man.rndc.html revision acb72d5e2c83b597332e3eb0c7d59e1142f1adfd
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews - Copyright (C) 2004-2006 Internet Systems Consortium, Inc. ("ISC")
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt - Copyright (C) 2000-2003 Internet Software Consortium.
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews - Permission to use, copy, modify, and distribute this software for any
0c27b3fe77ac1d5094ba3521e8142d9e7973133fMark Andrews - purpose with or without fee is hereby granted, provided that the above
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt - copyright notice and this permission notice appear in all copies.
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt - THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
83a28ca274521e15086fc39febde507bcc4e145eMark Andrews - REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt - AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt - INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt - LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt - PERFORMANCE OF THIS SOFTWARE.
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<!-- $Id: man.rndc.html,v 1.37 2006/12/04 20:51:25 marka Exp $ -->
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<meta name="generator" content="DocBook XSL Stylesheets V1.70.1">
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<link rel="start" href="Bv9ARM.html" title="BIND 9 Administrator Reference Manual">
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<link rel="up" href="Bv9ARM.ch10.html" title="Manual pages">
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<link rel="prev" href="man.named.html" title="named">
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<link rel="next" href="man.rndc.conf.html" title="rndc.conf">
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<body bgcolor="white" text="black" link="#0000FF" vlink="#840084" alink="#0000FF">
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<tr><th colspan="3" align="center"><span class="application">rndc</span></th></tr>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<a accesskey="p" href="man.named.html">Prev</a>�</td>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<td width="20%" align="right">�<a accesskey="n" href="man.rndc.conf.html">Next</a>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt<a name="man.rndc"></a><div class="titlepage"></div>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<p><span class="application">rndc</span> — name server control utility</p>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<div class="cmdsynopsis"><p><code class="command">rndc</code> [<code class="option">-b <em class="replaceable"><code>source-address</code></em></code>] [<code class="option">-c <em class="replaceable"><code>config-file</code></em></code>] [<code class="option">-k <em class="replaceable"><code>key-file</code></em></code>] [<code class="option">-s <em class="replaceable"><code>server</code></em></code>] [<code class="option">-p <em class="replaceable"><code>port</code></em></code>] [<code class="option">-V</code>] [<code class="option">-y <em class="replaceable"><code>key_id</code></em></code>] {command}</p></div>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<p><span><strong class="command">rndc</strong></span>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt controls the operation of a name
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt server. It supersedes the <span><strong class="command">ndc</strong></span> utility
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt that was provided in old BIND releases. If
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt <span><strong class="command">rndc</strong></span> is invoked with no command line
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt options or arguments, it prints a short summary of the
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt supported commands and the available options and their
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<p><span><strong class="command">rndc</strong></span>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt communicates with the name server
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt over a TCP connection, sending commands authenticated with
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt digital signatures. In the current versions of
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt <span><strong class="command">rndc</strong></span> and <span><strong class="command">named</strong></span> named
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt the only supported authentication algorithm is HMAC-MD5,
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt which uses a shared secret on each end of the connection.
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt This provides TSIG-style authentication for the command
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt request and the name server's response. All commands sent
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt over the channel must be signed by a key_id known to the
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<p><span><strong class="command">rndc</strong></span>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt reads a configuration file to
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt determine how to contact the name server and decide what
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt algorithm and key it should use.
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<dt><span class="term">-b <em class="replaceable"><code>source-address</code></em></span></dt>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt Use <em class="replaceable"><code>source-address</code></em>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt as the source address for the connection to the server.
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt Multiple instances are permitted to allow setting of both
b1866070ef4fb9e17bff16ad458f629bbc5a4accwpk the IPv4 and IPv6 source addresses.
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<dt><span class="term">-c <em class="replaceable"><code>config-file</code></em></span></dt>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt Use <em class="replaceable"><code>config-file</code></em>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt as the configuration file instead of the default,
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt<dt><span class="term">-k <em class="replaceable"><code>key-file</code></em></span></dt>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt Use <em class="replaceable"><code>key-file</code></em>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt as the key file instead of the default,
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt <code class="filename">/etc/rndc.key</code>. The key in
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt <code class="filename">/etc/rndc.key</code> will be used to
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt authenticate
19977879caf8579a5fafb0cf3bf1cb983063796cEvan Hunt commands sent to the server if the <em class="replaceable"><code>config-file</code></em>
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt does not exist.
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt<dt><span class="term">-s <em class="replaceable"><code>server</code></em></span></dt>
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt<dd><p><em class="replaceable"><code>server</code></em> is
b66b333f59cf51ef87f973084a5023acd9317fb2Evan Hunt the name or address of the server which matches a
14a656f94b1fd0ababd84a772228dfa52276ba15Evan Hunt server statement in the configuration file for