[ Bottom of Page | Previous Page | Next Page | Contents | Index | Library Home | Legal | Search ]

Commands Reference, Volume 4

rndc-confgen Command

Purpose

Generates configuration files for the rndc command.

Syntax

rndc-confgen [ -a ] [ -b keysize ] [ -c keyfile ] [ -h ] [ -k keyname ] [-p port ] [ -r randomfile ] [ -s address ]

Description

The rndc-confgen command generates configuration files for the rndc command. It can be used as a convenient alternative to writing the rndc.conf file and the corresponding controls and key statements in named.conf by hand. The rndc-confgen command can be run with the -a flag to set up a rndc.key file. Doing this will avoid the need for a rndc.conf file and a controls statement.

Note
The rndc-confgen command only works with the named9 daemon.

Flags

-a Performs automatic rndc configuration. This creates a file rndc.key in /etc (or whatever sysconfdir was specified as when BIND was built) that is read by both rndc and named on startup. The rndc.key file defines a default command channel and authentication key allowing rndc to communicate with named with no further configuration.
-b keysize Specifies the size of the authentication key in bits. Must be between 1 and 512 bits. The default is 128.
-c keyfile Used with the -a flag to specify an alternate location for rndc.key.
-h Prints a short summary of the options and arguments to rndc-confgen.
-k keyname Specifies the key name of the rndc authentication key. This must be a valid domain name. The default is rndc-key.
-p port Specifies the command channel port where named listens for connections from rndc. The default is 953.
-r randomfile Specifies a source of random data for generating the authoriazation. If the operating system does not provide a /dev/random or equivalent device, the default source of randomness is keyboard input. randomdev specifies the name of a character device or file containing random data to be used instead of the default. The special value keyboard indicates that keyboard input should be used.
-s address Specifies the IP address where named listens for command channel connections from rndc. The default is the loopback address 127.0.0.1.

Examples

  1. To allow rndc to be used with no manual configuration, run the following:
    rndc-confgen -a 
  2. To print a sample rndc.conf file and corresponding controls and key statements to be manually inserted into named.conf, run the following:
    rndc-confgen 

Related Information

rndc Command and named Daemon.

[ Top of Page | Previous Page | Next Page | Contents | Index | Library Home | Legal | Search ]