mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2024-12-25 08:21:05 -06:00
9d69db80a3
SOA serial autoincrement is a requirement for major DNS features, e.g. zone transfers or DNSSEC. Enable it by default in named.conf both for new and upgraded installations. Name of the bind-dyndb-ldap option is "serial_autoincrement". From now on, idnsSOAserial attribute also has to be put to replication agreement exclude list as serial will be incremented on each DNS server separately and won't be shared. Exclude list has to be updated both for new replication agreements and the current ones. Minimum number of connections for bind-dyndb-ldap has been rised to 4 connections, the setting will be updated during package upgrade. https://fedorahosted.org/freeipa/ticket/2554
67 lines
3.1 KiB
Groff
67 lines
3.1 KiB
Groff
.\" A man page for ipa-dns-install
|
|
.\" Copyright (C) 2010 Red Hat, Inc.
|
|
.\"
|
|
.\" This program is free software; you can redistribute it and/or modify
|
|
.\" it under the terms of the GNU General Public License as published by
|
|
.\" the Free Software Foundation, either version 3 of the License, or
|
|
.\" (at your option) any later version.
|
|
.\"
|
|
.\" This program is distributed in the hope that it will be useful, but
|
|
.\" WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
.\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
.\" General Public License for more details.
|
|
.\"
|
|
.\" You should have received a copy of the GNU General Public License
|
|
.\" along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
.\"
|
|
.\" Author: Rob Crittenden <rcritten@redhat.com>
|
|
.\"
|
|
.TH "ipa-dns-install" "1" "Jun 28, 2012" "FreeIPA" "FreeIPA Manual Pages"
|
|
.SH "NAME"
|
|
ipa\-dns\-install \- Add DNS as a service to an IPA server
|
|
.SH "SYNOPSIS"
|
|
ipa\-dns\-install [\fIOPTION\fR]...
|
|
.SH "DESCRIPTION"
|
|
Adds DNS as an IPA\-managed service. This requires that the IPA server is already installed and configured.
|
|
.SH "OPTIONS"
|
|
.TP
|
|
\fB\-p\fR \fIDM_PASSWORD\fR, \fB\-\-ds\-password\fR=\fIDM_PASSWORD\fR
|
|
The password to be used by the Directory Server for the Directory Manager user
|
|
.TP
|
|
\fB\-d\fR, \fB\-\-debug\fR
|
|
Enable debug logging when more verbose output is needed
|
|
.TP
|
|
\fB\-\-ip\-address\fR=\fIIP_ADDRESS\fR
|
|
The IP address of the IPA server. If not provided then this is determined based on the hostname of the server.
|
|
.TP
|
|
\fB\-\-forwarder\fR=\fIFORWARDER\fR
|
|
A forwarder is a DNS server where queries for a specific non\-resolvable address can be directed. To define multiple forwarders use multiple instances of \fB\-\-forwarder\fR
|
|
.TP
|
|
\fB\-\-no\-forwarders\fR
|
|
Do not add any DNS forwarders, send non\-resolvable addresses to the DNS root servers.
|
|
.TP
|
|
\fB\-\-reverse\-zone\fR=\fIREVERSE_ZONE\fR
|
|
The reverse DNS zone to use
|
|
.TP
|
|
\fB\-\-no\-reverse\fR
|
|
Do not create new reverse DNS zone. If used on a replica and a reverse DNS zone already exists for the subnet, it will be used.
|
|
.TP
|
|
\fB\-\-zonemgr\fR
|
|
The e\-mail address of the DNS zone manager. Defaults to hostmaster@DOMAIN
|
|
.TP
|
|
\fB\-\-no\-persistent\-search\fR
|
|
Do not enable persistent search mechanism for updating the list of DNS zones in the name server. When persistent search is disabled and \fB\-\-zone\-refresh\fR option is not set to non-zero value, new zones won't be resolvable until the name server is reloaded.
|
|
.TP
|
|
\fB\-\-zone\-refresh=\fIZONE_REFRESH\fR
|
|
When set to non-zero value, persistent search zone update mechanism will be disabled and the name server will use a polling mechanism to load new DNS zones every \fIZONE_REFRESH\fR seconds.
|
|
.TP
|
|
\fB\-\-no\-serial\-autoincrement\fR
|
|
Do not enable SOA serial autoincrement feature. SOA serial will have to be updated automatically or other DNS features like zone transfer od DNSSEC will not function properly. This feature requires persistent search zone update mechanism.
|
|
.TP
|
|
\fB\-U\fR, \fB\-\-unattended\fR
|
|
An unattended installation that will never prompt for user input
|
|
.SH "EXIT STATUS"
|
|
0 if the installation was successful
|
|
|
|
1 if an error occurred
|