man.rndc.html revision 52ece689e0265f9a3e518de5b2539e749f6d35ac
70e5a7403f0e0a3bd292b8287c5fed5772c15270Automatic Updater - Copyright (C) 2004-2006 Internet Systems Consortium, Inc. ("ISC")
499b34cea04a46823d003d4c0520c8b03e8513cbBrian Wellington - Copyright (C) 2000-2003 Internet Software Consortium.
ec5347e2c775f027573ce5648b910361aa926c01Automatic Updater - Permission to use, copy, modify, and distribute this software for any
878d3073b13833ee1a50dfeabf8e400b6fdfc754Brian Wellington - purpose with or without fee is hereby granted, provided that the above
878d3073b13833ee1a50dfeabf8e400b6fdfc754Brian Wellington - copyright notice and this permission notice appear in all copies.
dafcb997e390efa4423883dafd100c975c4095d6Mark Andrews - THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
dafcb997e390efa4423883dafd100c975c4095d6Mark Andrews - REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
dafcb997e390efa4423883dafd100c975c4095d6Mark Andrews - AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
dafcb997e390efa4423883dafd100c975c4095d6Mark Andrews - INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
dafcb997e390efa4423883dafd100c975c4095d6Mark Andrews - LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
dafcb997e390efa4423883dafd100c975c4095d6Mark Andrews - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
dafcb997e390efa4423883dafd100c975c4095d6Mark Andrews - PERFORMANCE OF THIS SOFTWARE.
878d3073b13833ee1a50dfeabf8e400b6fdfc754Brian Wellington<!-- $Id: man.rndc.html,v 1.27 2006/04/23 10:14:12 marka Exp $ -->
878d3073b13833ee1a50dfeabf8e400b6fdfc754Brian Wellington<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
878d3073b13833ee1a50dfeabf8e400b6fdfc754Brian Wellington<meta name="generator" content="DocBook XSL Stylesheets V1.69.1">
ab023a65562e62b85a824509d829b6fad87e00b1Rob Austein<link rel="start" href="Bv9ARM.html" title="BIND 9 Administrator Reference Manual">
ab023a65562e62b85a824509d829b6fad87e00b1Rob Austein<link rel="up" href="Bv9ARM.ch10.html" title="Manual pages">
878d3073b13833ee1a50dfeabf8e400b6fdfc754Brian Wellington<link rel="prev" href="man.named.html" title="named">
878d3073b13833ee1a50dfeabf8e400b6fdfc754Brian Wellington<link rel="next" href="man.rndc.conf.html" title="rndc.conf">
90c099e88e9f16bfee9edee3ac1a51fc98843772Brian Wellington<body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF">
878d3073b13833ee1a50dfeabf8e400b6fdfc754Brian Wellington<table width="100%" summary="Navigation header">
878d3073b13833ee1a50dfeabf8e400b6fdfc754Brian Wellington<tr><th colspan="3" align="center"><span class="application">rndc</span></th></tr>
4e96d1fc0646de4d879e7a0bc1e7aba449a67596Michael Graff<a accesskey="p" href="man.named.html">Prev</a>�</td>
4e96d1fc0646de4d879e7a0bc1e7aba449a67596Michael Graff<th width="60%" align="center">Manual pages</th>
878d3073b13833ee1a50dfeabf8e400b6fdfc754Brian Wellington<td width="20%" align="right">�<a accesskey="n" href="man.rndc.conf.html">Next</a>
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington<a name="man.rndc"></a><div class="titlepage"></div>
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington<p><span class="application">rndc</span> — name server control utility</p>
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington<div class="cmdsynopsis"><p><code class="command">rndc</code> [<code class="option">-b <em class="replaceable"><code>source-address</code></em></code>] [<code class="option">-c <em class="replaceable"><code>config-file</code></em></code>] [<code class="option">-k <em class="replaceable"><code>key-file</code></em></code>] [<code class="option">-s <em class="replaceable"><code>server</code></em></code>] [<code class="option">-p <em class="replaceable"><code>port</code></em></code>] [<code class="option">-V</code>] [<code class="option">-y <em class="replaceable"><code>key_id</code></em></code>] {command}</p></div>
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington<a name="id2583804"></a><h2>DESCRIPTION</h2>
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington<p><span><strong class="command">rndc</strong></span>
878d3073b13833ee1a50dfeabf8e400b6fdfc754Brian Wellington controls the operation of a name
878d3073b13833ee1a50dfeabf8e400b6fdfc754Brian Wellington server. It supersedes the <span><strong class="command">ndc</strong></span> utility
ab023a65562e62b85a824509d829b6fad87e00b1Rob Austein that was provided in old BIND releases. If
8a23742754e4640a298acb0d6bd7ed4da0c11798Brian Wellington <span><strong class="command">rndc</strong></span> is invoked with no command line
8a23742754e4640a298acb0d6bd7ed4da0c11798Brian Wellington options or arguments, it prints a short summary of the
