|
|
@@ -2,12 +2,12 @@
|
|
|
.\" Title: b10-xfrout
|
|
|
.\" Author: [FIXME: author] [see http://docbook.sf.net/el/author]
|
|
|
.\" Generator: DocBook XSL Stylesheets v1.75.2 <http://docbook.sf.net/>
|
|
|
-.\" Date: December 1, 2010
|
|
|
+.\" Date: December 15, 2011
|
|
|
.\" Manual: BIND10
|
|
|
.\" Source: BIND10
|
|
|
.\" Language: English
|
|
|
.\"
|
|
|
-.TH "B10\-XFROUT" "8" "December 1, 2010" "BIND10" "BIND10"
|
|
|
+.TH "B10\-XFROUT" "8" "December 15, 2011" "BIND10" "BIND10"
|
|
|
.\" -----------------------------------------------------------------
|
|
|
.\" * set default formatting
|
|
|
.\" -----------------------------------------------------------------
|
|
|
@@ -27,7 +27,7 @@ b10-xfrout \- Outbound DNS zone transfer service
|
|
|
.PP
|
|
|
The
|
|
|
\fBb10\-xfrout\fR
|
|
|
-daemon provides the BIND 10 outgoing DNS zone transfer service\&. It is also used to send outgoing NOTIFY messages\&. Normally it is started by the
|
|
|
+daemon provides the BIND 10 outgoing DNS zone transfer service using AXFR or IXFR\&. It is also used to send outgoing NOTIFY messages\&. Normally it is started by the
|
|
|
\fBbind10\fR(8)
|
|
|
boss process\&. When the
|
|
|
\fBb10\-auth\fR
|
|
|
@@ -47,11 +47,10 @@ sends the zone as found in the BIND 10 zone data store\&.
|
|
|
.ps -1
|
|
|
.br
|
|
|
.sp
|
|
|
-This development prototype release only supports AXFR\&. IXFR is not implemented\&.
|
|
|
+Currently IXFR only works if it gets the zone via \fBb10\-xfrin\fR and only on TCP\&.
|
|
|
.sp .5v
|
|
|
.RE
|
|
|
.PP
|
|
|
-
|
|
|
This daemon communicates with BIND 10 over a
|
|
|
\fBb10-msgq\fR(8)
|
|
|
C\-Channel connection\&. If this connection is not established,
|
|
|
@@ -72,16 +71,22 @@ defines the maximum number of outgoing zone transfers that can run concurrently\
|
|
|
.PP
|
|
|
|
|
|
\fItsig_key_ring\fR
|
|
|
-A list of TSIG keys (each of which is in the form of name:base64\-key[:algorithm]) used for access control on transfer requests\&. The default is an empty list\&.
|
|
|
+A list of TSIG keys (each of which is in the form of
|
|
|
+\fIname:base64\-key[:algorithm]\fR) used for access control on transfer requests\&. The default is an empty list\&.
|
|
|
.PP
|
|
|
|
|
|
\fItransfer_acl\fR
|
|
|
-A list of ACL elements that apply to all transfer requests by default (unless overridden in zone_config)\&. See the BIND 10 guide for configuration examples\&. The default is an element that allows any transfer requests\&.
|
|
|
+A list of ACL elements that apply to all transfer requests by default (unless overridden in
|
|
|
+\fIzone_config\fR)\&. See the
|
|
|
+BIND 10 Guide
|
|
|
+for configuration examples\&. The default is an element that allows any transfer requests\&.
|
|
|
.PP
|
|
|
|
|
|
\fIzone_config\fR
|
|
|
A list of JSON objects (i\&.e\&. maps) that define per zone configuration concerning
|
|
|
-\fBb10\-xfrout\fR\&. The supported names of each object are "origin" (the origin name of the zone), "class" (the RR class of the zone, optional, default to "IN"), and "acl_element" (ACL only applicable to transfer requests for that zone)\&. See the BIND 10 guide for configuration examples\&. The default is an empty list, that is, no zone specific configuration\&.
|
|
|
+\fBb10\-xfrout\fR\&. The supported names of each object are "origin" (the origin name of the zone), "class" (the RR class of the zone, optional, default to "IN"), and "transfer_acl" (ACL only applicable to transfer requests for that zone)\&. See the
|
|
|
+BIND 10 Guide
|
|
|
+for configuration examples\&. The default is an empty list, that is, no zone specific configuration\&.
|
|
|
.PP
|
|
|
|
|
|
\fIlog_name\fR
|
Jeremy C. Reed