<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN""http://www.w3.org/TR/html4/loose.dtd">
<HTML
><HEAD
><TITLE
>Index of all Authoritative Server settings</TITLE
><META
NAME="GENERATOR"
CONTENT="Modular DocBook HTML Stylesheet Version 1.79"><LINK
REL="HOME"
TITLE="PowerDNS manual"
HREF="index.html"><LINK
REL="PREVIOUS"
TITLE="Fancy records for seamless email and URL integration"
HREF="fancy-records.html"><LINK
REL="NEXT"
TITLE="Index of all Authoritative Server metrics"
HREF="metrics.html"></HEAD
><BODY
CLASS="CHAPTER"
BGCOLOR="#FFFFFF"
TEXT="#000000"
LINK="#0000FF"
VLINK="#840084"
ALINK="#0000FF"
><DIV
CLASS="NAVHEADER"
><TABLE
SUMMARY="Header navigation table"
WIDTH="100%"
BORDER="0"
CELLPADDING="0"
CELLSPACING="0"
><TR
><TH
COLSPAN="3"
ALIGN="center"
>PowerDNS manual</TH
></TR
><TR
><TD
WIDTH="10%"
ALIGN="left"
VALIGN="bottom"
><A
HREF="fancy-records.html"
ACCESSKEY="P"
>Prev</A
></TD
><TD
WIDTH="80%"
ALIGN="center"
VALIGN="bottom"
></TD
><TD
WIDTH="10%"
ALIGN="right"
VALIGN="bottom"
><A
HREF="metrics.html"
ACCESSKEY="N"
>Next</A
></TD
></TR
></TABLE
><HR
ALIGN="LEFT"
WIDTH="100%"></DIV
><DIV
CLASS="CHAPTER"
><H1
><A
NAME="ALL-SETTINGS"
></A
>Chapter 15. Index of all Authoritative Server settings</H1
><P
> All PDNS Authoritative Server settings are listed here, excluding those that originate from backends, which are documented in the relevant chapters.
<P
></P
><DIV
CLASS="VARIABLELIST"
><DL
><DT
><A
NAME="ALLOW-AXFR-IPS"
></A
>allow-axfr-ips=...</DT
><DD
><P
>Behaviour pre 2.9.10: When not allowing AXFR (disable-axfr), DO allow from these IP addresses or netmasks.
</P
><P
>Behaviour post 2.9.10: If set, only these IP addresses or netmasks will be able to perform AXFR.
</P
></DD
><DT
>allow-recursion=...</DT
><DD
><P
> By specifying <B
CLASS="COMMAND"
>allow-recursion</B
>, recursion can be restricted to netmasks specified. The default is to allow
recursion from everywhere. Example: <B
CLASS="COMMAND"
>allow-recursion=192.168.0.0/24, 10.0.0.0/8, 1.2.3.4</B
>.
</P
></DD
><DT
>allow-recursion-override=on|off</DT
><DD
><P
> By specifying <B
CLASS="COMMAND"
>allow-recursion-override</B
>, local data even about hosts that don't exist will override
the internet. This allows you to generate zones that don't really exist on the internet. Does increase the number of SQL queries for hosts that truly don't exist, also not in your database.
</P
></DD
><DT
>cache-ttl=...</DT
><DD
><P
> Seconds to store packets in the PacketCache. See <A
HREF="performance-settings.html#PACKETCACHE"
>Section 9.3.1</A
>.
</P
></DD
><DT
>chroot=...</DT
><DD
><P
> If set, chroot to this directory for more security. See <A
HREF="security.html"
>Chapter 7</A
>.
</P
></DD
><DT
>config-dir=...</DT
><DD
><P
> Location of configuration directory (pdns.conf)
</P
></DD
><DT
>config-name=...</DT
><DD
><P
> Name of this virtual configuration - will rename the binary image. See <A
HREF="virtual.html"
>Chapter 8</A
>.
</P
></DD
><DT
>control-console=...</DT
><DD
><P
> Debugging switch - don't use.
