|
|
BIND 9.2.0 Release Notes: HP-UX 11i v1 > Chapter 1 New
and Changed FeaturesNew BIND 9.2.0 Features |
|
This section describes the new features in BIND 9.2.0. The following lists the new options added in the Options statement:
The bogus option can be used to prevent queries to a remote server which is giving out invalid data. The default value of bogus is no. The syntax of bogus option in the “Server” statement is as shown below:
The following lists the new options added in “Zone” statement:
rndc-confgen can be used to generate rndc.conf, the configuration file for rndc. Alternatively, it can also be run with the -a option to set up a rndc.key file thus avoiding the need for a rndc.conf file and a control statement. rndc-confgen is run on the command line as:
Where “-a” option is used to configure rndc automatically. This creates a file rndc.key in /etc which is read by both rndc and named on start-up. “-b keysize” is used to specify the size of the authentication key in bits. The value must range between 1 and 512. Default is 128 bits. “-c keyfile” is used with the -a option to specify an alternate location for the rndc.key file. “-h” is used to print a short summary of the options and arguments to rndc-confgen utility. “-k keyname” is used to specify the key name of the rndc authentication key. This must be a valid domain name. Default is rndc-key. “-p port” is used to specify the command channel port where named listens for connections from rndc. Default is 953. “-r random file” is used to specify a source file of random data for generating the authorization. Default is the /dev/random file, otherwise the input from the keyboard is accepted. “-s address” is used to specify the IP address where named listens for command channel connections from rndc. Default is the loopback address 127.0.0.1. “-t chrootdir” is used with the -a option to specify a directory where named will run chrooted. An additional copy of the rndc.key will be written relative to this directory so that it will be found by the chrooted named. “-u user” is used with the -a option to set the owner of the generated rndc.key file. If -t is also specified, the owner of the file in chroot area will be changed.
Table 1-1 “New Command Line Options” lists the new command line options that have been added for the various binaries and tools in BIND 9.2.0. Table 1-1 New Command Line Options
The remote name daemon control (rndc) program allows the system administrators to control the operations of a name server. The following lists the new commands added in rndc:
rndc is run on the command line as:
Where -c config file is used to specify an alternate configuration file. The default configuration file is /etc/rndc.conf. -s server is used to specify the server whose operation needs to be controlled. -p port is used to instruct rndc that it should send commands to TCP port number port on the system running the name server instead of BIND 9.2.0’s default control channel port, 953. -y key identifies the key-id to use from the configuration file and command is one of the following: Table 1-2 rndc commands
|
|