Blame
Date:
Thu Oct 15 07:11:48 2020 UTC
Message:
up the debug a bit further while we're chasing a bug.
001
2020-10-09
pjp
.\" $Id: dddctl.8,v 1.14 2020/10/09 08:33:51 pjp Exp $
002
2018-06-19
pjp
.\" In parts copyright (template) by:
003
2018-06-19
pjp
.\"
004
2018-06-19
pjp
.\" $OpenBSD: vmctl.8,v 1.39 2018/02/24 13:14:09 jmc Exp $
005
2018-06-19
pjp
.\"
006
2020-03-06
pjp
.\" Copyright (c) 2018-2020 Peter J. Philipp
007
2018-06-19
pjp
.\" Copyright (c) 2015 Mike Larkin <mlarkin@openbsd.org>
008
2018-06-19
pjp
.\"
009
2018-06-19
pjp
.\" Permission to use, copy, modify, and distribute this software for any
010
2018-06-19
pjp
.\" purpose with or without fee is hereby granted, provided that the above
011
2018-06-19
pjp
.\" copyright notice and this permission notice appear in all copies.
012
2018-06-19
pjp
.\"
013
2018-06-19
pjp
.\" THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
014
2018-06-19
pjp
.\" WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
015
2018-06-19
pjp
.\" MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
016
2018-06-19
pjp
.\" ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
017
2018-06-19
pjp
.\" WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
018
2018-06-19
pjp
.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
019
2018-06-19
pjp
.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
020
2018-06-19
pjp
.\"
021
2020-10-09
pjp
.Dd $Mdocdate: October 9 2020 $
022
2018-06-19
pjp
.Dt DDDCTL 8
023
2018-06-19
pjp
.Os
024
2018-06-19
pjp
.Sh NAME
025
2018-06-19
pjp
.Nm dddctl
026
2018-06-19
pjp
.Nd control and manage delphinusdnsd
027
2018-06-19
pjp
.Sh SYNOPSIS
028
2018-06-19
pjp
.Nm
029
2018-06-19
pjp
.Ar command
030
2018-06-19
pjp
.Op Ar arg ...
031
2018-06-19
pjp
.Sh DESCRIPTION
032
2018-06-19
pjp
The
033
2018-06-19
pjp
.Nm
034
2018-06-19
pjp
utility is used to control, manage and sign delphinusdnsd (zone files)
035
2018-06-19
pjp
.Pp
036
2018-06-19
pjp
The commands are as follows:
037
2018-06-19
pjp
.Bl -tag -width Ds
038
2018-06-19
pjp
.It Cm bindfile Ar zonename zonefile
039
2018-06-19
pjp
Convert a
040
2018-06-19
pjp
.Xr delphinusdns.conf 5
041
2018-06-19
pjp
zonefile to BIND format with the specified zonename domain name.
042
2019-11-07
pjp
.It Xo Cm configtest
043
2019-11-14
pjp
.Op Fl cn
044
2019-11-07
pjp
.Op Ar configfile
045
2019-11-07
pjp
.Xc
046
2018-06-19
pjp
Test the entire config, alternatively you can test a
047
2018-06-19
pjp
.Xr delphinusdns.conf 5
048
2019-11-07
pjp
config file by specifying such a file. In case of configured rzones, when
049
2020-09-25
pjp
there is no .repl file in /var/delphinusdnsd/replicant/ it will pull the
050
2019-11-14
pjp
replicant file via a socket, unless the
051
2019-11-14
pjp
.Op Fl n
052
2019-11-14
pjp
flag has been specified.
053
2018-06-19
pjp
.It Cm help Ar [command]
054
2018-06-19
pjp
provides an in-binary help. Alternatively you can specify a subcommand
055
2018-06-19
pjp
to provide help for. Ie.
056
2018-06-19
pjp
.Nm
057
2018-06-19
pjp
help sign.
058
2019-12-27
pjp
.It Xo Cm query
059
2019-12-27
pjp
.Op Fl DITZ
060
2019-12-27
pjp
.Op Fl @ Ar server
061
2019-12-27
pjp
.Op Fl P Ar port
062
2019-12-27
pjp
.Op Fl p Ar file
063
2019-12-27
pjp
.Op Fl Q Ar server
064
2019-12-27
pjp
.Op Fl y Ar keyname:password
065
2019-12-27
pjp
.Xc
066
2019-12-27
pjp
performs rudamentary query operations on a DNS server.
