man.named.html revision 22c71c7b86fa57a19f7df0da4222eb8593e6ad12
f1c89cb4f5c72c54bb67dc48cd6f2b332eab9e92Automatic Updater - Copyright (C) 2004-2006 Internet Systems Consortium, Inc. ("ISC")
f1c89cb4f5c72c54bb67dc48cd6f2b332eab9e92Automatic Updater - Copyright (C) 2000-2003 Internet Software Consortium.
f1c89cb4f5c72c54bb67dc48cd6f2b332eab9e92Automatic Updater - Permission to use, copy, modify, and distribute this software for any
f1c89cb4f5c72c54bb67dc48cd6f2b332eab9e92Automatic Updater - purpose with or without fee is hereby granted, provided that the above
f1c89cb4f5c72c54bb67dc48cd6f2b332eab9e92Automatic Updater - copyright notice and this permission notice appear in all copies.
f1c89cb4f5c72c54bb67dc48cd6f2b332eab9e92Automatic Updater - THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
f1c89cb4f5c72c54bb67dc48cd6f2b332eab9e92Automatic Updater - REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
f1c89cb4f5c72c54bb67dc48cd6f2b332eab9e92Automatic Updater - AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
f1c89cb4f5c72c54bb67dc48cd6f2b332eab9e92Automatic Updater - INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
f1c89cb4f5c72c54bb67dc48cd6f2b332eab9e92Automatic Updater - LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
f1c89cb4f5c72c54bb67dc48cd6f2b332eab9e92Automatic Updater - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
f1c89cb4f5c72c54bb67dc48cd6f2b332eab9e92Automatic Updater - PERFORMANCE OF THIS SOFTWARE.
f1c89cb4f5c72c54bb67dc48cd6f2b332eab9e92Automatic Updater<!-- $Id: man.named.html,v 1.35 2006/09/13 02:57:21 marka Exp $ -->
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<meta name="generator" content="DocBook XSL Stylesheets V1.70.1">
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<link rel="start" href="Bv9ARM.html" title="BIND 9 Administrator Reference Manual">
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<link rel="up" href="Bv9ARM.ch10.html" title="Manual pages">
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<link rel="prev" href="man.named-checkzone.html" title="named-checkzone">
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<link rel="next" href="man.rndc.html" title="rndc">
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF">
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<tr><th colspan="3" align="center"><span class="application">named</span></th></tr>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<a accesskey="p" href="man.named-checkzone.html">Prev</a>�</td>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<td width="20%" align="right">�<a accesskey="n" href="man.rndc.html">Next</a>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<a name="man.named"></a><div class="titlepage"></div>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<p><span class="application">named</span> — Internet domain name server</p>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<div class="cmdsynopsis"><p><code class="command">named</code> [<code class="option">-4</code>] [<code class="option">-6</code>] [<code class="option">-c <em class="replaceable"><code>config-file</code></em></code>] [<code class="option">-d <em class="replaceable"><code>debug-level</code></em></code>] [<code class="option">-f</code>] [<code class="option">-g</code>] [<code class="option">-n <em class="replaceable"><code>#cpus</code></em></code>] [<code class="option">-p <em class="replaceable"><code>port</code></em></code>] [<code class="option">-s</code>] [<code class="option">-t <em class="replaceable"><code>directory</code></em></code>] [<code class="option">-u <em class="replaceable"><code>user</code></em></code>] [<code class="option">-v</code>] [<code class="option">-x <em class="replaceable"><code>cache-file</code></em></code>]</p></div>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<p><span><strong class="command">named</strong></span>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt is a Domain Name System (DNS) server,
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt part of the BIND 9 distribution from ISC. For more
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt information on the DNS, see RFCs 1033, 1034, and 1035.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt When invoked without arguments, <span><strong class="command">named</strong></span>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt read the default configuration file
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt <code class="filename">/etc/named.conf</code>, read any initial
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt data, and listen for queries.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt Use IPv4 only even if the host machine is capable of IPv6.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt <code class="option">-4</code> and <code class="option">-6</code> are mutually
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt Use IPv6 only even if the host machine is capable of IPv4.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt <code class="option">-4</code> and <code class="option">-6</code> are mutually
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<dt><span class="term">-c <em class="replaceable"><code>config-file</code></em></span></dt>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt Use <em class="replaceable"><code>config-file</code></em> as the
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt configuration file instead of the default,
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt ensure that reloading the configuration file continues
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt to work after the server has changed its working
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt directory due to to a possible
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt <code class="option">directory</code> option in the configuration
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt file, <em class="replaceable"><code>config-file</code></em> should be
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt an absolute pathname.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<dt><span class="term">-d <em class="replaceable"><code>debug-level</code></em></span></dt>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt Set the daemon's debug level to <em class="replaceable"><code>debug-level</code></em>.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt Debugging traces from <span><strong class="command">named</strong></span> become
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt more verbose as the debug level increases.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt Run the server in the foreground (i.e. do not daemonize).
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt Run the server in the foreground and force all logging
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<dt><span class="term">-n <em class="replaceable"><code>#cpus</code></em></span></dt>
79ce3a9e82384cc31fd6b86be8f3d1474fcfd9f4Evan Hunt Create <em class="replaceable"><code>#cpus</code></em> worker threads
79ce3a9e82384cc31fd6b86be8f3d1474fcfd9f4Evan Hunt to take advantage of multiple CPUs. If not specified,
79ce3a9e82384cc31fd6b86be8f3d1474fcfd9f4Evan Hunt <span><strong class="command">named</strong></span> will try to determine the
79ce3a9e82384cc31fd6b86be8f3d1474fcfd9f4Evan Hunt number of CPUs present and create one thread per CPU.
