スポンサーリンク

NAMED.CONF

名称
書式
解説
ACL ステートメント
KEY ステートメント
MASTERS ステートメント
SERVER ステートメント
TRUSTED-KEYS ステートメント
CONTROLS ステートメント
LOGGING ステートメント
LWRES ステートメント
OPTIONS ステートメント
VIEW ステートメント
ZONE ステートメント
関連ファイル
関連項目

名称

named.conf − named 用設定ファイル

書式

named.conf

解説

named.confnamed 用の設定ファイルです。ステートメントはブレースで囲 まれ、セミコロンで終わります。ステートメント内で節をとる場合もセミコ ロ ン終端です。通常のコメントスタイルがサポートされています:

C スタイル: /* */

C++ スタイル: // 行末までコメント

Unix スタイル: # 行末までコメント

ACL ステートメント

acl string { address_match_element; ... };

KEY ステートメント

key domain_name {

algorithm string;

secret string;

};

MASTERS ステートメント

masters string [ port integer ] {

( masters | ipv4_address [port integer] |

ipv6_address [port integer] ) [ key string ]; ...

};

SERVER ステートメント

server ( ipv4_address | ipv6_address ) {

bogus boolean;

edns boolean;

provide-ixfr boolean;

request-ixfr boolean;

keys server_key;

transfers integer;

transfer-format ( many-answers | one-answer );

transfer-source ( ipv4_address | * )

[ port ( integer | * ) ];

transfer-source-v6 ( ipv6_address | * )

[ port ( integer | * ) ];

support-ixfr boolean; // 古い指定です

};

TRUSTED-KEYS ステートメント

trusted-keys {

domain_name flags protocol algorithm key; ...

};

CONTROLS ステートメント

controls {

inet ( ipv4_address | ipv6_address | * )

[ port ( integer | * ) ]

allow { address_match_element; ... }

[ keys { string; ... } ];

unix unsupported; // 実装されません

};

LOGGING ステートメント

logging {

channel string {

file log_file;

syslog optional_facility;

null;

stderr;

severity log_severity;

print-time boolean;

print-severity boolean;

print-category boolean;

};

category string { string; ... };

};

LWRES ステートメント

lwres {

listen-on [ port integer ] {

( ipv4_address | ipv6_address ) [ port integer ]; ...

};

view string optional_class;

search { string; ... };

ndots integer;

};

OPTIONS ステートメント

options {

avoid-v4-udp-ports { port; ... };

avoid-v6-udp-ports { port; ... };

blackhole { address_match_element; ... };

coresize size;

datasize size;

directory quoted_string;

dump-file quoted_string;

files size;

heartbeat-interval integer;

host-statistics boolean; // 実装されません

host-statistics-max number; // 実装されません

hostname ( quoted_string | none );

interface-interval integer;

listen-on [ port integer ] { address_match_element; ... };

listen-on-v6 [ port integer ] { address_match_element; ... };

match-mapped-addresses boolean;

memstatistics-file quoted_string;

pid-file ( quoted_string | none );

port integer;

querylog boolean;

recursing-file quoted_string;

random-device quoted_string;

recursive-clients integer;

serial-query-rate integer;

server-id ( quoted_string | none |;

stacksize size;

statistics-file quoted_string;

statistics-interval integer; // 未実装です

tcp-clients integer;

tcp-listen-queue integer;

tkey-dhkey quoted_string integer;

tkey-gssapi-credential quoted_string;

tkey-domain quoted_string;

transfers-per-ns integer;

transfers-in integer;

transfers-out integer;

use-ixfr boolean;

version ( quoted_string | none );

allow-recursion { address_match_element; ... };

sortlist { address_match_element; ... };

topology { address_match_element; ... }; // 実装されません

auth-nxdomain boolean; // デフォルトが変更されました

minimal-responses boolean;

recursion boolean;

rrset-order {

[ class string ] [ type string ]

[ name quoted_string ] string string; ...

