HP-UX IP Address and Client Management Administrator's Guide (October 2009)

ManualsBrandsHP ManualsSoftwareHP-UX 11i v2 Networking Software

Choosing the Type of Name Server.................................................................................................65

Choosing Master Servers and Slave Servers...................................................................................65

Types of Resource Records..............................................................................................................65

Configuring a Master Name Server......................................................................................................67

Creating the Data Files for a Master Server.....................................................................................67

Setting the Default Domain Name..................................................................................................68

Master Server Configuration File....................................................................................................68

Master Server Cache File.................................................................................................................70

The db.127.0.0 File...........................................................................................................................72

Master Server db.domain Files.........................................................................................................73

Master Server db.net Files................................................................................................................75

Adding a Host to the Domain Data Files........................................................................................76

Deleting a Host from the Domain Data Files..................................................................................76

Configuring a Slave Name Server........................................................................................................76

Creating Slave Server Data Files Using hosts_to_named................................................................77

Creating the Slave Server’s Data Files Manually.............................................................................77

Setting the Default Domain Name..................................................................................................79

Configuring the Caching-Only Name Server.......................................................................................80

Configuring the Resolver to Query a Remote Name Server................................................................81

Configuring the Resolver to Set Timeout Values .................................................................................83

Configuring Timeout Values Using Environment Variables..........................................................83

Configuring Timeout Values Using the Configuration File............................................................83

Configuring Timeout Values Using APIs........................................................................................83

The set_resfield() API.................................................................................................................84

The get_resfield() API................................................................................................................84

Sample Program with Timeout Values............................................................................................84

Starting the Name Server Daemon.......................................................................................................84

Verifying the Name Server..............................................................................................................85

Updating Network-Related Files..........................................................................................................86

Updating /etc/hosts.equiv and $HOME/.rhosts..............................................................................86

Updating /var/adm/inetd.sec and $HOME/.netrc...........................................................................86

Updating /etc/hosts..........................................................................................................................86

Delegating a Subdomain.......................................................................................................................86

Example of Delegating a Subdomain..............................................................................................87

Configuring a Root Name Server.........................................................................................................87

BIND Logging System..........................................................................................................................88

BIND Security.......................................................................................................................................88

TSIG-Based Security........................................................................................................................88

One-Way Hash Function............................................................................................................89

Configuring TSIG.......................................................................................................................89

Generating Keys.........................................................................................................................89

Using TSIG.................................................................................................................................89

DNSSEC – A DNS Security Extension.............................................................................................90

Creating a Keyset.......................................................................................................................90

Signing the Child’s Keyset..........................................................................................................90

Signing the Zone........................................................................................................................91

Configuring Servers...................................................................................................................91

Compartmentalizing BIND.............................................................................................................91

Enabling Compartments in BIND..............................................................................................91

Disabling Compartments in BIND.............................................................................................92

Troubleshooting the BIND Name Server..............................................................................................92

Troubleshooting Tools and Techniques...........................................................................................92

The ping Command...................................................................................................................92

The nsquery Command..............................................................................................................93

The syslogd Utility.....................................................................................................................93

Table of Contents 5