server.xml revision 6226
224N/A<?xml version="1.0"?>
224N/A<!--
224N/A
224N/ACDDL HEADER START
224N/A
224N/AThe contents of this file are subject to the terms of the
224N/ACommon Development and Distribution License (the "License").
224N/AYou may not use this file except in compliance with the License.
224N/A
224N/AYou can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
224N/Aor http://www.opensolaris.org/os/licensing.
224N/ASee the License for the specific language governing permissions
224N/Aand limitations under the License.
224N/A
224N/AWhen distributing Covered Code, include this CDDL HEADER in each
224N/Afile and include the License file at usr/src/OPENSOLARIS.LICENSE.
224N/AIf applicable, add the following below this CDDL HEADER, with the
224N/Afields enclosed by brackets "[]" replaced with your own identifying
224N/Ainformation: Portions Copyright [yyyy] [name of copyright owner]
224N/A
224N/ACDDL HEADER END
224N/A-->
224N/A<!DOCTYPE service_bundle SYSTEM "/usr/share/lib/xml/dtd/service_bundle.dtd.1">
224N/A<!--
6225N/ACopyright (c) 2004, 2016, Oracle and/or its affiliates. All rights reserved.
224N/A-->
224N/A
224N/A<!-- Portions Copyright 2007 Vedran Bender -->
224N/A
224N/A<service_bundle type='manifest' name='SUNWbindr:dns-server'>
224N/A
224N/A<service
224N/A name='network/dns/server'
224N/A type='service'
224N/A version='1'>
224N/A
224N/A <dependency
224N/A name='filesystem_minimal'
224N/A grouping='require_all'
224N/A restart_on='none'
224N/A type='service'>
224N/A <service_fmri value='svc:/system/filesystem/local' />
224N/A </dependency>
224N/A
224N/A <dependency
224N/A name='loopback'
224N/A grouping='require_any'
224N/A restart_on='error'
224N/A type='service'>
224N/A <service_fmri value='svc:/network/loopback' />
224N/A </dependency>
224N/A
224N/A <dependency
224N/A name='network'
224N/A grouping='optional_all'
224N/A restart_on='error'
224N/A type='service'>
224N/A <service_fmri value='svc:/milestone/network' />
224N/A </dependency>
224N/A
224N/A <exec_method
224N/A type='method'
224N/A name='stop'
224N/A exec=':kill'
224N/A timeout_seconds='60' />
224N/A
224N/A <!--
6226N/A In order to run multiple named(8) processes with their own
6226N/A configuration file or properties each must have a unique
6226N/A instance.
224N/A -->
224N/A <instance name='default' enabled='false' >
224N/A
224N/A <exec_method
224N/A type='method'
224N/A name='start'
224N/A exec='/lib/svc/method/dns-server %m %i'
224N/A timeout_seconds='60' >
224N/A <method_context>
224N/A <!--
6226N/A privileges: (see privileges(5) and /etc/security/priv_names)
6226N/A file_dac_read, file_dac_search:
6226N/A Necessary for reading the configuration file
6226N/A even if it is restricted by the file
6226N/A permission.
6226N/A net_privaddr:
6226N/A Allow Binding to privileged port-number/proto.
6226N/A *Port* | *Protocol* | *Comment*
6226N/A ~~~~~~~|~~~~~~~~~~~~|~~~~~~~~~~~~~~~~~~~~~~~~~~
6226N/A 53 | TCP/UDP | Domain Queries
6226N/A 80 | TCP | Statistics channel
6226N/A 921 | UDP | Lightweight resolver
6226N/A 953 | TCP | Remote diagnostic control
6226N/A sys_resource:
6226N/A Permit the setting of resource limits
6226N/A (eg. stack size).
224N/A proc_chroot:
6226N/A Permit use of chroot(2).
224N/A -->
224N/A <method_credential
224N/A user='root'
224N/A group='root'
6226N/A privileges='basic,!proc_session,!proc_info,!file_link_any,{net_privaddr}:53/*,{net_privaddr}:80/tcp,{net_privaddr}:921/udp,{net_privaddr}:953/tcp,file_dac_read,file_dac_search,sys_resource,proc_chroot'
6226N/A />
224N/A </method_context>
224N/A </exec_method>
224N/A
224N/A <!--
6226N/A SIGHUP causes named to reread its configuration file, but not any
6226N/A of the properties below.