067
2019-12-27
pjp
.Bl -tag -width "-I iterations"
068
2019-12-27
pjp
.It Fl D
069
2019-12-27
pjp
use the DO bit, to get DNSSEC answers.
070
2019-12-27
pjp
.It Fl I
071
2019-12-27
pjp
indent output.
072
2019-12-27
pjp
.It Fl T
073
2019-12-27
pjp
use TCP instead of UDP.
074
2019-12-27
pjp
.It Fl Z
075
2019-12-27
pjp
output in delphinusdnsd zonefile format.
076
2019-12-27
pjp
.It Fl @ Ar server
077
2019-12-27
pjp
queries the specified server (in IPv4 IP).
078
2019-12-27
pjp
.It Fl P Ar port
079
2019-12-27
pjp
query on the specified port.
080
2019-12-27
pjp
.It Fl p Ar file
081
2019-12-27
pjp
output/pipe to the specified file.
082
2019-12-27
pjp
.It Fl Q Ar server
083
2019-12-27
pjp
queries the specified server (is synonymous with -@).
084
2019-12-27
pjp
.It Fl y Ar keyname:password
085
2019-12-27
pjp
Use a TSIG keyname and password. The keyname is plaintext in a DNS name format
086
2019-12-27
pjp
, the password is in BASE64. This differs from dig in that the leading HMAC
087
2019-12-27
pjp
type is omitted because it's always type 'hmac-sha256'.
088
2019-12-27
pjp
.El
089
2018-06-19
pjp
.It Xo Cm sign
090
2019-10-08
pjp
.Op Fl KXZ
091
2018-06-19
pjp
.Op Fl a Ar algorithm
092
2018-06-19
pjp
.Op Fl B Ar bits
093
2018-06-19
pjp
.Op Fl e Ar seconds
094
2018-06-19
pjp
.Op Fl I Ar iterations
095
2018-06-19
pjp
.Op Fl i Ar inputfile
096
2018-06-19
pjp
.Op Fl k Ar KSK
097
2018-06-19
pjp
.Op Fl m Ar mask
098
2018-06-19
pjp
.Op Fl n Ar zonename
099
2018-06-19
pjp
.Op Fl o Ar output
100
2020-03-06
pjp
.Op Fl R Ar keyword
101
2018-06-19
pjp
.Op Fl S Ar pid
102
2018-06-19
pjp
.Op Fl s Ar salt
103
2018-06-19
pjp
.Op Fl t Ar ttl
104
2019-10-08
pjp
.Op Fl x Ar serial
105
2018-06-19
pjp
.Op Fl z Ar ZSK
106
2018-06-19
pjp
.Xc
107
2018-06-19
pjp
performs signing operations on a zonefile for DNSSEC operations.
108
2018-06-19
pjp
.Bl -tag -width "-I iterations"
109
2018-06-19
pjp
.It Fl K
110
2018-06-19
pjp
create a new KSK key.
111
2019-10-08
pjp
.It Fl X
112
2019-10-08
pjp
update serial to YYYYMMDD01.
113
2018-06-19
pjp
.It Fl Z
114
2018-06-19
pjp
create a new ZSK key.
115
2018-06-19
pjp
.It Fl a Ar algorithm
116
2018-06-19
pjp
use algorithm (integer).
117
2018-06-19
pjp
.It Fl B Ar bits
118
2018-06-19
pjp
use number of bits (integer).
119
2018-06-19
pjp
.It Fl e Ar seconds
120
2018-06-19
pjp
expiry in seconds.
121
2018-06-19
pjp
.It Fl I Ar iterations
122
2018-06-19
pjp
use (integer) NSEC3 iterations.
123
2018-06-19
pjp
.It Fl i Ar inputfile
124
2018-06-19
pjp
use the inputfile of unsigned zone.
125
2018-06-19
pjp
.It Fl k Ar KSK
126
2018-06-19
pjp
use provided KSK key-signing keyname.
127
2018-06-19
pjp
.It Fl m Ar mask
128
2018-06-19
pjp
run the following masked functions (used for debug).
129
2018-06-19
pjp
.It Fl n Ar zonename
130
2018-06-19
pjp
run for zonename zone.
131
2018-06-19
pjp
.It Fl o Ar output
132
2018-06-19
pjp
output to file, may be '-' for stdout.
