rndc.1 (2010 09)

ManualsBrandsHP ManualsSoftwareHP-UX Manpages

rndc(1) rndc(1)

(BIND 9.3)

NAME

rndc - name server control utility

SYNOPSIS

rndc [-c conﬁg-ﬁle ][

-k keyﬁle ][-p port ][-s

server ][-V][-y key_id ][command]

DESCRIPTION

The

rndc command allows the system administrator to control the operation of a name server. If

rndc

is invoked without any command line options or operands, it prints a short summary of the supported

commands and the available options.

rndc communicates with the name server over a TCP connection, sending commands authenticated with

digital signatures. In the current versions of rndc

, the only supported encryption algorithm is HMAC-

MD5, which uses a shared secret on each end of the connection. This provides TSIG-style authentication

for the command request and the name server’s response. All commands sent over the channel must be

signed by a key_id known to the server.

rndc reads its conﬁguration ﬁle (the default is

/etc/rndc.conf

) to determine how to contact the

name server and to decide what algorithm and keys it should use.

Options

-c config-file

Specify an alternate conﬁguration ﬁle. The default conﬁguration ﬁle is /etc/rndc.conf

-k keyfile

Use keyﬁle as the key ﬁle instead of the default, /etc/rndc.key

. The key in the key ﬁle is

used to authenticate commands sent to the server if the conﬁguration ﬁle does not exist.

-p port Send commands to TCP port number port on the system running the name server. The BIND

9 default control channel port is 953.

-s server

Specify the server on which this command is run. server is the name or address of a server

that matches a server statement in the rndc conﬁguration ﬁle. The default is the host

named by the default-server

clause in the options statement of the rndc conﬁguration

ﬁle.

-V Provide debugging information. This option is primarily of interest to the BIND 9 developers.

-y key_id

Use the key_id from the rndc conﬁguration ﬁle. key_id must also be known to

named with

the same

algorithm and secret string for control message validation to succeed. If the -y

option is not speciﬁed, rndc ﬁrst looks for a key clause in the

server statement of the rndc

conﬁguration ﬁle. If there is no server statement for that host, then it uses the

default-

key clause of the options statement of the rndc conﬁguration ﬁle.

Operands

command One of the following:

dumpdb Dump the current contents of the cache into the ﬁle deﬁned by the dump-

file directive of the options statement in the named conﬁguration ﬁle.

For details and defaults, see named.conf (4).

flush Flush all the server’s caches.

flush view Flush the server’s cache for a view.

flushname name

Flush the given name from the server’s caches.

freeze zone Retransfer the given zone without checking serial number. See also the thaw

command.

halt Stop the server without saving pending updates. See also the stop command.

halt -p Stop the server without saving pending updates, reporting the process ID to

standard output. See also the stop command.

notrace Set the debugging level to 0. See also the trace command.

HP-UX 11i Version 3: September 2010 − 1 − Hewlett-Packard Company 1

Summary of content (2 pages)

PAGE 1
rndc(1) rndc(1) (BIND 9.3) NAME rndc - name server control utility SYNOPSIS rndc [-c config-file ] [-k keyfile ] [-p port ] [-s server ] [-V] [-y key_id ] [command] DESCRIPTION The rndc command allows the system administrator to control the operation of a name server. If rndc is invoked without any command line options or operands, it prints a short summary of the supported commands and the available options.
PAGE 2
rndc(1) rndc(1) (BIND 9.3) querylog Toggle query logging. reconfig Reload configuration file and new zones only. recursing Dump the queries that are currently recursing, into the file named.recursing. refresh zone Schedule immediate zone maintenance for the given zone. Reload configuration file and zones. reload reload zone Reload the given zone. retransfer zone Retransfer a single zone without checking serial number.