logo

oasis-root

Compiled tree of Oasis Linux based on own branch at <https://hacktivis.me/git/oasis/> git clone https://anongit.hacktivis.me/git/oasis-root.git

nsd.8 (5576B)


  1. .TH "NSD" "8" "Apr 6, 2021" "NLnet Labs" "NSD 4.3.6"
  2. .\" Copyright (c) 2001\-2008, NLnet Labs. All rights reserved.
  3. .\" See LICENSE for the license.
  4. .SH "NAME"
  5. .B nsd
  6. \- Name Server Daemon (NSD) version 4.3.6.
  7. .SH "SYNOPSIS"
  8. .B nsd
  9. .RB [ \-4 ]
  10. .RB [ \-6 ]
  11. .RB [ \-a
  12. .IR ip\-address[@port] ]
  13. .RB [ \-c
  14. .IR configfile ]
  15. .RB [ \-d ]
  16. .RB [ \-f
  17. .IR database ]
  18. .RB [ \-h ]
  19. .RB [ \-i
  20. .IR identity ]
  21. .RB [ \-I
  22. .IR nsid ]
  23. .RB [ \-l
  24. .IR logfile ]
  25. .RB [ \-N
  26. .IR server\-count ]
  27. .RB [ \-n
  28. .IR noncurrent\-tcp\-count ]
  29. .RB [ \-P
  30. .IR pidfile ]
  31. .RB [ \-p
  32. .IR port ]
  33. .RB [ \-s
  34. .IR seconds ]
  35. .RB [ \-t
  36. .IR chrootdir ]
  37. .RB [ \-u
  38. .IR username ]
  39. .RB [ \-V
  40. .IR level ]
  41. .RB [ \-v ]
  42. .SH "DESCRIPTION"
  43. .B NSD
  44. is a complete implementation of an authoritative DNS nameserver.
  45. Upon startup,
  46. .B NSD
  47. will read the database specified with
  48. .B \-f
  49. .I database
  50. argument and put itself into background and answers queries on port
  51. 53 or a different port specified with
  52. .B \-p
  53. .I port
  54. option. The
  55. .I database
  56. is created if it does not exist. By default,
  57. .B NSD
  58. will bind to all local interfaces available. Use the
  59. .B \-a
  60. .I ip\-address[@port]
  61. option to specify a single particular interface address to be
  62. bound. If this option is given more than once,
  63. .B NSD
  64. will bind its UDP and TCP sockets to all the specified ip\-addresses
  65. separately. If IPv6 is enabled when
  66. .B NSD
  67. is compiled an IPv6 address can also be specified.
  68. .P
  69. .SH "OPTIONS"
  70. All the options can be specified in the configfile (
  71. .B \-c
  72. argument), except for the
  73. .B \-v
  74. and
  75. .B \-h
  76. options. If options are specified on the commandline, the options
  77. on the commandline take precedence over the options in the
  78. configfile.
  79. .P
  80. Normally
  81. .B NSD
  82. should be started with the `nsd\-control(8) start` command invoked from a
  83. .I /etc/rc.d/nsd.sh
  84. script or similar at the operating system startup.
  85. .TP
  86. .B \-4
  87. Only listen to IPv4 connections.
  88. .TP
  89. .B \-6
  90. Only listen to IPv6 connections.
  91. .TP
  92. .B \-a\fI ip\-address[@port]
  93. Listen to the specified
  94. .IR ip\-address .
  95. The
  96. .I ip\-address
  97. must be specified in numeric format (using the standard IPv4 or IPv6
  98. notation). Optionally, a port number can be given.
  99. This flag can be specified multiple times to listen to
  100. multiple IP addresses. If this flag is not specified,
  101. .B NSD
  102. listens to the wildcard interface.
  103. .TP
  104. .B \-c\fI configfile
  105. Read specified
  106. .I configfile
  107. instead of the default
  108. .IR /etc/nsd/nsd.conf .
  109. For format description see nsd.conf(5).
  110. .TP
  111. .B \-d
  112. Do not fork, stay in the foreground.
  113. .TP
  114. .B \-f\fI database
  115. Use the specified
  116. .I database
  117. instead of the default of
  118. .IR /var/db/nsd/nsd.db .
  119. If a
  120. .B zonesdir:
  121. is specified in the config file this path can be relative to that
  122. directory.
  123. .TP
  124. .B \-h
  125. Print help information and exit.
  126. .TP
  127. .B \-i\fI identity
