doc/arm/man.named.html

	man.named.html revision edaa0648858316d9f4ad2a4093f16e05dbf2fe50
1c57c3f79db0bf0358bbe6d7b5ad650c0c852f4bTinderbox User<!--
1c57c3f79db0bf0358bbe6d7b5ad650c0c852f4bTinderbox User - Copyright (C) 2004-2012 Internet Systems Consortium, Inc. ("ISC")
5347c0fcb04eaea19d9f39795646239f487c6207Tinderbox User - Copyright (C) 2000-2003 Internet Software Consortium.
5347c0fcb04eaea19d9f39795646239f487c6207Tinderbox User -
5347c0fcb04eaea19d9f39795646239f487c6207Tinderbox User - Permission to use, copy, modify, and/or distribute this software for any
1c57c3f79db0bf0358bbe6d7b5ad650c0c852f4bTinderbox User - purpose with or without fee is hereby granted, provided that the above
8c225507766814e78e168b17a24b8a47ca7f8c37Tinderbox User - copyright notice and this permission notice appear in all copies.
1c57c3f79db0bf0358bbe6d7b5ad650c0c852f4bTinderbox User -
1c57c3f79db0bf0358bbe6d7b5ad650c0c852f4bTinderbox User - THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
1c57c3f79db0bf0358bbe6d7b5ad650c0c852f4bTinderbox User - REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
1c57c3f79db0bf0358bbe6d7b5ad650c0c852f4bTinderbox User - AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
fd2597f75693a2279fdf588bd40dfe2407c42028Tinderbox User - INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
1c57c3f79db0bf0358bbe6d7b5ad650c0c852f4bTinderbox User - LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User - PERFORMANCE OF THIS SOFTWARE.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User-->
f9ce6280cec79deb16ff6d9807aa493ff23e10d9Tinderbox User<!-- $Id$ -->
b1331a6b3dbc156a418049b8562a3f6105f2b227Tinderbox User<html>
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<head>
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt<title>named</title>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt<meta name="generator" content="DocBook XSL Stylesheets V1.71.1">
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<link rel="start" href="Bv9ARM.html" title="BIND 9 Administrator Reference Manual">
0da02c26a6631c25f075a8e4ac6de9e58f49a0c2Tinderbox User<link rel="up" href="Bv9ARM.ch10.html" title="Manual pages">
0da02c26a6631c25f075a8e4ac6de9e58f49a0c2Tinderbox User<link rel="prev" href="man.named-checkzone.html" title="named-checkzone">
0da02c26a6631c25f075a8e4ac6de9e58f49a0c2Tinderbox User<link rel="next" href="man.named-journalprint.html" title="named-journalprint">
0da02c26a6631c25f075a8e4ac6de9e58f49a0c2Tinderbox User</head>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt<body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF">
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<div class="navheader">
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<table width="100%" summary="Navigation header">
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<tr><th colspan="3" align="center"><span class="application">named</span></th></tr>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt<tr>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt<td width="20%" align="left">
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<a accesskey="p" href="man.named-checkzone.html">Prev</a>�</td>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt<th width="60%" align="center">Manual pages</th>
fd2597f75693a2279fdf588bd40dfe2407c42028Tinderbox User<td width="20%" align="right">�<a accesskey="n" href="man.named-journalprint.html">Next</a>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt</td>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt</tr>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt</table>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt<hr>
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User</div>
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<div class="refentry" lang="en">
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<a name="man.named"></a><div class="titlepage"></div>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt<div class="refnamediv">
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User<h2>Name</h2>
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User<p><span class="application">named</span> &#8212; Internet domain name server</p>
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User</div>
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User<div class="refsynopsisdiv">
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User<h2>Synopsis</h2>
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User<div class="cmdsynopsis"><p><code class="command">named</code>  [<code class="option">-4</code>] [<code class="option">-6</code>] [<code class="option">-c <em class="replaceable"><code>config-file</code></em></code>] [<code class="option">-d <em class="replaceable"><code>debug-level</code></em></code>] [<code class="option">-E <em class="replaceable"><code>engine-name</code></em></code>] [<code class="option">-f</code>] [<code class="option">-g</code>] [<code class="option">-m <em class="replaceable"><code>flag</code></em></code>] [<code class="option">-n <em class="replaceable"><code>#cpus</code></em></code>] [<code class="option">-p <em class="replaceable"><code>port</code></em></code>] [<code class="option">-s</code>] [<code class="option">-S <em class="replaceable"><code>#max-socks</code></em></code>] [<code class="option">-t <em class="replaceable"><code>directory</code></em></code>] [<code class="option">-U <em class="replaceable"><code>#listeners</code></em></code>] [<code class="option">-u <em class="replaceable"><code>user</code></em></code>] [<code class="option">-v</code>] [<code class="option">-V</code>] [<code class="option">-x <em class="replaceable"><code>cache-file</code></em></code>]</p></div>
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User</div>
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User<div class="refsect1" lang="en">
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User<a name="id2639195"></a><h2>DESCRIPTION</h2>
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User<p><span><strong class="command">named</strong></span>
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User      is a Domain Name System (DNS) server,
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User      part of the BIND 9 distribution from ISC.  For more
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User      information on the DNS, see RFCs 1033, 1034, and 1035.