79ce3a9e82384cc31fd6b86be8f3d1474fcfd9f4Evan Hunt If it is unable to determine the number of CPUs, a
79ce3a9e82384cc31fd6b86be8f3d1474fcfd9f4Evan Hunt single worker thread will be created.
79ce3a9e82384cc31fd6b86be8f3d1474fcfd9f4Evan Hunt<dt><span class="term">-p <em class="replaceable"><code>port</code></em></span></dt>
79ce3a9e82384cc31fd6b86be8f3d1474fcfd9f4Evan Hunt Listen for queries on port <em class="replaceable"><code>port</code></em>. If not
79ce3a9e82384cc31fd6b86be8f3d1474fcfd9f4Evan Hunt specified, the default is port 53.
c6f4972c745f8903aba6dcca41f17a44c473db66Mark Andrews Write memory usage statistics to <code class="filename">stdout</code> on exit.
c6f4972c745f8903aba6dcca41f17a44c473db66Mark Andrews<div class="note" style="margin-left: 0.5in; margin-right: 0.5in;">
79ce3a9e82384cc31fd6b86be8f3d1474fcfd9f4Evan Hunt This option is mainly of interest to BIND 9 developers
79ce3a9e82384cc31fd6b86be8f3d1474fcfd9f4Evan Hunt and may be removed or changed in a future release.
79ce3a9e82384cc31fd6b86be8f3d1474fcfd9f4Evan Hunt<dt><span class="term">-t <em class="replaceable"><code>directory</code></em></span></dt>
79ce3a9e82384cc31fd6b86be8f3d1474fcfd9f4Evan Hunt to <em class="replaceable"><code>directory</code></em> after
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt processing the command line arguments, but before
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt reading the configuration file.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<div class="warning" style="margin-left: 0.5in; margin-right: 0.5in;">
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt This option should be used in conjunction with the
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt <code class="option">-u</code> option, as chrooting a process
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt running as root doesn't enhance security on most
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt systems; the way <code class="function">chroot()</code> is
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt defined allows a process with root privileges to
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt escape a chroot jail.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<dt><span class="term">-u <em class="replaceable"><code>user</code></em></span></dt>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt to <em class="replaceable"><code>user</code></em> after completing
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt privileged operations, such as creating sockets that
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt listen on privileged ports.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<div class="note" style="margin-left: 0.5in; margin-right: 0.5in;">
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt On Linux, <span><strong class="command">named</strong></span> uses the kernel's
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt capability mechanism to drop all root privileges
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt except the ability to <code class="function">bind()</code> to
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt privileged port and set process resource limits.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt Unfortunately, this means that the <code class="option">-u</code>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt option only works when <span><strong class="command">named</strong></span> is
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt on kernel 2.2.18 or later, or kernel 2.3.99-pre3 or
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt later, since previous kernels did not allow privileges
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt to be retained after <code class="function">setuid()</code>.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt Report the version number and exit.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<dt><span class="term">-x <em class="replaceable"><code>cache-file</code></em></span></dt>
c6f4972c745f8903aba6dcca41f17a44c473db66Mark Andrews Load data from <em class="replaceable"><code>cache-file</code></em> into the
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt cache of the default view.
c6f4972c745f8903aba6dcca41f17a44c473db66Mark Andrews<div class="warning" style="margin-left: 0.5in; margin-right: 0.5in;">
c6f4972c745f8903aba6dcca41f17a44c473db66Mark Andrews This option must not be used. It is only of interest
c6f4972c745f8903aba6dcca41f17a44c473db66Mark Andrews to BIND 9 developers and may be removed or changed in a
c6f4972c745f8903aba6dcca41f17a44c473db66Mark Andrews future release.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt In routine operation, signals should not be used to control
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt the nameserver; <span><strong class="command">rndc</strong></span> should be used
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt Force a reload of the server.
c6f4972c745f8903aba6dcca41f17a44c473db66Mark Andrews Shut down the server.
c6f4972c745f8903aba6dcca41f17a44c473db66Mark Andrews The result of sending any other signals to the server is undefined.
c6f4972c745f8903aba6dcca41f17a44c473db66Mark Andrews The <span><strong class="command">named</strong></span> configuration file is too complex
c6f4972c745f8903aba6dcca41f17a44c473db66Mark Andrews to describe in detail here. A complete description is provided
c6f4972c745f8903aba6dcca41f17a44c473db66Mark Andrews <em class="citetitle">BIND 9 Administrator Reference Manual</em>.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<dt><span class="term"><code class="filename">/etc/named.conf</code></span></dt>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt The default configuration file.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<dt><span class="term"><code class="filename">/var/run/named.pid</code></span></dt>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt The default process-id file.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt <span class="citerefentry"><span class="refentrytitle">rndc</span>(8)</span>,
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt <span class="citerefentry"><span class="refentrytitle">lwresd</span>(8)</span>,
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt <span class="citerefentry"><span class="refentrytitle">named.conf</span>(5)</span>,
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt <em class="citetitle">BIND 9 Administrator Reference Manual</em>.
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<p><span class="corpauthor">Internet Systems Consortium</span>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<a accesskey="p" href="man.named-checkzone.html">Prev</a>�</td>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<td width="20%" align="center"><a accesskey="u" href="Bv9ARM.ch10.html">Up</a></td>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<td width="40%" align="right">�<a accesskey="n" href="man.rndc.html">Next</a>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<td width="40%" align="left" valign="top"><span class="application">named-checkzone</span>�</td>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<td width="20%" align="center"><a accesskey="h" href="Bv9ARM.html">Home</a></td>
0b24b2d3c423560a0a4cd9a4476b9a2dcafb7ea3Evan Hunt<td width="40%" align="right" valign="top">�<span class="application">rndc</span></td>