</P
></DD
><DT
>daemon=...</DT
><DD
><P
> Operate as a daemon
</P
></DD
><DT
>default-soa-name=...</DT
><DD
><P
> name to insert in the SOA record if none set in the backend
</P
></DD
><DT
>disable-axfr=...</DT
><DD
><P
> Do not allow zone transfers. Before 2.9.10, this could be overridden by allow-axfr-ips.
</P
></DD
><DT
>disable-tcp=...</DT
><DD
><P
> Do not listen to TCP queries. Breaks RFC compliance.
</P
></DD
><DT
>distributor-threads=...</DT
><DD
><P
> Default number of Distributor (backend) threads to start. See <A
HREF="performance.html"
>Chapter 9</A
>.
</P
></DD
><DT
>do-ipv6-additional-processing=...</DT
><DD
><P
> Perform AAAA additional processing.
</P
></DD
><DT
>fancy-records=...</DT
><DD
><P
> Process URL and MBOXFW records. See <A
HREF="fancy-records.html"
>Chapter 14</A
>.
</P
></DD
><DT
>guardian | --guardian=yes | --guardian=no</DT
><DD
><P
> Run within a guardian process. See <A
HREF="guardian.html"
>Section B.2</A
>.
</P
></DD
><DT
>help</DT
><DD
><P
> Provide a helpful message
</P
></DD
><DT
>launch=...</DT
><DD
><P
> Which backends to launch and order to query them in. See <A
HREF="modules.html"
>Section B.3</A
>.
</P
></DD
><DT
>lazy-recursion=...</DT
><DD
><P
> On by default as of 2.1. Checks local data first before recursing. See <A
HREF="recursion.html"
>Chapter 11</A
>.
</P
></DD
><DT
>load-modules=...</DT
><DD
><P
> Load this module - supply absolute or relative path. See <A
HREF="modules.html"
>Section B.3</A
>.
</P
></DD
><DT
>local-address=...</DT
><DD
><P
> Local IP address to which we bind. You can specify multiple addresses separated by commas or whitespace. It is highly
advised to bind to specific interfaces and not use the default 'bind to any'. This causes big problems if you have multiple
IP addresses. Unix does not provide a way of figuring out what IP address a packet was sent to when binding to any.
</P
></DD
><DT
>local-ipv6=...</DT
><DD
><P
> Local IPv6 address to which we bind. You can specify multiple addresses separated by commas or whitespace.
</P
></DD
><DT
>local-port=...</DT
><DD
><P
> The port on which we listen. Only one port possible.
</P
></DD
><DT
><A
NAME="LOG-FAILED-UPDATES"
></A
>log-failed-updates=...</DT
><DD
><P
> If set to 'no', failed Windows Dynamic Updates will not be logged.
</P
></DD
><DT
><A
NAME="LOG-DNS-DETAILS"
></A
>log-dns-details=...</DT
><DD
><P
> If set to 'no', informative-only DNS details will not even be sent to syslog, improving performance. Available from 2.5
and onwards.
</P
></DD
><DT
>logging-facility=...</DT
><DD
><P
> If set to a digit, logging is performed under this LOCAL facility. See <A
HREF="syslog.html"
>Section 6.3</A
>. Available from 1.99.9 and onwards. Do not pass names like 'local0'!
</P
></DD
><DT
>loglevel=...</DT
><DD
><P
> Amount of logging. Higher is more. Do not set below 3
</P
></DD
><DT
>max-queue-length=...</DT
><DD
><P
> If this many packets are waiting for database attention, consider the situation hopeless and respawn.
</P
></DD
><DT
>max-tcp-connections=...</DT
><DD
><P
> Allow this many incoming TCP DNS connections simultaneously.
</P
></DD
><DT
>module-dir=...</DT
><DD
><P
> Default directory for modules. See <A
HREF="modules.html"
>Section B.3</A
>.
</P
></DD
><DT
>negquery-cache-ttl=...</DT
><DD
><P
> Seconds to store queries with no answer in the Query Cache. See <A
HREF="performance-settings.html#QUERYCACHE"
>Section 9.3.2</A
>.