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User    </p>
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User<p>
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User      When invoked without arguments, <span><strong class="command">named</strong></span>
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User      will
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User      read the default configuration file
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User      <code class="filename">/etc/named.conf</code>, read any initial
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User      data, and listen for queries.
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User    </p>
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User</div>
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User<div class="refsect1" lang="en">
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User<a name="id2639226"></a><h2>OPTIONS</h2>
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User<div class="variablelist"><dl>
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User<dt><span class="term">-4</span></dt>
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User<dd><p>
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User            Use IPv4 only even if the host machine is capable of IPv6.
33c9436ef1a43d3c0fc3d9be9b4b0509daa83223Tinderbox User            <code class="option">-4</code> and <code class="option">-6</code> are mutually
a1ff871f78b7d907d6fc3a382beea2a640fe8423Tinderbox User            exclusive.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User          </p></dd>
0da02c26a6631c25f075a8e4ac6de9e58f49a0c2Tinderbox User<dt><span class="term">-6</span></dt>
8a48b6b9b6fa8486f24b22d1972b2b6ebb36a4a4Tinderbox User<dd><p>
0da02c26a6631c25f075a8e4ac6de9e58f49a0c2Tinderbox User            Use IPv6 only even if the host machine is capable of IPv4.
8a48b6b9b6fa8486f24b22d1972b2b6ebb36a4a4Tinderbox User            <code class="option">-4</code> and <code class="option">-6</code> are mutually
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User            exclusive.
8a48b6b9b6fa8486f24b22d1972b2b6ebb36a4a4Tinderbox User          </p></dd>
8a48b6b9b6fa8486f24b22d1972b2b6ebb36a4a4Tinderbox User<dt><span class="term">-c <em class="replaceable"><code>config-file</code></em></span></dt>
8a48b6b9b6fa8486f24b22d1972b2b6ebb36a4a4Tinderbox User<dd><p>
8a48b6b9b6fa8486f24b22d1972b2b6ebb36a4a4Tinderbox User            Use <em class="replaceable"><code>config-file</code></em> as the
8a48b6b9b6fa8486f24b22d1972b2b6ebb36a4a4Tinderbox User            configuration file instead of the default,
8a48b6b9b6fa8486f24b22d1972b2b6ebb36a4a4Tinderbox User            <code class="filename">/etc/named.conf</code>.  To
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User            ensure that reloading the configuration file continues
3ca1a32241189d1e02e59f6b56399eb9b40f2aafTinderbox User            to work after the server has changed its working
3ca1a32241189d1e02e59f6b56399eb9b40f2aafTinderbox User            directory due to to a possible
3ca1a32241189d1e02e59f6b56399eb9b40f2aafTinderbox User            <code class="option">directory</code> option in the configuration
3ca1a32241189d1e02e59f6b56399eb9b40f2aafTinderbox User            file, <em class="replaceable"><code>config-file</code></em> should be
3ca1a32241189d1e02e59f6b56399eb9b40f2aafTinderbox User            an absolute pathname.
8a48b6b9b6fa8486f24b22d1972b2b6ebb36a4a4Tinderbox User          </p></dd>
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<dt><span class="term">-d <em class="replaceable"><code>debug-level</code></em></span></dt>
8a48b6b9b6fa8486f24b22d1972b2b6ebb36a4a4Tinderbox User<dd><p>
8a48b6b9b6fa8486f24b22d1972b2b6ebb36a4a4Tinderbox User            Set the daemon's debug level to <em class="replaceable"><code>debug-level</code></em>.
