NSD(8) NSD 4.8.0 NSD(8) #
NSD(8) NSD 4.8.0 NSD(8) #
NNAAMMEE #
nnssdd - Name Server Daemon (NSD) version 4.8.0.
SSYYNNOOPPSSIISS #
nnssdd [--44] [--66] [--aa _i_p_-_a_d_d_r_e_s_s_[_@_p_o_r_t_]] [--cc _c_o_n_f_i_g_f_i_l_e] [--dd] [--ff _d_a_t_a_b_a_s_e]
[--hh] [--ii _i_d_e_n_t_i_t_y] [--II _n_s_i_d] [--ll _l_o_g_f_i_l_e] [--NN _s_e_r_v_e_r_-_c_o_u_n_t] [--nn
_n_o_n_c_u_r_r_e_n_t_-_t_c_p_-_c_o_u_n_t] [--PP _p_i_d_f_i_l_e] [--pp _p_o_r_t] [--ss _s_e_c_o_n_d_s] [--tt _c_h_r_o_o_t_d_i_r]
[--uu _u_s_e_r_n_a_m_e] [--VV _l_e_v_e_l] [--vv]
DDEESSCCRRIIPPTTIIOONN #
NNSSDD is a complete implementation of an authoritative DNS nameserver.
Upon startup, NNSSDD will read the database specified with --ff _d_a_t_a_b_a_s_e
argument and put itself into background and answers queries on port 53 or
a different port specified with --pp _p_o_r_t option. The _d_a_t_a_b_a_s_e is created
if it does not exist. By default, NNSSDD will bind to all local interfaces
available. Use the --aa _i_p_-_a_d_d_r_e_s_s_[_@_p_o_r_t_] option to specify a single
particular interface address to be bound. If this option is given more
than once, NNSSDD will bind its UDP and TCP sockets to all the specified
ip-addresses separately. If IPv6 is enabled when NNSSDD is compiled an IPv6
address can also be specified.
OOPPTTIIOONNSS #
All the options can be specified in the configfile ( --cc argument), except
for the --vv and --hh options. If options are specified on the commandline,
the options on the commandline take precedence over the options in the
configfile.
Normally NNSSDD should be started with the `nsd-control(8) start` command
invoked from a _/_e_t_c_/_r_c_._d_/_n_s_d_._s_h script or similar at the operating system
startup.
--44 Only listen to IPv4 connections.
--66 Only listen to IPv6 connections.
--aa _i_p_-_a_d_d_r_e_s_s_[_@_p_o_r_t_]
Listen to the specified _i_p_-_a_d_d_r_e_s_s. The _i_p_-_a_d_d_r_e_s_s must be
specified in numeric format (using the standard IPv4 or IPv6
notation). Optionally, a port number can be given. This flag can
be specified multiple times to listen to multiple IP addresses. If
this flag is not specified, NNSSDD listens to the wildcard interface.
--cc _c_o_n_f_i_g_f_i_l_e
Read specified _c_o_n_f_i_g_f_i_l_e instead of the default
_/_v_a_r_/_n_s_d_/_e_t_c_/_n_s_d_._c_o_n_f. For format description see nsd.conf(5).
--dd Do not fork, stay in the foreground.
--hh Print help information and exit.
--ii _i_d_e_n_t_i_t_y
Return the specified _i_d_e_n_t_i_t_y when asked for _C_H _T_X_T _I_D_._S_E_R_V_E_R
(This option is used to determine which server is answering the
queries when they are anycast). The default is the name returned
by gethostname(3).
--II _n_s_i_d
Add the specified _n_s_i_d to the EDNS section of the answer when
queried with an NSID EDNS enabled packet. As a sequence of hex
characters or with ascii_ prefix and then an ascii string.
--ll _l_o_g_f_i_l_e
Log messages to the specified _l_o_g_f_i_l_e. The default is to log to
stderr and syslog. If a zzoonneessddiirr:: is specified in the config file
this path can be relative to that directory.
--NN _c_o_u_n_t
Start _c_o_u_n_t NNSSDD servers. The default is 1. Starting more than a
single server is only useful on machines with multiple CPUs and/or
network adapters.
--nn _n_u_m_b_e_r
The maximum _n_u_m_b_e_r of concurrent TCP connection that can be
handled by each server. The default is 100.
--PP _p_i_d_f_i_l_e
Use the specified _p_i_d_f_i_l_e instead of the platform specific
default, which is mostly _. If a zzoonneessddiirr:: is specified in the
config file, this path can be relative to that directory.
--pp _p_o_r_t
Answer the queries on the specified _p_o_r_t. Normally this is port
53.
--ss _s_e_c_o_n_d_s
Produce statistics dump every _s_e_c_o_n_d_s seconds. This is equal to
sending _S_I_G_U_S_R_1 to the daemon periodically.
--tt _c_h_r_o_o_t
Specifies a directory to _c_h_r_o_o_t to upon startup. This option
requires you to ensure that appropriate syslogd(8) socket (e.g.
_c_h_r_o_o_t_d_i_r /dev/log) is available, otherwise NNSSDD won't produce any
log output.
--uu _u_s_e_r_n_a_m_e
Drop user and group privileges to those of _u_s_e_r_n_a_m_e after binding
the socket. The _u_s_e_r_n_a_m_e must be one of: username, id, or id.gid.
For example: nsd, 80, or 80.80.
--VV _l_e_v_e_l
This value specifies the verbosity level for (non-debug) logging.
Default is 0.
--vv Print the version number of NNSSDD to standard error and exit.
NNSSDD reacts to the following signals:
SIGTERM #
Stop answering queries, shutdown, and exit normally.
SIGHUP Reload. Scans zone files and if changed (mtime) reads them in.
Also reopens the logfile (assists logrotation).
SIGUSR1 #
Dump BIND8-style statistics into the log. Ignored otherwise.
FFIILLEESS #
the process id of the name server.
/var/nsd/etc/nsd.conf
default NNSSDD configuration file
DDIIAAGGNNOOSSTTIICCSS #
NNSSDD will log all the problems via the standard syslog(8) _d_a_e_m_o_n facility,
unless the --dd option is specified.
SSEEEE AALLSSOO #
_n_s_d_._c_o_n_f(5), _n_s_d_-_c_h_e_c_k_c_o_n_f(8), _n_s_d_-_c_o_n_t_r_o_l(8)
AAUUTTHHOORRSS #
NNSSDD was written by NLnet Labs and RIPE NCC joint team. Please see CREDITS
file in the distribution for further details.
NLnet Labs December 6, 2023 NSD(8)