8a23742754e4640a298acb0d6bd7ed4da0c11798Brian Wellington supported commands and the available options and their
8a23742754e4640a298acb0d6bd7ed4da0c11798Brian Wellington<p><span><strong class="command">rndc</strong></span>
90c099e88e9f16bfee9edee3ac1a51fc98843772Brian Wellington communicates with the name server
90c099e88e9f16bfee9edee3ac1a51fc98843772Brian Wellington over a TCP connection, sending commands authenticated with
878d3073b13833ee1a50dfeabf8e400b6fdfc754Brian Wellington digital signatures. In the current versions of
ab023a65562e62b85a824509d829b6fad87e00b1Rob Austein <span><strong class="command">rndc</strong></span> and <span><strong class="command">named</strong></span> named
4e96d1fc0646de4d879e7a0bc1e7aba449a67596Michael Graff the only supported authentication algorithm is HMAC-MD5,
4e96d1fc0646de4d879e7a0bc1e7aba449a67596Michael Graff which uses a shared secret on each end of the connection.
4e96d1fc0646de4d879e7a0bc1e7aba449a67596Michael Graff This provides TSIG-style authentication for the command
8a23742754e4640a298acb0d6bd7ed4da0c11798Brian Wellington request and the name server's response. All commands sent
4e96d1fc0646de4d879e7a0bc1e7aba449a67596Michael Graff over the channel must be signed by a key_id known to the
4e96d1fc0646de4d879e7a0bc1e7aba449a67596Michael Graff<p><span><strong class="command">rndc</strong></span>
ab023a65562e62b85a824509d829b6fad87e00b1Rob Austein reads a configuration file to
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington determine how to contact the name server and decide what
45e1bd63587102c3bb361eaca42ee7b714fb3542Mark Andrews algorithm and key it should use.
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington<dt><span class="term">-b <em class="replaceable"><code>source-address</code></em></span></dt>
4e96d1fc0646de4d879e7a0bc1e7aba449a67596Michael Graff Use <em class="replaceable"><code>source-address</code></em>
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington as the source address for the connection to the server.
4e96d1fc0646de4d879e7a0bc1e7aba449a67596Michael Graff Multiple instances are permitted to allow setting of both
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington the IPv4 and IPv6 source addresses.
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington<dt><span class="term">-c <em class="replaceable"><code>config-file</code></em></span></dt>
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington Use <em class="replaceable"><code>config-file</code></em>
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington as the configuration file instead of the default,
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington <code class="filename">/etc/rndc.conf</code>.
ab023a65562e62b85a824509d829b6fad87e00b1Rob Austein<dt><span class="term">-k <em class="replaceable"><code>key-file</code></em></span></dt>
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington Use <em class="replaceable"><code>key-file</code></em>
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington as the key file instead of the default,
ab023a65562e62b85a824509d829b6fad87e00b1Rob Austein <code class="filename">/etc/rndc.key</code>. The key in
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington <code class="filename">/etc/rndc.key</code> will be used to
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington commands sent to the server if the <em class="replaceable"><code>config-file</code></em>
ab023a65562e62b85a824509d829b6fad87e00b1Rob Austein does not exist.
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington<dt><span class="term">-s <em class="replaceable"><code>server</code></em></span></dt>
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington<dd><p><em class="replaceable"><code>server</code></em> is
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington the name or address of the server which matches a
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington server statement in the configuration file for
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington <span><strong class="command">rndc</strong></span>. If no server is supplied on
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington command line, the host named by the default-server clause
783055c0a61eba5f3a828d1b138155bae575eb14Brian Wellington in the option statement of the configuration file will be
4e96d1fc0646de4d879e7a0bc1e7aba449a67596Michael Graff<dt><span class="term">-p <em class="replaceable"><code>port</code></em></span></dt>
8a23742754e4640a298acb0d6bd7ed4da0c11798Brian Wellington Send commands to TCP port
878d3073b13833ee1a50dfeabf8e400b6fdfc754Brian Wellington <em class="replaceable"><code>port</code></em>