8a48b6b9b6fa8486f24b22d1972b2b6ebb36a4a4Tinderbox User            Debugging traces from <span><strong class="command">named</strong></span> become
8a48b6b9b6fa8486f24b22d1972b2b6ebb36a4a4Tinderbox User            more verbose as the debug level increases.
8a48b6b9b6fa8486f24b22d1972b2b6ebb36a4a4Tinderbox User          </p></dd>
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<dt><span class="term">-E <em class="replaceable"><code>engine-name</code></em></span></dt>
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<dd><p>
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User            Use a crypto hardware (OpenSSL engine) for the crypto operations
a1ff871f78b7d907d6fc3a382beea2a640fe8423Tinderbox User            it supports, for instance re-signing with private keys from
3ca1a32241189d1e02e59f6b56399eb9b40f2aafTinderbox User            a secure key store. When compiled with PKCS#11 support
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User            <em class="replaceable"><code>engine-name</code></em>
3ca1a32241189d1e02e59f6b56399eb9b40f2aafTinderbox User            defaults to pkcs11, the empty name resets it to no engine.
3ca1a32241189d1e02e59f6b56399eb9b40f2aafTinderbox User          </p></dd>
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User<dt><span class="term">-f</span></dt>
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User<dd><p>
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User            Run the server in the foreground (i.e. do not daemonize).
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User          </p></dd>
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User<dt><span class="term">-g</span></dt>
363b21045b718d06d414784c96193dc9a233e8c5Tinderbox User<dd><p>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt            Run the server in the foreground and force all logging
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User            to <code class="filename">stderr</code>.
550d3276d0490c4918f089ccb1528a3eb0951b0aTinderbox User          </p></dd>
550d3276d0490c4918f089ccb1528a3eb0951b0aTinderbox User<dt><span class="term">-m <em class="replaceable"><code>flag</code></em></span></dt>
550d3276d0490c4918f089ccb1528a3eb0951b0aTinderbox User<dd><p>
550d3276d0490c4918f089ccb1528a3eb0951b0aTinderbox User        Turn on memory usage debugging flags.  Possible flags are
550d3276d0490c4918f089ccb1528a3eb0951b0aTinderbox User        <em class="replaceable"><code>usage</code></em>,
550d3276d0490c4918f089ccb1528a3eb0951b0aTinderbox User        <em class="replaceable"><code>trace</code></em>,
550d3276d0490c4918f089ccb1528a3eb0951b0aTinderbox User        <em class="replaceable"><code>record</code></em>,
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User        <em class="replaceable"><code>size</code></em>, and
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User        <em class="replaceable"><code>mctx</code></em>.
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User        These correspond to the ISC_MEM_DEBUGXXXX flags described in
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User        <code class="filename">&lt;isc/mem.h&gt;</code>.
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User          </p></dd>
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<dt><span class="term">-n <em class="replaceable"><code>#cpus</code></em></span></dt>
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User<dd><p>
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User            Create <em class="replaceable"><code>#cpus</code></em> worker threads
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User            to take advantage of multiple CPUs.  If not specified,
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User            <span><strong class="command">named</strong></span> will try to determine the
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User            number of CPUs present and create one thread per CPU.
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User            If it is unable to determine the number of CPUs, a
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User            single worker thread will be created.
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User          </p></dd>
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User<dt><span class="term">-p <em class="replaceable"><code>port</code></em></span></dt>
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User<dd><p>
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User            Listen for queries on port <em class="replaceable"><code>port</code></em>.  If not
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User            specified, the default is port 53.
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User          </p></dd>
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User<dt><span class="term">-s</span></dt>
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User<dd>
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User<p>
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User            Write memory usage statistics to <code class="filename">stdout</code> on exit.
