.\" Copyright (C) 2004 Internet Systems Consortium, Inc. ("ISC") .\" .\" Permission to use, copy, modify, and distribute this software for any .\" purpose with or without fee is hereby granted, provided that the above .\" copyright notice and this permission notice appear in all copies. .\" .\" THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH .\" REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY .\" AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT, .\" INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM .\" LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE .\" OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR .\" PERFORMANCE OF THIS SOFTWARE. .\" .\" %Id: named.conf.5,v 1.1.4.3 2004/10/18 02:33:06 marka Exp % .\" .\" $FreeBSD: doc/ja_JP.eucJP/man/man5/named.conf.5,v 1.19 2005/07/11 13:20:29 metal Exp $ .TH "NAMED.CONF" "5" "Aug 13, 2004" "BIND9" "" .SH 名称 named.conf \- named 用設定ファイル .SH 書式 .sp \fBnamed.conf\fR .SH "解説" .PP \fInamed.conf\fR は \fBnamed\fR 用の設定ファイルです。 ステートメントはブレースで囲まれ、セミコロンで終わります。 ステートメント内で節をとる場合もセミコロン終端です。 通常のコメントスタイルがサポートされています: .PP C スタイル: /* */ .PP C++ スタイル: // 行末までコメント .PP Unix スタイル: # 行末までコメント .SH "ACL ステートメント" .sp .nf acl \fIstring\fR { \fIaddress_match_element\fR; ... }; .sp .fi .SH "KEY ステートメント" .sp .nf key \fIdomain_name\fR { algorithm \fIstring\fR; secret \fIstring\fR; }; .sp .fi .SH "MASTERS ステートメント" .sp .nf masters \fIstring\fR [ port \fIinteger\fR ] { ( \fImasters\fR | \fIipv4_address\fR [port \fIinteger\fR] | \fIipv6_address\fR [port \fIinteger\fR] ) [ key \fIstring\fR ]; ... }; .sp .fi .SH "SERVER ステートメント" .sp .nf server ( \fIipv4_address\fR | \fIipv6_address\fR ) { bogus \fIboolean\fR; edns \fIboolean\fR; provide-ixfr \fIboolean\fR; request-ixfr \fIboolean\fR; keys \fIserver_key\fR; transfers \fIinteger\fR; transfer-format ( many-answers | one-answer ); transfer-source ( \fIipv4_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; transfer-source-v6 ( \fIipv6_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; support-ixfr \fIboolean\fR; // 古い指定です }; .sp .fi .SH "TRUSTED-KEYS ステートメント" .sp .nf trusted-keys { \fIdomain_name\fR \fIflags\fR \fIprotocol\fR \fIalgorithm\fR \fIkey\fR; ... }; .sp .fi .SH "CONTROLS ステートメント" .sp .nf controls { inet ( \fIipv4_address\fR | \fIipv6_address\fR | * ) [ port ( \fIinteger\fR | * ) ] allow { \fIaddress_match_element\fR; ... } [ keys { \fIstring\fR; ... } ]; unix \fIunsupported\fR; // 実装されません }; .sp .fi .SH "LOGGING ステートメント" .sp .nf logging { channel \fIstring\fR { file \fIlog_file\fR; syslog \fIoptional_facility\fR; null; stderr; severity \fIlog_severity\fR; print-time \fIboolean\fR; print-severity \fIboolean\fR; print-category \fIboolean\fR; }; category \fIstring\fR { \fIstring\fR; ... }; }; .sp .fi .SH "LWRES ステートメント" .sp .nf lwres { listen-on [ port \fIinteger\fR ] { ( \fIipv4_address\fR | \fIipv6_address\fR ) [ port \fIinteger\fR ]; ... }; view \fIstring\fR \fIoptional_class\fR; search { \fIstring\fR; ... }; ndots \fIinteger\fR; }; .sp .fi .SH "OPTIONS ステートメント" .sp .nf options { avoid-v4-udp-ports { \fIport\fR; ... }; avoid-v6-udp-ports { \fIport\fR; ... }; blackhole { \fIaddress_match_element\fR; ... }; coresize \fIsize\fR; datasize \fIsize\fR; directory \fIquoted_string\fR; dump-file \fIquoted_string\fR; files \fIsize\fR; heartbeat-interval \fIinteger\fR; host-statistics \fIboolean\fR; // 実装されません host-statistics-max \fInumber\fR; // 実装されません hostname ( \fIquoted_string\fR | none ); interface-interval \fIinteger\fR; listen-on [ port \fIinteger\fR ] { \fIaddress_match_element\fR; ... }; listen-on-v6 [ port \fIinteger\fR ] { \fIaddress_match_element\fR; ... }; match-mapped-addresses \fIboolean\fR; memstatistics-file \fIquoted_string\fR; pid-file ( \fIquoted_string\fR | none ); port \fIinteger\fR; querylog \fIboolean\fR; recursing-file \fIquoted_string\fR; random-device \fIquoted_string\fR; recursive-clients \fIinteger\fR; serial-query-rate \fIinteger\fR; server-id ( \fIquoted_string\fR | none |; stacksize \fIsize\fR; statistics-file \fIquoted_string\fR; statistics-interval \fIinteger\fR; // 未実装です tcp-clients \fIinteger\fR; tcp-listen-queue \fIinteger\fR; tkey-dhkey \fIquoted_string\fR \fIinteger\fR; tkey-gssapi-credential \fIquoted_string\fR; tkey-domain \fIquoted_string\fR; transfers-per-ns \fIinteger\fR; transfers-in \fIinteger\fR; transfers-out \fIinteger\fR; use-ixfr \fIboolean\fR; version ( \fIquoted_string\fR | none ); allow-recursion { \fIaddress_match_element\fR; ... }; sortlist { \fIaddress_match_element\fR; ... }; topology { \fIaddress_match_element\fR; ... }; // 実装されません auth-nxdomain \fIboolean\fR; // デフォルトが変更されました minimal-responses \fIboolean\fR; recursion \fIboolean\fR; rrset-order { [ class \fIstring\fR ] [ type \fIstring\fR ] [ name \fIquoted_string\fR ] \fIstring\fR \fIstring\fR; ... }; provide-ixfr \fIboolean\fR; request-ixfr \fIboolean\fR; rfc2308-type1 \fIboolean\fR; // 未実装です additional-from-auth \fIboolean\fR; additional-from-cache \fIboolean\fR; query-source \fIquerysource4\fR; query-source-v6 \fIquerysource6\fR; cleaning-interval \fIinteger\fR; min-roots \fIinteger\fR; // 実装されません lame-ttl \fIinteger\fR; max-ncache-ttl \fIinteger\fR; max-cache-ttl \fIinteger\fR; transfer-format ( many-answers | one-answer ); max-cache-size \fIsize_no_default\fR; check-names ( master | slave | response ) ( fail | warn | ignore ); cache-file \fIquoted_string\fR; suppress-initial-notify \fIboolean\fR; // 未実装です preferred-glue \fIstring\fR; dual-stack-servers [ port \fIinteger\fR ] { ( \fIquoted_string\fR [port \fIinteger\fR] | \fIipv4_address\fR [port \fIinteger\fR] | \fIipv6_address\fR [port \fIinteger\fR] ); ... } edns-udp-size \fIinteger\fR; root-delegation-only [ exclude { \fIquoted_string\fR; ... } ]; disable-algorithms \fIstring\fR { \fIstring\fR; ... }; dnssec-enable \fIboolean\fR; dnssec-lookaside \fIstring\fR trust-anchor \fIstring\fR; dnssec-must-be-secure \fIstring\fR \fIboolean\fR; dialup \fIdialuptype\fR; ixfr-from-differences \fIixfrdiff\fR; allow-query { \fIaddress_match_element\fR; ... }; allow-transfer { \fIaddress_match_element\fR; ... }; allow-update-forwarding { \fIaddress_match_element\fR; ... }; notify \fInotifytype\fR; notify-source ( \fIipv4_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; notify-source-v6 ( \fIipv6_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; also-notify [ port \fIinteger\fR ] { ( \fIipv4_address\fR | \fIipv6_address\fR ) [ port \fIinteger\fR ]; ... }; allow-notify { \fIaddress_match_element\fR; ... }; forward ( first | only ); forwarders [ port \fIinteger\fR ] { ( \fIipv4_address\fR | \fIipv6_address\fR ) [ port \fIinteger\fR ]; ... }; max-journal-size \fIsize_no_default\fR; max-transfer-time-in \fIinteger\fR; max-transfer-time-out \fIinteger\fR; max-transfer-idle-in \fIinteger\fR; max-transfer-idle-out \fIinteger\fR; max-retry-time \fIinteger\fR; min-retry-time \fIinteger\fR; max-refresh-time \fIinteger\fR; min-refresh-time \fIinteger\fR; multi-master \fIboolean\fR; sig-validity-interval \fIinteger\fR; transfer-source ( \fIipv4_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; transfer-source-v6 ( \fIipv6_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; alt-transfer-source ( \fIipv4_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; alt-transfer-source-v6 ( \fIipv6_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; use-alt-transfer-source \fIboolean\fR; zone-statistics \fIboolean\fR; key-directory \fIquoted_string\fR; allow-v6-synthesis { \fIaddress_match_element\fR; ... }; // 古い指定です deallocate-on-exit \fIboolean\fR; // 古い指定です fake-iquery \fIboolean\fR; // 古い指定です fetch-glue \fIboolean\fR; // 古い指定です has-old-clients \fIboolean\fR; // 古い指定です maintain-ixfr-base \fIboolean\fR; // 古い指定です max-ixfr-log-size \fIsize\fR; // 古い指定です multiple-cnames \fIboolean\fR; // 古い指定です named-xfer \fIquoted_string\fR; // 古い指定です serial-queries \fIinteger\fR; // 古い指定です treat-cr-as-space \fIboolean\fR; // 古い指定です use-id-pool \fIboolean\fR; // 古い指定です }; .sp .fi .SH "VIEW ステートメント" .sp .nf view \fIstring\fR \fIoptional_class\fR { match-clients { \fIaddress_match_element\fR; ... }; match-destinations { \fIaddress_match_element\fR; ... }; match-recursive-only \fIboolean\fR; key \fIstring\fR { algorithm \fIstring\fR; secret \fIstring\fR; }; zone \fIstring\fR \fIoptional_class\fR { ... }; server ( \fIipv4_address\fR | \fIipv6_address\fR ) { ... }; trusted-keys { \fIstring\fR \fIinteger\fR \fIinteger\fR \fIinteger\fR \fIquoted_string\fR; ... }; allow-recursion { \fIaddress_match_element\fR; ... }; sortlist { \fIaddress_match_element\fR; ... }; topology { \fIaddress_match_element\fR; ... }; // 実装されません auth-nxdomain \fIboolean\fR; // デフォルトが変更されました minimal-responses \fIboolean\fR; recursion \fIboolean\fR; rrset-order { [ class \fIstring\fR ] [ type \fIstring\fR ] [ name \fIquoted_string\fR ] \fIstring\fR \fIstring\fR; ... }; provide-ixfr \fIboolean\fR; request-ixfr \fIboolean\fR; rfc2308-type1 \fIboolean\fR; // 未実装です additional-from-auth \fIboolean\fR; additional-from-cache \fIboolean\fR; query-source \fIquerysource4\fR; query-source-v6 \fIquerysource6\fR; cleaning-interval \fIinteger\fR; min-roots \fIinteger\fR; // 実装されません lame-ttl \fIinteger\fR; max-ncache-ttl \fIinteger\fR; max-cache-ttl \fIinteger\fR; transfer-format ( many-answers | one-answer ); max-cache-size \fIsize_no_default\fR; check-names ( master | slave | response ) ( fail | warn | ignore ); cache-file \fIquoted_string\fR; suppress-initial-notify \fIboolean\fR; // 未実装です preferred-glue \fIstring\fR; dual-stack-servers [ port \fIinteger\fR ] { ( \fIquoted_string\fR [port \fIinteger\fR] | \fIipv4_address\fR [port \fIinteger\fR] | \fIipv6_address\fR [port \fIinteger\fR] ); ... }; edns-udp-size \fIinteger\fR; root-delegation-only [ exclude { \fIquoted_string\fR; ... } ]; disable-algorithms \fIstring\fR { \fIstring\fR; ... }; dnssec-enable \fIboolean\fR; dnssec-lookaside \fIstring\fR trust-anchor \fIstring\fR; dnssec-must-be-secure \fIstring\fR \fIboolean\fR; dialup \fIdialuptype\fR; ixfr-from-differences \fIixfrdiff\fR; allow-query { \fIaddress_match_element\fR; ... }; allow-transfer { \fIaddress_match_element\fR; ... }; allow-update-forwarding { \fIaddress_match_element\fR; ... }; notify \fInotifytype\fR; notify-source ( \fIipv4_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; notify-source-v6 ( \fIipv6_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; also-notify [ port \fIinteger\fR ] { ( \fIipv4_address\fR | \fIipv6_address\fR ) [ port \fIinteger\fR ]; ... }; allow-notify { \fIaddress_match_element\fR; ... }; forward ( first | only ); forwarders [ port \fIinteger\fR ] { ( \fIipv4_address\fR | \fIipv6_address\fR ) [ port \fIinteger\fR ]; ... }; max-journal-size \fIsize_no_default\fR; max-transfer-time-in \fIinteger\fR; max-transfer-time-out \fIinteger\fR; max-transfer-idle-in \fIinteger\fR; max-transfer-idle-out \fIinteger\fR; max-retry-time \fIinteger\fR; min-retry-time \fIinteger\fR; max-refresh-time \fIinteger\fR; min-refresh-time \fIinteger\fR; multi-master \fIboolean\fR; sig-validity-interval \fIinteger\fR; transfer-source ( \fIipv4_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; transfer-source-v6 ( \fIipv6_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; alt-transfer-source ( \fIipv4_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; alt-transfer-source-v6 ( \fIipv6_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; use-alt-transfer-source \fIboolean\fR; zone-statistics \fIboolean\fR; key-directory \fIquoted_string\fR; allow-v6-synthesis { \fIaddress_match_element\fR; ... }; // 古い指定です fetch-glue \fIboolean\fR; // 古い指定です maintain-ixfr-base \fIboolean\fR; // 古い指定です max-ixfr-log-size \fIsize\fR; // 古い指定です }; .sp .fi .SH "ZONE ステートメント" .sp .nf zone \fIstring\fR \fIoptional_class\fR { type ( master | slave | stub | hint | forward | delegation-only ); file \fIquoted_string\fR; masters [ port \fIinteger\fR ] { ( \fImasters\fR | \fIipv4_address\fR [port \fIinteger\fR] | \fIipv6_address\fR [ port \fIinteger\fR ] ) [ key \fIstring\fR ]; ... }; database \fIstring\fR; delegation-only \fIboolean\fR; check-names ( fail | warn | ignore ); dialup \fIdialuptype\fR; ixfr-from-differences \fIboolean\fR; allow-query { \fIaddress_match_element\fR; ... }; allow-transfer { \fIaddress_match_element\fR; ... }; allow-update { \fIaddress_match_element\fR; ... }; allow-update-forwarding { \fIaddress_match_element\fR; ... }; update-policy { ( grant | deny ) \fIstring\fR ( name | subdomain | wildcard | self ) \fIstring\fR \fIrrtypelist\fR; ... }; notify \fInotifytype\fR; notify-source ( \fIipv4_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; notify-source-v6 ( \fIipv6_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; also-notify [ port \fIinteger\fR ] { ( \fIipv4_address\fR | \fIipv6_address\fR ) [ port \fIinteger\fR ]; ... }; allow-notify { \fIaddress_match_element\fR; ... }; forward ( first | only ); forwarders [ port \fIinteger\fR ] { ( \fIipv4_address\fR | \fIipv6_address\fR ) [ port \fIinteger\fR ]; ... }; max-journal-size \fIsize_no_default\fR; max-transfer-time-in \fIinteger\fR; max-transfer-time-out \fIinteger\fR; max-transfer-idle-in \fIinteger\fR; max-transfer-idle-out \fIinteger\fR; max-retry-time \fIinteger\fR; min-retry-time \fIinteger\fR; max-refresh-time \fIinteger\fR; min-refresh-time \fIinteger\fR; multi-master \fIboolean\fR; sig-validity-interval \fIinteger\fR; transfer-source ( \fIipv4_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; transfer-source-v6 ( \fIipv6_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; alt-transfer-source ( \fIipv4_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; alt-transfer-source-v6 ( \fIipv6_address\fR | * ) [ port ( \fIinteger\fR | * ) ]; use-alt-transfer-source \fIboolean\fR; zone-statistics \fIboolean\fR; key-directory \fIquoted_string\fR; ixfr-base \fIquoted_string\fR; // 古い指定です ixfr-tmp-file \fIquoted_string\fR; // 古い指定です maintain-ixfr-base \fIboolean\fR; // 古い指定です max-ixfr-log-size \fIsize\fR; // 古い指定です pubkey \fIinteger\fR \fIinteger\fR \fIinteger\fR \fIquoted_string\fR; // 古い指定です }; .sp .fi .SH "関連ファイル" .PP \fI/etc/named.conf\fR .SH "関連項目" .PP \fBnamed\fR(8), \fBrndc\fR(8), \fBBIND 9 管理者リファレンスマニュアル\fR