</P
></DD
><DT
>no-config</DT
><DD
><P
> Do not attempt to read the configuration file.
</P
></DD
><DT
>no-shuffle</DT
><DD
><P
> Do not attempt to shuffle query results.
</P
></DD
><DT
>out-of-zone-additional-processing | --out-of-zone-additional-processing=yes | --out-of-zone-additional-processing=no</DT
><DD
><P
> Do out of zone additional processing. This means that if a malicious user adds a '.com' zone to your server, it is not used for
other domains and will not contaminate answers. Do not enable this setting if you run a public DNS service with untrusted users. Off by default.
</P
></DD
><DT
>query-cache-ttl=...</DT
><DD
><P
> Seconds to store queries with an answer in the Query Cache. See <A
HREF="performance-settings.html#QUERYCACHE"
>Section 9.3.2</A
>.
</P
></DD
><DT
>query-local-address=...</DT
><DD
><P
> The IP address to use as a source address for sending queries. Useful if you have multiple IPs and pdns is not bound to the IP address your operating system uses by default for outgoing packets.
</P
></DD
><DT
>query-logging | query-logging=yes | query-logging=no</DT
><DD
><P
> Hints to a backend that it should log a textual representation of queries it performs. Can be set at runtime.
</P
></DD
><DT
>queue-limit=...</DT
><DD
><P
> Maximum number of miliseconds to queue a query. See <A
HREF="performance.html"
>Chapter 9</A
>.
</P
></DD
><DT
>recursive-cache-ttl=...</DT
><DD
><P
> Seconds to store recursive packets in the PacketCache. See <A
HREF="performance-settings.html#PACKETCACHE"
>Section 9.3.1</A
>.
</P
></DD
><DT
>recursor=...</DT
><DD
><P
> If set, recursive queries will be handed to the recursor specified here. See <A
HREF="recursion.html"
>Chapter 11</A
>.
</P
></DD
><DT
>send-root-referral | --send-root-referral=yes | --send-root-referral=no | --send-root-referral=lean</DT
><DD
><P
> If set, PowerDNS will send out old-fashioned root-referrals when queried for domains for which it is not authoritative. Wastes some bandwidth
but may solve incoming query floods if domains are delegated to you for which you are not authoritative, but which are queried by broken
recursors. Available since 2.9.19.
</P
><P
> Since 2.9.21, it is possible to specify 'lean' root referrals, which waste less bandwidth.
</P
></DD
><DT
>setgid=...</DT
><DD
><P
> If set, change group id to this gid for more security. See <A
HREF="security.html"
>Chapter 7</A
>.
</P
></DD
><DT
>setuid=...</DT
><DD
><P
> If set, change user id to this uid for more security. See <A
HREF="security.html"
>Chapter 7</A
>.
</P
></DD
><DT
>skip-cname | --skip-cname=yes | --skip-cname=no</DT
><DD
><P
> Do not perform CNAME indirection for each query. Has performance implications. See <A
HREF="security.html"
>Chapter 7</A
>.
</P
></DD
><DT
>slave-cycle-interval=60</DT
><DD
><P
> Schedule slave up-to-date checks of domains whose status is unknown every .. seconds. See <A
HREF="fancy-records.html"
>Chapter 14</A
>.
</P
></DD
><DT
>smtpredirector=...</DT
><DD
><P
> Our smtpredir MX host. See <A
HREF="fancy-records.html"
>Chapter 14</A
>.
</P
></DD
><DT
>soa-expire-default=604800</DT
><DD
><P
> Default <A
HREF="types.html#SOA-TYPE"
>SOA</A
> expire.
</P
></DD
><DT
>soa-minimum-ttl=3600</DT
><DD
><P
> Default <A
HREF="types.html#SOA-TYPE"
>SOA</A
> minimum ttl.
</P
></DD
><DT
>soa-refresh-default=10800</DT
><DD
><P
> Default <A
HREF="types.html#SOA-TYPE"
>SOA</A
> refresh.
</P
></DD
><DT
>soa-retry-default=3600</DT
><DD
><P
> Default <A
HREF="types.html#SOA-TYPE"
>SOA</A
> retry.