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User          </p>
d605cf32834fd19b7d16848655cdb5e458f34aa5Tinderbox User<div class="note" style="margin-left: 0.5in; margin-right: 0.5in;">
d605cf32834fd19b7d16848655cdb5e458f34aa5Tinderbox User<h3 class="title">Note</h3>
d605cf32834fd19b7d16848655cdb5e458f34aa5Tinderbox User<p>
d605cf32834fd19b7d16848655cdb5e458f34aa5Tinderbox User              This option is mainly of interest to BIND 9 developers
d605cf32834fd19b7d16848655cdb5e458f34aa5Tinderbox User              and may be removed or changed in a future release.
d605cf32834fd19b7d16848655cdb5e458f34aa5Tinderbox User            </p>
d605cf32834fd19b7d16848655cdb5e458f34aa5Tinderbox User</div>
d605cf32834fd19b7d16848655cdb5e458f34aa5Tinderbox User</dd>
d605cf32834fd19b7d16848655cdb5e458f34aa5Tinderbox User<dt><span class="term">-S <em class="replaceable"><code>#max-socks</code></em></span></dt>
51da15c88648a9e47d0cddff4b2b782665e99401Tinderbox User<dd>
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<p>
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User        Allow <span><strong class="command">named</strong></span> to use up to
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User        <em class="replaceable"><code>#max-socks</code></em> sockets.
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt      </p>
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User<div class="warning" style="margin-left: 0.5in; margin-right: 0.5in;">
b1331a6b3dbc156a418049b8562a3f6105f2b227Tinderbox User<h3 class="title">Warning</h3>
b1331a6b3dbc156a418049b8562a3f6105f2b227Tinderbox User<p>
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User              This option should be unnecessary for the vast majority
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User              of users.
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User          The use of this option could even be harmful because the
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User              specified value may exceed the limitation of the
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User              underlying system API.
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User          It is therefore set only when the default configuration
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User              causes exhaustion of file descriptors and the
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User              operational environment is known to support the
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User              specified number of sockets.
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User          Note also that the actual maximum number is normally a little
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User              fewer than the specified value because
b1331a6b3dbc156a418049b8562a3f6105f2b227Tinderbox User          <span><strong class="command">named</strong></span> reserves some file descriptors
b1331a6b3dbc156a418049b8562a3f6105f2b227Tinderbox User          for its internal use.
b1331a6b3dbc156a418049b8562a3f6105f2b227Tinderbox User            </p>
b1331a6b3dbc156a418049b8562a3f6105f2b227Tinderbox User</div>
b1331a6b3dbc156a418049b8562a3f6105f2b227Tinderbox User</dd>
b1331a6b3dbc156a418049b8562a3f6105f2b227Tinderbox User<dt><span class="term">-t <em class="replaceable"><code>directory</code></em></span></dt>
b1331a6b3dbc156a418049b8562a3f6105f2b227Tinderbox User<dd>
b1331a6b3dbc156a418049b8562a3f6105f2b227Tinderbox User<p>Chroot
b1331a6b3dbc156a418049b8562a3f6105f2b227Tinderbox User        to <em class="replaceable"><code>directory</code></em> after
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User            processing the command line arguments, but before
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User            reading the configuration file.
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User          </p>
d253648fe3331622cebea02d60aaecca3082d78dTinderbox User<div class="warning" style="margin-left: 0.5in; margin-right: 0.5in;">
bfb7b680bf88c1fdd9949197b71c512c532280a4Tinderbox User<h3 class="title">Warning</h3>
dfae459e8c4f794f8a239e74aa9d5e11cce6ea5bTinderbox User<p>
dfae459e8c4f794f8a239e74aa9d5e11cce6ea5bTinderbox User              This option should be used in conjunction with the
bfb7b680bf88c1fdd9949197b71c512c532280a4Tinderbox User              <code class="option">-u</code> option, as chrooting a process
bfb7b680bf88c1fdd9949197b71c512c532280a4Tinderbox User              running as root doesn't enhance security on most
bfb7b680bf88c1fdd9949197b71c512c532280a4Tinderbox User              systems; the way <code class="function">chroot(2)</code> is
bfb7b680bf88c1fdd9949197b71c512c532280a4Tinderbox User              defined allows a process with root privileges to
bfb7b680bf88c1fdd9949197b71c512c532280a4Tinderbox User              escape a chroot jail.
