HP-UX 11i December 2002 Release Notes

ManualsBrandsHP ManualsSoftwareHP-UX 11i v1.6 Technical Computing (TCOE) LTU

231

232

233

234

235

236

237

238

239

240

Internet and Networking Services

Base HP-UX Internet Services

Chapter 12

237

New Configuration File

The BIND configuration file is now named.conf, with many more configurable variables

than in previous releases of BIND. (The configuration file in previous versions of BIND

was named.boot.)

There are now entirely new areas of configuration, such as, access control lists and

categorized logging. Many options that previously applied to all zones can now be used

selectively.

The configuration file can be obtained by following these steps:

1. Make sure that Perl is installed on the system.

2. Copy the hosts_to_named script to /usr/sbin and manually provide a link from

/usr/bin.

3. To convert the existing named.boot file to named.conf file, use the Perl script

named-bootconf.pl available in /usr/bin.

4. Create the new BIND configuration file named.conf. Do this in either of two ways:

• If the configuration file named.boot already exists, create new config file as

follows:

/usr/bin/named-bootconf.pl named.boot > named.conf

• If a BIND configuration file does not exist, execute hosts_to_named with

appropriate options.

New Configurable Resolver Options

The timeout value is a function of the RES_RETRY and RES_RETRANS options of the

resolver routines. It was currently hardcoded as 5000 milliseconds for RES_RETRANS and

4 attempts for RES_RETRY. This resulted in a timeout value of 75 seconds, when one

nameserver was configured. When there were multiple nameservers, the timeout value

increased. Hence, to help achieve shorter timeout values, and better performance, the

resolver options RES_RETRY and RES_RETRANS are now configurable.

These resolver options can be configured using any of the three methods shown below.

They are listed in order of priority, from highest (first) to lowest (last).

1. Use environment variables as follows:

a. RES_RETRANS=value in milliseconds

b. RES_RETRY=number of retry attempts

2. Use resolver configuration file /etc/resolv.conf as follows:

a. retrans value in milliseconds

b. retry number of retry attempts

3. Use the new API, set_resfield.

The RES_RETRY and RES_RETRANS options can be set with any positive non-zero integer.

“PAM-ized” rexecd and remshd

The rexecd and remshd services on HP-UX 11i now use Pluggable Authentication

Module (PAM) for authentication.