};

provide-ixfr boolean;

request-ixfr boolean;

rfc2308-type1 boolean; // 未実装です

additional-from-auth boolean;

additional-from-cache boolean;

query-source querysource4;

query-source-v6 querysource6;

cleaning-interval integer;

min-roots integer; // 実装されません

lame-ttl integer;

max-ncache-ttl integer;

max-cache-ttl integer;

transfer-format ( many-answers | one-answer );

max-cache-size size_no_default;

check-names ( master | slave | response )

( fail | warn | ignore );

cache-file quoted_string;

suppress-initial-notify boolean; // 未実装です

preferred-glue string;

dual-stack-servers [ port integer ] {

( quoted_string [port integer] |

ipv4_address [port integer] |

ipv6_address [port integer] ); ...

}

edns-udp-size integer;

root-delegation-only [ exclude { quoted_string; ... } ];

disable-algorithms string { string; ... };

dnssec-enable boolean;

dnssec-lookaside string trust-anchor string;

dnssec-must-be-secure string boolean;

dialup dialuptype;

ixfr-from-differences ixfrdiff;

allow-query { address_match_element; ... };

allow-transfer { address_match_element; ... };

allow-update-forwarding { address_match_element; ... };

notify notifytype;

notify-source ( ipv4_address | * ) [ port ( integer | * ) ];

notify-source-v6 ( ipv6_address | * ) [ port ( integer | * ) ];

also-notify [ port integer ] { ( ipv4_address | ipv6_address )

[ port integer ]; ... };

allow-notify { address_match_element; ... };

forward ( first | only );

forwarders [ port integer ] {

( ipv4_address | ipv6_address ) [ port integer ]; ...

};

max-journal-size size_no_default;

max-transfer-time-in integer;

max-transfer-time-out integer;

max-transfer-idle-in integer;

max-transfer-idle-out integer;

max-retry-time integer;

min-retry-time integer;

max-refresh-time integer;

min-refresh-time integer;

multi-master boolean;

sig-validity-interval integer;

transfer-source ( ipv4_address | * )

[ port ( integer | * ) ];

transfer-source-v6 ( ipv6_address | * )

[ port ( integer | * ) ];

alt-transfer-source ( ipv4_address | * )

[ port ( integer | * ) ];

alt-transfer-source-v6 ( ipv6_address | * )

[ port ( integer | * ) ];

use-alt-transfer-source boolean;

zone-statistics boolean;

key-directory quoted_string;

allow-v6-synthesis { address_match_element; ... }; // 古い指定です

deallocate-on-exit boolean; // 古い指定です

fake-iquery boolean; // 古い指定です

fetch-glue boolean; // 古い指定です

has-old-clients boolean; // 古い指定です

maintain-ixfr-base boolean; // 古い指定です

max-ixfr-log-size size; // 古い指定です

multiple-cnames boolean; // 古い指定です

named-xfer quoted_string; // 古い指定です

serial-queries integer; // 古い指定です

treat-cr-as-space boolean; // 古い指定です

use-id-pool boolean; // 古い指定です

};

VIEW ステートメント

view string optional_class {

match-clients { address_match_element; ... };

match-destinations { address_match_element; ... };

match-recursive-only boolean;

key string {

algorithm string;

secret string;

};

zone string optional_class {

...

};

server ( ipv4_address | ipv6_address ) {

...

};

trusted-keys {

string integer integer integer quoted_string; ...

};

allow-recursion { address_match_element; ... };

sortlist { address_match_element; ... };

topology { address_match_element; ... }; // 実装されません

auth-nxdomain boolean; // デフォルトが変更されました

minimal-responses boolean;

recursion boolean;

rrset-order {

[ class string ] [ type string ]

[ name quoted_string ] string string; ...

};

provide-ixfr boolean;

request-ixfr boolean;

rfc2308-type1 boolean; // 未実装です

additional-from-auth boolean;

additional-from-cache boolean;

query-source querysource4;

query-source-v6 querysource6;

cleaning-interval integer;

min-roots integer; // 実装されません

lame-ttl integer;

max-ncache-ttl integer;

max-cache-ttl integer;

transfer-format ( many-answers | one-answer );

max-cache-size size_no_default;

check-names ( master | slave | response )

( fail | warn | ignore );

cache-file quoted_string;

suppress-initial-notify boolean; // 未実装です

preferred-glue string;

dual-stack-servers [ port integer ] {

( quoted_string [port integer] |

ipv4_address [port integer] |

ipv6_address [port integer] ); ...