bfb7b680bf88c1fdd9949197b71c512c532280a4Tinderbox User            </p>
3ca1a32241189d1e02e59f6b56399eb9b40f2aafTinderbox User</div>
3ca1a32241189d1e02e59f6b56399eb9b40f2aafTinderbox User</dd>
bfb7b680bf88c1fdd9949197b71c512c532280a4Tinderbox User<dt><span class="term">-U <em class="replaceable"><code>#listeners</code></em></span></dt>
bfb7b680bf88c1fdd9949197b71c512c532280a4Tinderbox User<dd><p>
dfae459e8c4f794f8a239e74aa9d5e11cce6ea5bTinderbox User            Use <em class="replaceable"><code>#listeners</code></em>
dfae459e8c4f794f8a239e74aa9d5e11cce6ea5bTinderbox User            worker threads to listen for incoming UDP packets on each
dfae459e8c4f794f8a239e74aa9d5e11cce6ea5bTinderbox User            address.  If not specified, <span><strong class="command">named</strong></span> will
3ca1a32241189d1e02e59f6b56399eb9b40f2aafTinderbox User            use all of the worker threads for this purpose; the
3ca1a32241189d1e02e59f6b56399eb9b40f2aafTinderbox User            <code class="option">-U</code> option allows the number to be
3ca1a32241189d1e02e59f6b56399eb9b40f2aafTinderbox User            decreased but not increased.
3ca1a32241189d1e02e59f6b56399eb9b40f2aafTinderbox User          </p></dd>
dfae459e8c4f794f8a239e74aa9d5e11cce6ea5bTinderbox User<dt><span class="term">-u <em class="replaceable"><code>user</code></em></span></dt>
dfae459e8c4f794f8a239e74aa9d5e11cce6ea5bTinderbox User<dd>
dfae459e8c4f794f8a239e74aa9d5e11cce6ea5bTinderbox User<p>Setuid
bfb7b680bf88c1fdd9949197b71c512c532280a4Tinderbox User        to <em class="replaceable"><code>user</code></em> after completing
bfb7b680bf88c1fdd9949197b71c512c532280a4Tinderbox User            privileged operations, such as creating sockets that
bfb7b680bf88c1fdd9949197b71c512c532280a4Tinderbox User            listen on privileged ports.
bfb7b680bf88c1fdd9949197b71c512c532280a4Tinderbox User          </p>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt<div class="note" style="margin-left: 0.5in; margin-right: 0.5in;">
abe69df9a7de5cda07a2b8e19e8b7c981bcd7a9dTinderbox User<h3 class="title">Note</h3>
f14ce68ee54a5a4587fbde4ffacb117946df2d73Tinderbox User<p>
f14ce68ee54a5a4587fbde4ffacb117946df2d73Tinderbox User              On Linux, <span><strong class="command">named</strong></span> uses the kernel's
f14ce68ee54a5a4587fbde4ffacb117946df2d73Tinderbox User                    capability mechanism to drop all root privileges
f14ce68ee54a5a4587fbde4ffacb117946df2d73Tinderbox User              except the ability to <code class="function">bind(2)</code> to
f14ce68ee54a5a4587fbde4ffacb117946df2d73Tinderbox User              a
f14ce68ee54a5a4587fbde4ffacb117946df2d73Tinderbox User              privileged port and set process resource limits.
f14ce68ee54a5a4587fbde4ffacb117946df2d73Tinderbox User              Unfortunately, this means that the <code class="option">-u</code>
f14ce68ee54a5a4587fbde4ffacb117946df2d73Tinderbox User              option only works when <span><strong class="command">named</strong></span> is
f14ce68ee54a5a4587fbde4ffacb117946df2d73Tinderbox User              run
f14ce68ee54a5a4587fbde4ffacb117946df2d73Tinderbox User              on kernel 2.2.18 or later, or kernel 2.3.99-pre3 or
f14ce68ee54a5a4587fbde4ffacb117946df2d73Tinderbox User              later, since previous kernels did not allow privileges
0d6a6642b2be93cffa651c54a9b8810dd2d31392Tinderbox User              to be retained after <code class="function">setuid(2)</code>.
0d6a6642b2be93cffa651c54a9b8810dd2d31392Tinderbox User            </p>
0d6a6642b2be93cffa651c54a9b8810dd2d31392Tinderbox User</div>
0d6a6642b2be93cffa651c54a9b8810dd2d31392Tinderbox User</dd>
0d6a6642b2be93cffa651c54a9b8810dd2d31392Tinderbox User<dt><span class="term">-v</span></dt>
0d6a6642b2be93cffa651c54a9b8810dd2d31392Tinderbox User<dd><p>
0d6a6642b2be93cffa651c54a9b8810dd2d31392Tinderbox User            Report the version number and exit.