224N/A -->
224N/A <exec_method
224N/A type='method'
224N/A name='refresh'
224N/A exec=':kill -HUP'
224N/A timeout_seconds='60'>
224N/A <method_context/>
224N/A </exec_method>
224N/A
224N/A <property_group name='general' type='framework'>
224N/A <!-- manage DNS server state -->
224N/A <propval name='action_authorization' type='astring'
224N/A value='solaris.smf.manage.bind' />
224N/A <propval name='value_authorization' type='astring'
224N/A value='solaris.smf.manage.bind' />
224N/A </property_group>
224N/A
4978N/A <!-- Default property settings for named(8) instance. -->
224N/A <property_group name='options' type='application'>
224N/A
224N/A <!--
224N/A server: specifies an alternative server command. If
224N/A not specified the default /usr/sbin/named is used.
224N/A -->
224N/A <propval name='server' type='astring' value='' />
224N/A
224N/A <!--
224N/A configuration_file: specifies an alternative
224N/A configuration file to be used. The property is similar
4978N/A to named(8) command line option '-c'
224N/A -->
224N/A <propval name='configuration_file' type='astring' value='' />
224N/A <!--
224N/A ip_interfaces: specifies which IP transport BIND will
224N/A transmit on. Possible values are 'IPv4' or 'IPv6'. Any
224N/A other setting assumes 'all', the default.
224N/A Equivalent command line option '-4' or '-6'.
224N/A -->
224N/A <propval name='ip_interfaces' type='astring' value='all' />
224N/A
224N/A <!--
224N/A listen_on_port: Specifies the default UDP and TCP port
224N/A which will be used to listen for DNS requests.
224N/A Equivalent command line option '-p <integer>'.
224N/A -->
224N/A <propval name='listen_on_port' type='integer' value='0' />
224N/A
224N/A <!--
224N/A debug_level: Specifies the default debug level. The
224N/A default is 0; no debugging. The Higher the number the
224N/A more verbose debug information becomes.
224N/A Equivalent command line option '-d <integer>'.
224N/A -->
224N/A <propval name='debug_level' type='integer' value='0' />
224N/A
224N/A <!--
224N/A threads: Specifies the number of cpu worker threads to
224N/A create. The default of 0 causes named to try and
224N/A determine the number of CPUs present and create one
224N/A thread per CPU.
224N/A Equivalent command line option '-n <integer>'.
224N/A -->
224N/A <propval name='threads' type='integer' value='0' />
224N/A
224N/A <!--
224N/A chroot_dir: Change the root directory using chroot(2)
224N/A to directory after processing the command line
224N/A arguments, but before reading the configuration file.
224N/A Equivalent command line option '-t <pathname>'.
224N/A -->
224N/A <propval name='chroot_dir' type='astring' value='' />
224N/A
6225N/A <!--
6225N/A listener_threads: Specifies the number of listener
6225N/A worker threads to listen for incoming UDP packets on
6225N/A each address. If not specified, named will calculate
6225N/A a default value based on the number of detected CPUs:
6225N/A 1 for 1 CPU, 2 for 2-4 CPUs, and the number of
6225N/A detected CPUs divided by 2 for values higher than
6225N/A 4. If 'threads' has been set to a higher value than
6225N/A the number of detected CPUs, then 'listener_threads'
6225N/A may be increased as high as that value, but no higher.
6225N/A Equivalent command line option '-U <integer>'.
6225N/A -->
6225N/A <propval name='listener_threads' type='integer' value='0' />
6225N/A
6225N/A <!--
6225N/A crypto_engine: Specify an alternative OpenSSL engine
6225N/A for crypto operations.
6225N/A Equivalent command line option '-E <engine-name>'.
6225N/A -->
6225N/A <propval name='crypto_engine' type='astring' value='' />
6225N/A
224N/A </property_group>
224N/A
224N/A </instance>
224N/A
224N/A <stability value='Unstable' />
224N/A
224N/A <template>
224N/A <common_name>
224N/A <loctext xml:lang='C'>
224N/A BIND DNS server
224N/A </loctext>
224N/A </common_name>
224N/A <documentation>
6225N/A <manpage title='dns-server' section='8s'
6226N/A manpath='/usr/man' />
224N/A </documentation>
224N/A </template>
224N/A
224N/A</service>
224N/A
224N/A</service_bundle>