1NSD(8) BSD System Manager's Manual NSD(8)
2
4 nsd — Name Server Daemon (NSD) version 3.0.6.
5
7 nsd [-4] [-6] [-a ip-address] [-c configfile] [-d] [-f database] [-h]
8 [-i identity] [-I nsid] [-l logfile] [-N server-count]
9 [-n concurrent-tcp-count] [-P pidfile] [-p port] [-s seconds]
10 [-t chrootdir] [-u username] [-V level] [-v]
11
14 NSD is a complete implementation of an authoritative DNS nameserver. Upon
15 startup NSD will read the database specified with -f database argument
16 and put itself into background and answers queries on port 53 or a dif‐
17 ferent port specified with -p port option. The database must be gener‐
18 ated beforehand with zonec (8). By default NSD will bind to all local
19 interfaces available. Use the -a ip-address option to specify a single
20 particular interface address to be bound. If this option is given more
21 than once, NSD will bind its UDP and TCP sockets to all the specified ip-
22 addresses separately. If IPv6 is enabled when NSD is compiled an IPv6
23 address can also be specified.
24 All the options can be specified in the configfile (-c argument). Except
26 for the -v and -h options. If options are specified on the commandline,
27 the options on the commandline take precedence over the options in the
28 configfile.
29 Normally NSD should be started with nsdc(8) start command invoked from a
31 /etc/rc.d/nsd.sh script or similar at the operating system startup.
32 The available options are:
34 -4 Only listen to IPv4 connections.
37 -6 Only listen to IPv6 connections.
40 -a ip-address
43 Listen to the specified ip-address. The ip-address must be spec‐
44 ified in numeric format (using the standard IPv4 or IPv6 nota‐
45 tion). This flag can be specified multiple times to listen to
46 multiple IP addresses. If this flag is not specified NSD listens
47 to all IP addresses.
48 -c configfile
51 Read specified configfile instead of the default
52 /etc/nsd/nsd.conf. For format description see nsd.conf(5).
53 -d Turn on debugging mode, do not fork, stay in the foreground.
56 -f database
59 Use the specified database instead of the default of
60 /etc/nsd/nsd.db. If a zonesdir: is specified in the config file
61 this path can be relative to that directory.
62 -h Print help information and exit.
65 -i identity
68 Return the specified identity when asked for CH TXT ID.SERVER
69 (This option is used to determine which server is answering the
70 queries when they are multicast) The default is the name returned
71 by gethostname(3).
72 -I nsid
75 Add the specified nsid to the EDNS section of the answer when
76 queried with an NSID EDNS enabled packet. This is disabled until
77 IANA has given the NSID option an OPCODE.
78 -l logfile
81 Log messages to the specified logfile. The default is to log to
82 stderr and syslog. If a zonesdir: is specified in the config
83 file this path can be relative to that directory.
84 -N count
87 Start count NSD servers. Starting more than a single server is
88 only useful on machines with multiple CPUs and/or network
89 adapters. The default is 1.
90 -n number
93 The maximum number of concurrent TCP connection that can be han‐
94 dled by each server. The default is 10.
95 -P pidfile
98 Use the specified pidfile instead of the platform specific
99 default, which is mostly /var/run/nsd.pid. If a zonesdir: is
100 specified in the config file this path can be relative to that
101 directory.
102 -p port
105 Answer the queries on the specified port. Normally this is port
106 53.
107 -s seconds
110 Produce statistics dump every seconds seconds. This is equal to
111 sending SIGUSR1 to the daemon periodically.
112 -t chroot
115 specifies a directory to chroot to upon startup. This option
116 requires you to ensure that appropriate syslogd(8) socket (e.g.
117 chrootdir /dev/log) is available otherwise NSD won't produce any
118 log output.
119 -u username
122 Drop user and group privileges to those of username after binding
123 the socket. The username must one of: username, id, or id.gid.
124 For example: nsd, 80, or 80.80.
125 -V level
128 This value specifies the verbosity level for (non-debug) logging.
129 Default is 0.
130 -v Print the version number of NSD to standard error and exit.
133 NSD reacts to the following signals:
137 SIGTERM
139 Stop answering queries, shutdown, and exit normally.
140 SIGHUP Reload the database.
142 SIGUSR1
144 Dump BIND8-style statistics into the log. Ignored otherwise.
145
147 /etc/nsd/nsd.db
148 default NSD database
149 /var/run/nsd.pid
151 the process id of the name server.
152 /etc/nsd/nsd.conf
154 default NSD configuration file
155
157 NSD will log all the problems via the standard syslog(8) daemon facility,
158 unless the -d option is specified.
159
161 nsd.conf(5), nsd-notify(8), nsd-patch(8), nsd-xfer(8), nsdc(8), zonec(8)
162
164 NSD was written by NLnet Labs and RIPE NCC joint team. Please see the
165 CREDITS file in the distribution for further details.
166
168 NSD will answer the queries erroneously if the database was not properly
169 compiled with zonec(8). Therefore problems with misconfigured master
170 zone files or zonec(8) bugs may not be visible until the queries are
171 actually answered with NSD.
172 Sep 7, 2007