diff options
author | sthen <sthen@openbsd.org> | 2019-12-18 10:58:18 +0000 |
---|---|---|
committer | sthen <sthen@openbsd.org> | 2019-12-18 10:58:18 +0000 |
commit | 5435475d426b8472bbbd30dcd1b34cc38879de70 (patch) | |
tree | 3021abd1c3fb08223d64a3dbeda80aa89a60ddad /usr.sbin/nsd/nsd.conf.5.in | |
parent | import NSD 4.2.4, ok florian (diff) | |
download | wireguard-openbsd-5435475d426b8472bbbd30dcd1b34cc38879de70.tar.xz wireguard-openbsd-5435475d426b8472bbbd30dcd1b34cc38879de70.zip |
merge NSD 4.2.4
Diffstat (limited to 'usr.sbin/nsd/nsd.conf.5.in')
-rw-r--r-- | usr.sbin/nsd/nsd.conf.5.in | 31 |
1 files changed, 14 insertions, 17 deletions
diff --git a/usr.sbin/nsd/nsd.conf.5.in b/usr.sbin/nsd/nsd.conf.5.in index 444c3229c94..addcddeb8cc 100644 --- a/usr.sbin/nsd/nsd.conf.5.in +++ b/usr.sbin/nsd/nsd.conf.5.in @@ -1,4 +1,4 @@ -.TH "nsd.conf" "5" "Aug 19, 2019" "NLnet Labs" "nsd 4.2.2" +.TH "nsd.conf" "5" "Dec 10, 2019" "NLnet Labs" "nsd 4.2.4" .\" Copyright (c) 2001\-2008, NLnet Labs. All rights reserved. .\" See LICENSE for the license. .SH "NAME" @@ -100,23 +100,13 @@ with a colon ':'. An attribute is followed by its containing attributes, or a value. .P At the top level only -.B server: +.BR server: , +.BR key: , +.BR pattern: , +.BR zone: , and -.B key: -and -.B pattern: -and -.B zone: -are allowed. These are followed by their attributes or the start of -a new -.B server: -or -.B key: -or -.B pattern: -or -.B zone: -clause. The +.B remote-control: +are allowed. These are followed by their attributes or a new top-level keyword. The .B zone: attribute is followed by zone options. The .B server: @@ -290,6 +280,8 @@ Use the pid file instead of the platform specific default, usually .IR @pidfile@. Same as commandline option .BR \-P . +With "" there is no pidfile, for some startup management setups, +where a pidfile is not useful to have. .TP .B port:\fR <number> Answer queries on the specified port. Default is 53. Same as @@ -392,6 +384,11 @@ that reduces packets, but exactly to the fragmentation length, the nsd.conf option reduces packets as small as possible. The default is yes. .TP +.B confine\-to\-zone:\fR <yes or no> +If set to yes, additional information will not be added to the response if the +apex zone of the additional information does not match the apex zone of the +initial query (E.G. CNAME resolution). Default is no. +.TP .B refuse\-any:\fR <yes or no> Refuse queries of type ANY. This is useful to stop query floods trying to get large responses. Note that rrl ratelimiting also has type ANY as |