};

edns-udp-size integer;

root-delegation-only [ exclude { quoted_string; ... } ];

disable-algorithms string { string; ... };

dnssec-enable boolean;

dnssec-lookaside string trust-anchor string;

dnssec-must-be-secure string boolean;

dialup dialuptype;

ixfr-from-differences ixfrdiff;

allow-query { address_match_element; ... };

allow-transfer { address_match_element; ... };

allow-update-forwarding { address_match_element; ... };

notify notifytype;

notify-source ( ipv4_address | * ) [ port ( integer | * ) ];

notify-source-v6 ( ipv6_address | * ) [ port ( integer | * ) ];

also-notify [ port integer ] { ( ipv4_address | ipv6_address )

[ port integer ]; ... };

allow-notify { address_match_element; ... };

forward ( first | only );

forwarders [ port integer ] {

( ipv4_address | ipv6_address ) [ port integer ]; ...

};

max-journal-size size_no_default;

max-transfer-time-in integer;

max-transfer-time-out integer;

max-transfer-idle-in integer;

max-transfer-idle-out integer;

max-retry-time integer;

min-retry-time integer;

max-refresh-time integer;

min-refresh-time integer;

multi-master boolean;

sig-validity-interval integer;

transfer-source ( ipv4_address | * )

[ port ( integer | * ) ];

transfer-source-v6 ( ipv6_address | * )

[ port ( integer | * ) ];

alt-transfer-source ( ipv4_address | * )

[ port ( integer | * ) ];

alt-transfer-source-v6 ( ipv6_address | * )

[ port ( integer | * ) ];

use-alt-transfer-source boolean;

zone-statistics boolean;

key-directory quoted_string;

allow-v6-synthesis { address_match_element; ... }; // 古い指定です

fetch-glue boolean; // 古い指定です

maintain-ixfr-base boolean; // 古い指定です

max-ixfr-log-size size; // 古い指定です

};

ZONE ステートメント

zone string optional_class {

type ( master | slave | stub | hint |

forward | delegation-only );

file quoted_string;

masters [ port integer ] {

( masters |

ipv4_address [port integer] |

ipv6_address [ port integer ] ) [ key string ]; ...

};

database string;

delegation-only boolean;

check-names ( fail | warn | ignore );

dialup dialuptype;

ixfr-from-differences boolean;

allow-query { address_match_element; ... };

allow-transfer { address_match_element; ... };

allow-update { address_match_element; ... };

allow-update-forwarding { address_match_element; ... };

update-policy {

( grant | deny ) string

( name | subdomain | wildcard | self ) string

rrtypelist; ...

};

notify notifytype;

notify-source ( ipv4_address | * ) [ port ( integer | * ) ];

notify-source-v6 ( ipv6_address | * ) [ port ( integer | * ) ];

also-notify [ port integer ] { ( ipv4_address | ipv6_address )

[ port integer ]; ... };

allow-notify { address_match_element; ... };

forward ( first | only );

forwarders [ port integer ] {

( ipv4_address | ipv6_address ) [ port integer ]; ...

};

max-journal-size size_no_default;

max-transfer-time-in integer;

max-transfer-time-out integer;

max-transfer-idle-in integer;

max-transfer-idle-out integer;

max-retry-time integer;

min-retry-time integer;

max-refresh-time integer;

min-refresh-time integer;

multi-master boolean;

sig-validity-interval integer;

transfer-source ( ipv4_address | * )

[ port ( integer | * ) ];

transfer-source-v6 ( ipv6_address | * )

[ port ( integer | * ) ];

alt-transfer-source ( ipv4_address | * )

[ port ( integer | * ) ];

alt-transfer-source-v6 ( ipv6_address | * )

[ port ( integer | * ) ];

use-alt-transfer-source boolean;

zone-statistics boolean;

key-directory quoted_string;

ixfr-base quoted_string; // 古い指定です

ixfr-tmp-file quoted_string; // 古い指定です

maintain-ixfr-base boolean; // 古い指定です

max-ixfr-log-size size; // 古い指定です

pubkey integer integer integer quoted_string; // 古い指定です

};

関連ファイル

/etc/named.conf

関連項目

named(8), rndc(8), BIND 9 管理者リファレンスマニュアル

スポンサーリンク