0d6a6642b2be93cffa651c54a9b8810dd2d31392Tinderbox User          </p></dd>
0d6a6642b2be93cffa651c54a9b8810dd2d31392Tinderbox User<dt><span class="term">-V</span></dt>
abe69df9a7de5cda07a2b8e19e8b7c981bcd7a9dTinderbox User<dd><p>
abe69df9a7de5cda07a2b8e19e8b7c981bcd7a9dTinderbox User            Report the version number and build options, and exit.
abe69df9a7de5cda07a2b8e19e8b7c981bcd7a9dTinderbox User          </p></dd>
abe69df9a7de5cda07a2b8e19e8b7c981bcd7a9dTinderbox User<dt><span class="term">-x <em class="replaceable"><code>cache-file</code></em></span></dt>
abe69df9a7de5cda07a2b8e19e8b7c981bcd7a9dTinderbox User<dd>
abe69df9a7de5cda07a2b8e19e8b7c981bcd7a9dTinderbox User<p>
abe69df9a7de5cda07a2b8e19e8b7c981bcd7a9dTinderbox User            Load data from <em class="replaceable"><code>cache-file</code></em> into the
abe69df9a7de5cda07a2b8e19e8b7c981bcd7a9dTinderbox User            cache of the default view.
abe69df9a7de5cda07a2b8e19e8b7c981bcd7a9dTinderbox User          </p>
abe69df9a7de5cda07a2b8e19e8b7c981bcd7a9dTinderbox User<div class="warning" style="margin-left: 0.5in; margin-right: 0.5in;">
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<h3 class="title">Warning</h3>
164ade1482251e1da962b42e5bf0d3aa02a11e03Tinderbox User<p>
164ade1482251e1da962b42e5bf0d3aa02a11e03Tinderbox User              This option must not be used.  It is only of interest
164ade1482251e1da962b42e5bf0d3aa02a11e03Tinderbox User              to BIND 9 developers and may be removed or changed in a
164ade1482251e1da962b42e5bf0d3aa02a11e03Tinderbox User              future release.
164ade1482251e1da962b42e5bf0d3aa02a11e03Tinderbox User            </p>
164ade1482251e1da962b42e5bf0d3aa02a11e03Tinderbox User</div>
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User</dd>
abe69df9a7de5cda07a2b8e19e8b7c981bcd7a9dTinderbox User</dl></div>
c48fdfda7a8ae8973aadfeb88cbeaab013024a6cTinderbox User</div>
c48fdfda7a8ae8973aadfeb88cbeaab013024a6cTinderbox User<div class="refsect1" lang="en">
c48fdfda7a8ae8973aadfeb88cbeaab013024a6cTinderbox User<a name="id2661656"></a><h2>SIGNALS</h2>
c48fdfda7a8ae8973aadfeb88cbeaab013024a6cTinderbox User<p>
c48fdfda7a8ae8973aadfeb88cbeaab013024a6cTinderbox User      In routine operation, signals should not be used to control
c48fdfda7a8ae8973aadfeb88cbeaab013024a6cTinderbox User      the nameserver; <span><strong class="command">rndc</strong></span> should be used
abe69df9a7de5cda07a2b8e19e8b7c981bcd7a9dTinderbox User      instead.
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User    </p>
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<div class="variablelist"><dl>
7911e6f9de303bca5a3d8b34f4330c8f7cecffaeTinderbox User<dt><span class="term">SIGHUP</span></dt>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt<dd><p>
164ade1482251e1da962b42e5bf0d3aa02a11e03Tinderbox User            Force a reload of the server.
9efd8fc7e811d3c0c160adeb5552c2df7e49df67Tinderbox User          </p></dd>
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User<dt><span class="term">SIGINT, SIGTERM</span></dt>
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User<dd><p>
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User            Shut down the server.
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User          </p></dd>
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User</dl></div>
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User<p>
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User      The result of sending any other signals to the server is undefined.
