1 <!DOCTYPE book PUBLIC "-//OASIS//DTD DocBook XML V4.0//EN"
2 "http://www.oasis-open.org/docbook/xml/4.0/docbookx.dtd"
3 [<!ENTITY mdash "—">]>
5 - Copyright (C) 2004-2006 Internet Systems Consortium, Inc. ("ISC")
6 - Copyright (C) 2000, 2001, 2003 Internet Software Consortium.
8 - Permission to use, copy, modify, and distribute this software for any
9 - purpose with or without fee is hereby granted, provided that the above
10 - copyright notice and this permission notice appear in all copies.
12 - THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
13 - REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
14 - AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
15 - INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
16 - LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
17 - OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
18 - PERFORMANCE OF THIS SOFTWARE.
21 <!-- $Id: named.docbook,v 1.5.98.7 2006/01/17 23:49:30 marka Exp $ -->
25 <date>June 30, 2000</date>
29 <refentrytitle><application>named</application></refentrytitle>
30 <manvolnum>8</manvolnum>
31 <refmiscinfo>BIND9</refmiscinfo>
39 <holder>Internet Systems Consortium, Inc. ("ISC")</holder>
45 <holder>Internet Software Consortium.</holder>
50 <refname><application>named</application></refname>
51 <refpurpose>Internet domain name server</refpurpose>
56 <command>named</command>
57 <arg><option>-4</option></arg>
58 <arg><option>-6</option></arg>
59 <arg><option>-c <replaceable class="parameter">config-file</replaceable></option></arg>
60 <arg><option>-d <replaceable class="parameter">debug-level</replaceable></option></arg>
61 <arg><option>-f</option></arg>
62 <arg><option>-g</option></arg>
63 <arg><option>-n <replaceable class="parameter">#cpus</replaceable></option></arg>
64 <arg><option>-p <replaceable class="parameter">port</replaceable></option></arg>
65 <arg><option>-s</option></arg>
66 <arg><option>-t <replaceable class="parameter">directory</replaceable></option></arg>
67 <arg><option>-u <replaceable class="parameter">user</replaceable></option></arg>
68 <arg><option>-v</option></arg>
69 <arg><option>-x <replaceable class="parameter">cache-file</replaceable></option></arg>
74 <title>DESCRIPTION</title>
76 <command>named</command> is a Domain Name System (DNS) server,
77 part of the BIND 9 distribution from ISC. For more
78 information on the DNS, see RFCs 1033, 1034, and 1035.
81 When invoked without arguments, <command>named</command> will
82 read the default configuration file
83 <filename>/etc/named.conf</filename>, read any initial
84 data, and listen for queries.
89 <title>OPTIONS</title>
96 Use IPv4 only even if the host machine is capable of IPv6.
97 <option>-4</option> and <option>-6</option> are mutually
107 Use IPv6 only even if the host machine is capable of IPv4.
108 <option>-4</option> and <option>-6</option> are mutually
114 <term>-c <replaceable class="parameter">config-file</replaceable></term>
118 class="parameter">config-file</replaceable> as the
119 configuration file instead of the default,
120 <filename>/etc/named.conf</filename>. To
121 ensure that reloading the configuration file continues
122 to work after the server has changed its working
123 directory due to to a possible
124 <option>directory</option> option in the configuration
126 class="parameter">config-file</replaceable> should be
127 an absolute pathname.
133 <term>-d <replaceable class="parameter">debug-level</replaceable></term>
136 Set the daemon's debug level to <replaceable
137 class="parameter">debug-level</replaceable>.
138 Debugging traces from <command>named</command> become
139 more verbose as the debug level increases.
148 Run the server in the foreground (i.e. do not daemonize).
157 Run the server in the foreground and force all logging
158 to <filename>stderr</filename>.
164 <term>-n <replaceable class="parameter">#cpus</replaceable></term>
168 class="parameter">#cpus</replaceable> worker threads
169 to take advantage of multiple CPUs. If not specified,
170 <command>named</command> will try to determine the
171 number of CPUs present and create one thread per CPU.
172 If it is unable to determine the number of CPUs, a
173 single worker thread will be created.
179 <term>-p <replaceable class="parameter">port</replaceable></term>
182 Listen for queries on port <replaceable
183 class="parameter">port</replaceable>. If not
184 specified, the default is port 53.
193 Write memory usage statistics to <filename>stdout</filename> on exit.
197 This option is mainly of interest to BIND 9 developers
198 and may be removed or changed in a future release.
205 <term>-t <replaceable class="parameter">directory</replaceable></term>
208 <function>chroot()</function> to <replaceable
209 class="parameter">directory</replaceable> after
210 processing the command line arguments, but before
211 reading the configuration file.
215 This option should be used in conjunction with the
216 <option>-u</option> option, as chrooting a process
217 running as root doesn't enhance security on most
218 systems; the way <function>chroot()</function> is
219 defined allows a process with root privileges to
220 escape a chroot jail.
227 <term>-u <replaceable class="parameter">user</replaceable></term>
230 <function>setuid()</function> to <replaceable
231 class="parameter">user</replaceable> after completing
232 privileged operations, such as creating sockets that
233 listen on privileged ports.
237 On Linux, <command>named</command> uses the kernel's
238 capability mechanism to drop all root privileges
239 except the ability to <function>bind()</function> to a
240 privileged port and set process resource limits.
241 Unfortunately, this means that the <option>-u</option>
242 option only works when <command>named</command> is run
243 on kernel 2.2.18 or later, or kernel 2.3.99-pre3 or
244 later, since previous kernels did not allow privileges
245 to be retained after <function>setuid()</function>.
255 Report the version number and exit.
261 <term>-x <replaceable class="parameter">cache-file</replaceable></term>
264 Load data from <replaceable
265 class="parameter">cache-file</replaceable> into the
266 cache of the default view.
270 This option must not be used. It is only of interest
271 to BIND 9 developers and may be removed or changed in a
283 <title>SIGNALS</title>
285 In routine operation, signals should not be used to control
286 the nameserver; <command>rndc</command> should be used
296 Force a reload of the server.
302 <term>SIGINT, SIGTERM</term>
305 Shut down the server.
313 The result of sending any other signals to the server is undefined.
319 <title>CONFIGURATION</title>
321 The <command>named</command> configuration file is too complex
322 to describe in detail here. A complete description is
323 provided in the <citetitle>BIND 9 Administrator Reference
334 <term><filename>/etc/named.conf</filename></term>
337 The default configuration file.
343 <term><filename>/var/run/named.pid</filename></term>
346 The default process-id file.
356 <title>SEE ALSO</title>
358 <citetitle>RFC 1033</citetitle>,
359 <citetitle>RFC 1034</citetitle>,
360 <citetitle>RFC 1035</citetitle>,
362 <refentrytitle>rndc</refentrytitle>
363 <manvolnum>8</manvolnum>
366 <refentrytitle>lwresd</refentrytitle>
367 <manvolnum>8</manvolnum>
370 <refentrytitle>named.conf</refentrytitle>
371 <manvolnum>5</manvolnum>
373 <citetitle>BIND 9 Administrator Reference Manual</citetitle>.
378 <title>AUTHOR</title>
380 <corpauthor>Internet Systems Consortium</corpauthor>