to a possible
254df6f22d01eacf7c57b85729e0445747b630d9Christian Maeder <code class="option">directory</code> option in the configuration
b53688bfed888214b485cf76439d57262d80e0a7Christian Maeder file, <em class="replaceable"><code>config-file</code></em> should be
94c729aeac99df6d844da014f46d584c035a91a6Christian Maeder an absolute pathname.
254df6f22d01eacf7c57b85729e0445747b630d9Christian Maeder<dt><span class="term">-d <em class="replaceable"><code>debug-level</code></em></span></dt>
38c817b94e0a5b1ae94178b1075c187e07bcc5e1Christian Maeder Set the daemon's debug level to <em class="replaceable"><code>debug-level</code></em>.
8869b0b47d4ebc275098d1777301b652648b3c45Christian Maeder Debugging traces from <span><strong class="command">named</strong></span> become
94c729aeac99df6d844da014f46d584c035a91a6Christian Maeder more verbose as the debug level increases.
254df6f22d01eacf7c57b85729e0445747b630d9Christian Maeder Run the server in the foreground (i.e. do not daemonize).
b53688bfed888214b485cf76439d57262d80e0a7Christian Maeder Run the server in the foreground and force all logging
2a9702a373738717c83824512bd9389b5870fc92Christian Maeder<dt><span class="term">-m <em class="replaceable"><code>flag</code></em></span></dt>
254df6f22d01eacf7c57b85729e0445747b630d9Christian Maeder Turn on memory usage debugging flags. Possible flags are
7968d3a131e5a684ec1ff0c6d88aae638549153dChristian Maeder <em class="replaceable"><code>usage</code></em>,
a081d56252673c9e4a017e6282f59766f0cbcd42Christian Maeder <em class="replaceable"><code>trace</code></em>,
a081d56252673c9e4a017e6282f59766f0cbcd42Christian Maeder <em class="replaceable"><code>record</code></em>,
2a9702a373738717c83824512bd9389b5870fc92Christian Maeder <em class="replaceable"><code>size</code></em>, and
2a9702a373738717c83824512bd9389b5870fc92Christian Maeder <em class="replaceable"><code>mctx</code></em>.
2a9702a373738717c83824512bd9389b5870fc92Christian Maeder These correspond to the ISC_MEM_DEBUGXXXX flags described in
91a356d176c7e9b4eef6e8734559bfb858d5e630Christian Maeder <code class="filename"><isc/mem.h></code>.
2a9702a373738717c83824512bd9389b5870fc92Christian Maeder<dt><span class="term">-n <em class="replaceable"><code>#cpus</code></em></span></dt>
7968d3a131e5a684ec1ff0c6d88aae638549153dChristian Maeder Create <em class="replaceable"><code>#cpus</code></em> worker threads
7968d3a131e5a684ec1ff0c6d88aae638549153dChristian Maeder to take advantage of multiple CPUs. If not specified,
f39c70229e74147a02d15bd45c05a0b1b325532dChristian Maeder <span><strong class="command">named</strong></span> will try to determine the
11c3a215d5cf043181e83929f1ce214df65cb587Christian Maeder number of CPUs present and create one thread per CPU.
db6729e623b4053149084ccf4b35e5308ac7e359Christian Maeder If it is unable to determine the number of CPUs, a
bcd35fcdda4233c42766519772b2e9fbab57f975Christian Maeder single worker thread will be created.
f997c50e79d277ae8d7d3bc536a276d67b75f953Simon Ulbricht<dt><span class="term">-p <em class="replaceable"><code>port</code></em></span></dt>
f997c50e79d277ae8d7d3bc536a276d67b75f953Simon Ulbricht Listen for queries on port <em class="replaceable"><code>port</code></em>. If not
f39c70229e74147a02d15bd45c05a0b1b325532dChristian Maeder specified, the default is port 53.
f997c50e79d277ae8d7d3bc536a276d67b75f953Simon Ulbricht Write memory usage statistics to <code class="filename">stdout</code> on exit.
333780eae2be9f20fe46dedbf5eb46ffa0cbfd02Christian Maeder<div class="note" style="margin-left: 0.5in; margin-right: 0.5in;">
cb2044812811d66efe038d914966e04290be93faChristian Maeder This option is mainly of interest to BIND 9 developers
333780eae2be9f20fe46dedbf5eb46ffa0cbfd02Christian Maeder and may be removed or changed in a future release.
94c729aeac99df6d844da014f46d584c035a91a6Christian Maeder<dt><span class="term">-t <em class="replaceable"><code>directory</code></em></span></dt>
ffd2214759f0055aa5dfa95583a6060516ad766fChristian Maeder to <em class="replaceable"><code>directory</code></em> after
0130083f314580170af1195037be3325f125fbceChristian Maeder processing the command line arguments, but before
0130083f314580170af1195037be3325f125fbceChristian Maeder reading the configuration file.
0130083f314580170af1195037be3325f125fbceChristian Maeder<div class="warning" style="margin-left: 0.5in; margin-right: 0.5in;">
0130083f314580170af1195037be3325f125fbceChristian Maeder This option should be used in conjunction with the
0130083f314580170af1195037be3325f125fbceChristian Maeder <code class="option">-u</code> option, as chrooting a process
0130083f314580170af1195037be3325f125fbceChristian Maeder running as root doesn't enhance security on most
0130083f314580170af1195037be3325f125fbceChristian Maeder systems; the way <code class="function">chroot(2)</code> is
0130083f314580170af1195037be3325f125fbceChristian Maeder defined allows a process with root privileges to
0130083f314580170af1195037be3325f125fbceChristian Maeder escape a chroot jail.
0130083f314580170af1195037be3325f125fbceChristian Maeder<dt><span class="term">-u <em class="replaceable"><code>user</code></em></span></dt>
0130083f314580170af1195037be3325f125fbceChristian Maeder to <em class="replaceable"><code>user</code></em> after completing
0130083f314580170af1195037be3325f125fbceChristian Maeder privileged operations, such as creating sockets that
0130083f314580170af1195037be3325f125fbceChristian Maeder listen on privileged ports.
0130083f314580170af1195037be3325f125fbceChristian Maeder<div class="note" style="margin-left: 0.5in; margin-right: 0.5in;">
0130083f314580170af1195037be3325f125fbceChristian Maeder On Linux, <span><strong class="command">named</strong></span> uses the kernel's
0130083f314580170af1195037be3325f125fbceChristian Maeder capability mechanism to drop all root privileges
0130083f314580170af1195037be3325f125fbceChristian Maeder except the ability to <code class="function">bind(2)</code> to
0130083f314580170af1195037be3325f125fbceChristian Maeder privileged port and set process resource limits.