  128. Return the specified
  129. .I identity
  130. when asked for
  131. .I CH TXT ID.SERVER
  132. (This option is used to determine which server is answering the queries
  133. when they are anycast). The default is the name returned by gethostname(3).
  134. .TP
  135. .B \-I\fI nsid
  136. Add the specified
  137. .I nsid
  138. to the EDNS section of the answer when queried with an NSID EDNS
  139. enabled packet. As a sequence of hex characters or with ascii_ prefix
  140. and then an ascii string.
  141. .TP
  142. .B \-l\fI logfile
  143. Log messages to the specified
  144. .IR logfile .
  145. The default is to log to stderr and syslog. If a
  146. .B zonesdir:
  147. is specified in the config file this path can be relative to that
  148. directory.
  149. .TP
  150. .B \-N\fI count
  151. Start
  152. .I count
  153. .B NSD
  154. servers. The default is 1. Starting more than a single server is
  155. only useful on machines with multiple CPUs and/or network adapters.
  156. .TP
  157. .B \-n\fI number
  158. The maximum
  159. .I number
  160. of concurrent TCP connection that can be handled by each server. The
  161. default is 100.
  162. .TP
  163. .B \-P\fI pidfile
  164. Use the specified
  165. .I pidfile
  166. instead of the platform specific default, which is mostly
  167. .IR /run/nsd.pid .
  168. If a
  169. .B zonesdir:
  170. is specified in the config file, this path can be relative to that
  171. directory.
  172. .TP
  173. .B \-p\fI port
  174. Answer the queries on the specified
  175. .IR port .
  176. Normally this is port 53.
  177. .TP
  178. .B \-s\fI seconds
  179. Produce statistics dump every
  180. .I seconds
  181. seconds. This is equal to sending
  182. .I SIGUSR1
  183. to the daemon periodically.
  184. .TP
  185. .B \-t\fI chroot
  186. Specifies a directory to
  187. .I chroot
  188. to upon startup. This option requires you to ensure that appropriate
  189. syslogd(8) socket (e.g.
  190. .I chrootdir
  191. /dev/log) is available, otherwise
  192. .B NSD
  193. won't produce any log output.
  194. .TP
  195. .B \-u\fI username
  196. Drop user and group privileges to those of
  197. .I username
  198. after binding the socket.
  199. The
  200. .I username
  201. must be one of: username, id, or id.gid. For example: nsd, 80, or
  202. 80.80.
  203. .TP
  204. .B \-V\fI level
  205. This value specifies the verbosity level for (non\-debug) logging.
  206. Default is 0.
  207. .TP
  208. .B \-v
  209. Print the version number of
  210. .B NSD
  211. to standard error and exit.
  212. .LP
  213. .B NSD
  214. reacts to the following signals:
  215. .TP
  216. SIGTERM
  217. Stop answering queries, shutdown, and exit normally.
  218. .TP
  219. SIGHUP
  220. Reload. Scans zone files and if changed (mtime) reads
  221. them in. Also reopens the logfile (assists logrotation).
  222. .TP
  223. SIGUSR1
  224. Dump BIND8\-style statistics into the log. Ignored otherwise.
  225. .SH "FILES"
  226. .TP
  227. /var/db/nsd/nsd.db
  228. default
  229. .B NSD
  230. database
  231. .TP
  232. /run/nsd.pid
  233. the process id of the name server.
  234. .TP
  235. /etc/nsd/nsd.conf
  236. default
  237. .B NSD
  238. configuration file
  239. .SH "DIAGNOSTICS"
  240. .B NSD
  241. will log all the problems via the standard syslog(8)
  242. .I daemon
  243. facility, unless the
  244. .B \-d
  245. option is specified.
  246. .SH "SEE ALSO"
  247. \fInsd.conf\fR(5), \fInsd\-checkconf\fR(8), \fInsd\-control\fR(8)
  248. .SH "AUTHORS"
  249. .B NSD
  250. was written by NLnet Labs and RIPE NCC joint team. Please see
  251. CREDITS file in the distribution for further details.