133
2020-03-06
pjp
.It Fl R Ar keyword
134
2020-03-06
pjp
chooses a roll-over method. Current keywords are 'prep' and 'double' for
135
2020-03-06
pjp
Pre Publication Rollover Method or Double-Signature Rollover method
136
2020-03-06
pjp
respectively. Default is 'prep'.
137
2018-06-19
pjp
.It Fl S Ar pid
138
2018-06-19
pjp
sign with this pid ('KSK' or 'ZSK' if used in conjunction with [-ZK]).
139
2018-06-19
pjp
.It Fl s Ar salt
140
2018-06-19
pjp
salt for NSEC3 (in hexadecimal).
141
2018-06-19
pjp
.It Fl t Ar ttl
142
2018-06-19
pjp
time-to-live for DNSKEY's.
143
2019-10-08
pjp
.It Fl x Ar serial
144
2019-10-08
pjp
update serial in SOA to serial.
145
2018-06-19
pjp
.It Fl z Ar ZSK
146
2018-06-19
pjp
use provided ZSK zone-signing keyname.
147
2018-06-19
pjp
.El
148
2018-06-19
pjp
.It Cm sshfp Ar hostname [-k keyfile] [-t ttl]
149
2018-06-19
pjp
produces an SSHFP output on stdout in
150
2018-06-19
pjp
.Xr delphinusdnsd 8
151
2018-06-19
pjp
format.
152
2019-01-29
pjp
.It Cm start Ar [-f configfile] [-s path]
153
2018-06-19
pjp
starts
154
2018-06-19
pjp
.Xr delphinusdnsd 8
155
2019-01-29
pjp
with an optional configfile and control socket path.
156
2019-01-29
pjp
.It Cm stop Ar [-s path]
157
2019-01-29
pjp
stops delphinusdnsd with optional control socket path.
158
2019-11-07
pjp
.It Cm restart Ar [-s path]
159
2019-01-29
pjp
restarts delphinusdnsd with optional control socket path.
160
2019-11-07
pjp
.Sh EXAMPLES
161
2020-10-09
pjp
To create a ZSK and a KSK key the first time one may do:
162
2020-10-09
pjp
.Pp
163
2020-10-09
pjp
dddctl sign -Z -K -n delphinusdns.org
164
2020-10-09
pjp
.Pp
165
2019-11-07
pjp
To sign a delphinusdns zone the first time one may do:
166
2019-11-07
pjp
.Pp
167
2019-11-07
pjp
dddctl sign -Z -K -a 13 -B 2048 -n delphinusdns.org -i delphinusdns.org.zone -o delphinusdns.org.zone.signed
168
2019-11-07
pjp
.Pp
169
2019-11-07
pjp
Please see the https://delphinusdns.org website for more examples.
170
2018-06-19
pjp
.Sh SEE ALSO
171
2018-06-19
pjp
.Xr delphinusdnsd 8
172
2018-06-19
pjp
.Xr delphinusdns.conf 5
173
2019-11-07
pjp
.Sh FILES
174
2020-09-25
pjp
.Bl -tag -width /var/delphinusdnsd/etc/delphinusdns.conf -compact
175
2020-09-25
pjp
.It Pa /var/delphinusdnsd/etc/delphinusdns.conf
176
2019-11-19
pjp
default configfile
177
2020-09-25
pjp
.It Pa /var/delphinusdnsd/replicant/
178
2019-11-19
pjp
replicant zone files pulled via AXFR
179
2019-11-07
pjp
.It Pa /var/run/delphinusdnsd.sock
180
2019-11-07
pjp
default
181
2019-11-07
pjp
.Nm
182
2019-11-07
pjp
control socket
183
2019-11-19
pjp
.El
184
2019-12-06
pjp
.Sh BUGS
185
2019-12-06
pjp
On Linux, with a replicant zone set up in the configfile, a
186
2019-12-06
pjp
.Nm
187
2019-12-06
pjp
configtest will error out (at least on the Raspberry Pi), the first time.
188
2019-12-06
pjp
Subsequent configtests should state OK, so check for this. I haven't found
189
2019-12-27
pjp
the bug for this yet. Another bug is that dddctl query will not sanitize
190
2019-12-27
pjp
input from the net. This could be used to change characteristics of the
191
2019-12-27
pjp
terminal with means of escape codes.
192
2018-06-19
pjp
.Sh AUTHORS
193
2018-06-19
pjp
.An -nosplit
194
2018-06-19
pjp
.An Peter J. Philipp Aq Mt petphi@delphinusdns.org
repomaster@centroid.eu