</P
></DD
><DT
>soa-serial-offset=...</DT
><DD
><P
> If your database contains single-digit SOA serials and you need to host .DE domains, this setting can help
placate their 6-digit SOA serial requirements. Suggested value is to set this to 1000000 which adds 1000000 to all SOA Serials
under that offset.
</P
></DD
><DT
>socket-dir=...</DT
><DD
><P
> Where the controlsocket will live. See <A
HREF="pdns-internals.html#CONTROLSOCKET"
>Section B.1</A
>.
</P
></DD
><DT
>strict-rfc-axfrs | --strict-rfc-axfrs=yes | --strict-rfc-axfrs=no</DT
><DD
><P
> Perform strictly RFC conformant AXFRs, which are slow, but needed to placate some old client tools.
</P
></DD
><DT
>urlredirector=...</DT
><DD
><P
> Where we send hosts to that need to be url redirected. See <A
HREF="fancy-records.html"
>Chapter 14</A
>.
</P
></DD
><DT
>version-string=anonymous|powerdns|full|custom</DT
><DD
><P
> When queried for its version over DNS (<B
CLASS="COMMAND"
>dig chaos txt version.bind @pdns.ip.address</B
>), PowerDNS normally
resonds truthfully. With this setting you can overrule what will be returned. Set the <B
CLASS="COMMAND"
>version-string</B
>
to 'full' to get the default behaviour, to 'powerdns' to just make it state 'served by PowerDNS - http://www.powerdns.com'.
The 'anonymous' setting will return a ServFail, much like Microsoft nameservers do. You can set this response
to a custom value as well.
</P
></DD
><DT
>webserver | --webserver=yes | --webserver=no</DT
><DD
><P
> Start a webserver for monitoring. See <A
HREF="monitoring.html"
>Chapter 6</A
>.
</P
></DD
><DT
>webserver-address=...</DT
><DD
><P
> IP Address of webserver to listen on. See <A
HREF="monitoring.html"
>Chapter 6</A
>.
</P
></DD
><DT
>webserver-password=...</DT
><DD
><P
> Password required for accessing the webserver. See <A
HREF="monitoring.html"
>Chapter 6</A
>.
</P
></DD
><DT
>webserver-port=...</DT
><DD
><P
> Port of webserver to listen on. See <A
HREF="monitoring.html"
>Chapter 6</A
>.
</P
></DD
><DT
>wildcard-url=...</DT
><DD
><P
> Check for wildcard URL records.
</P
></DD
><DT
>wildcards=...</DT
><DD
><P
> Honor wildcards in the database. On by default. Turning this off has performance implications, see <A
HREF="performance.html"
>Chapter 9</A
>.
</P
></DD
></DL
></DIV
>
</P
></DIV
><DIV
CLASS="NAVFOOTER"
><HR
ALIGN="LEFT"
WIDTH="100%"><TABLE
SUMMARY="Footer navigation table"
WIDTH="100%"
BORDER="0"
CELLPADDING="0"
CELLSPACING="0"
><TR
><TD
WIDTH="33%"
ALIGN="left"
VALIGN="top"
><A
HREF="fancy-records.html"
ACCESSKEY="P"
>Prev</A
></TD
><TD
WIDTH="34%"
ALIGN="center"
VALIGN="top"
><A
HREF="index.html"
ACCESSKEY="H"
>Home</A
></TD
><TD
WIDTH="33%"
ALIGN="right"
VALIGN="top"
><A
HREF="metrics.html"
ACCESSKEY="N"
>Next</A
></TD
></TR
><TR
><TD
WIDTH="33%"
ALIGN="left"
VALIGN="top"
>Fancy records for seamless email and URL integration</TD
><TD
WIDTH="34%"
ALIGN="center"
VALIGN="top"
> </TD
><TD
WIDTH="33%"
ALIGN="right"
VALIGN="top"
>Index of all Authoritative Server metrics</TD
></TR
></TABLE
></DIV
></BODY
></HTML
>