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User    </p>
111d5ef471ecec90671f480afd8f93e550a80917Tinderbox User</div>
a0fb6a0980359165a4459723f52d5d7b5725f9c6Tinderbox User<div class="refsect1" lang="en">
a0fb6a0980359165a4459723f52d5d7b5725f9c6Tinderbox User<a name="id2661706"></a><h2>CONFIGURATION</h2>
a0fb6a0980359165a4459723f52d5d7b5725f9c6Tinderbox User<p>
a0fb6a0980359165a4459723f52d5d7b5725f9c6Tinderbox User      The <span><strong class="command">named</strong></span> configuration file is too complex
a0fb6a0980359165a4459723f52d5d7b5725f9c6Tinderbox User      to describe in detail here.  A complete description is provided
a0fb6a0980359165a4459723f52d5d7b5725f9c6Tinderbox User      in the
a0fb6a0980359165a4459723f52d5d7b5725f9c6Tinderbox User      <em class="citetitle">BIND 9 Administrator Reference Manual</em>.
a0fb6a0980359165a4459723f52d5d7b5725f9c6Tinderbox User    </p>
a0fb6a0980359165a4459723f52d5d7b5725f9c6Tinderbox User<p>
8c7245514646663b25d8b186186ebede41903fa3Tinderbox User      <span><strong class="command">named</strong></span> inherits the <code class="function">umask</code>
8c7245514646663b25d8b186186ebede41903fa3Tinderbox User      (file creation mode mask) from the parent process. If files
8c7245514646663b25d8b186186ebede41903fa3Tinderbox User      created by <span><strong class="command">named</strong></span>, such as journal files,
8c7245514646663b25d8b186186ebede41903fa3Tinderbox User      need to have custom permissions, the <code class="function">umask</code>
8c7245514646663b25d8b186186ebede41903fa3Tinderbox User      should be set explicitly in the script used to start the
8c7245514646663b25d8b186186ebede41903fa3Tinderbox User      <span><strong class="command">named</strong></span> process.
8c7245514646663b25d8b186186ebede41903fa3Tinderbox User    </p>
8c7245514646663b25d8b186186ebede41903fa3Tinderbox User</div>
8c7245514646663b25d8b186186ebede41903fa3Tinderbox User<div class="refsect1" lang="en">
421ba11f3f07cbcb12c288ef7f4e7bad13fcc28fTinderbox User<a name="id2676706"></a><h2>FILES</h2>
421ba11f3f07cbcb12c288ef7f4e7bad13fcc28fTinderbox User<div class="variablelist"><dl>
421ba11f3f07cbcb12c288ef7f4e7bad13fcc28fTinderbox User<dt><span class="term"><code class="filename">/etc/named.conf</code></span></dt>
421ba11f3f07cbcb12c288ef7f4e7bad13fcc28fTinderbox User<dd><p>
421ba11f3f07cbcb12c288ef7f4e7bad13fcc28fTinderbox User            The default configuration file.
421ba11f3f07cbcb12c288ef7f4e7bad13fcc28fTinderbox User          </p></dd>
99b30e26a6beb9092557cc9e5370b517309bff6eTinderbox User<dt><span class="term"><code class="filename">/var/run/named/named.pid</code></span></dt>
ffe29868b4bbc64953fc5d0de51f988c20158967Tinderbox User<dd><p>
3b15473cedf41d48904f5b07bdc5e87afff6b58cTinderbox User            The default process-id file.
3b15473cedf41d48904f5b07bdc5e87afff6b58cTinderbox User          </p></dd>
3b15473cedf41d48904f5b07bdc5e87afff6b58cTinderbox User</dl></div>
3b15473cedf41d48904f5b07bdc5e87afff6b58cTinderbox User</div>
3b15473cedf41d48904f5b07bdc5e87afff6b58cTinderbox User<div class="refsect1" lang="en">
3b15473cedf41d48904f5b07bdc5e87afff6b58cTinderbox User<a name="id2676749"></a><h2>SEE ALSO</h2>
ffe29868b4bbc64953fc5d0de51f988c20158967Tinderbox User<p><em class="citetitle">RFC 1033</em>,
99b30e26a6beb9092557cc9e5370b517309bff6eTinderbox User      <em class="citetitle">RFC 1034</em>,
99b30e26a6beb9092557cc9e5370b517309bff6eTinderbox User      <em class="citetitle">RFC 1035</em>,
99b30e26a6beb9092557cc9e5370b517309bff6eTinderbox User      <span class="citerefentry"><span class="refentrytitle">named-checkconf</span>(8)</span>,
99b30e26a6beb9092557cc9e5370b517309bff6eTinderbox User      <span class="citerefentry"><span class="refentrytitle">named-checkzone</span>(8)</span>,
99b30e26a6beb9092557cc9e5370b517309bff6eTinderbox User      <span class="citerefentry"><span class="refentrytitle">rndc</span>(8)</span>,
99b30e26a6beb9092557cc9e5370b517309bff6eTinderbox User      <span class="citerefentry"><span class="refentrytitle">lwresd</span>(8)</span>,
99b30e26a6beb9092557cc9e5370b517309bff6eTinderbox User      <span class="citerefentry"><span class="refentrytitle">named.conf</span>(5)</span>,
99b30e26a6beb9092557cc9e5370b517309bff6eTinderbox User      <em class="citetitle">BIND 9 Administrator Reference Manual</em>.
c48fdfda7a8ae8973aadfeb88cbeaab013024a6cTinderbox User    </p>
c48fdfda7a8ae8973aadfeb88cbeaab013024a6cTinderbox User</div>
c48fdfda7a8ae8973aadfeb88cbeaab013024a6cTinderbox User<div class="refsect1" lang="en">
c48fdfda7a8ae8973aadfeb88cbeaab013024a6cTinderbox User<a name="id2676820"></a><h2>AUTHOR</h2>
c48fdfda7a8ae8973aadfeb88cbeaab013024a6cTinderbox User<p><span class="corpauthor">Internet Systems Consortium</span>
c48fdfda7a8ae8973aadfeb88cbeaab013024a6cTinderbox User    </p>
9efd8fc7e811d3c0c160adeb5552c2df7e49df67Tinderbox User</div>
9efd8fc7e811d3c0c160adeb5552c2df7e49df67Tinderbox User</div>
9efd8fc7e811d3c0c160adeb5552c2df7e49df67Tinderbox User<div class="navfooter">
9efd8fc7e811d3c0c160adeb5552c2df7e49df67Tinderbox User<hr>
9efd8fc7e811d3c0c160adeb5552c2df7e49df67Tinderbox User<table width="100%" summary="Navigation footer">
9efd8fc7e811d3c0c160adeb5552c2df7e49df67Tinderbox User<tr>
9efd8fc7e811d3c0c160adeb5552c2df7e49df67Tinderbox User<td width="40%" align="left">
9efd8fc7e811d3c0c160adeb5552c2df7e49df67Tinderbox User<a accesskey="p" href="man.named-checkzone.html">Prev</a>�</td>
9efd8fc7e811d3c0c160adeb5552c2df7e49df67Tinderbox User<td width="20%" align="center"><a accesskey="u" href="Bv9ARM.ch10.html">Up</a></td>
9efd8fc7e811d3c0c160adeb5552c2df7e49df67Tinderbox User<td width="40%" align="right">�<a accesskey="n" href="man.named-journalprint.html">Next</a>
666b453b37f9ccfe3c7984fb0b31b70a3ceb918fTinderbox User</td>
666b453b37f9ccfe3c7984fb0b31b70a3ceb918fTinderbox User</tr>
666b453b37f9ccfe3c7984fb0b31b70a3ceb918fTinderbox User<tr>
666b453b37f9ccfe3c7984fb0b31b70a3ceb918fTinderbox User<td width="40%" align="left" valign="top">
666b453b37f9ccfe3c7984fb0b31b70a3ceb918fTinderbox User<span class="application">named-checkzone</span>�</td>
666b453b37f9ccfe3c7984fb0b31b70a3ceb918fTinderbox User<td width="20%" align="center"><a accesskey="h" href="Bv9ARM.html">Home</a></td>
666b453b37f9ccfe3c7984fb0b31b70a3ceb918fTinderbox User<td width="40%" align="right" valign="top">�<span class="application">named-journalprint</span>
666b453b37f9ccfe3c7984fb0b31b70a3ceb918fTinderbox User</td>
bea02a4cc08d57b9f36979906f291ac78a99060aTinderbox User</tr>
bea02a4cc08d57b9f36979906f291ac78a99060aTinderbox User</table>
bea02a4cc08d57b9f36979906f291ac78a99060aTinderbox User</div>
bea02a4cc08d57b9f36979906f291ac78a99060aTinderbox User</body>
bea02a4cc08d57b9f36979906f291ac78a99060aTinderbox User</html>
bea02a4cc08d57b9f36979906f291ac78a99060aTinderbox User