1 # Listen addresses. ixfrdist will listen on both UDP and TCP.
2 # When no port is specified, 53 is used. When specifying ports for IPv6, use the
9 # - '[2001:DB8:1234::334]:5353'
11 # By default, or when unset, ixfrdist listens on local loopback addresses.
16 # Netmasks or IP addresses of hosts that are allowed to query ixfrdist. Hosts
17 # do not need a netmask:
23 # - '2001:DB8:ABCD::/48'
25 # By default (or when unset), only loopback addresses are allowed.
31 # Maximum number of records allowed in a single zone. ixfrdist will abort the
32 # zone transfer from the master when more than this number of records have been
33 # received. A value of 0 (the default) means unlimited
37 # Timeout in seconds an AXFR transaction requested by ixfrdist may take.
38 # Increase this when the network to the authoritative servers is slow or the
39 # domains are very large and you experience timeouts. Set to 20 by default or
44 # Amount of older copies/IXFR diffs to keep for every domain. This is set to
45 # 20 by default or when unset.
49 # Number of threads to spawn for TCP connections (AXFRs) from downstream hosts.
50 # This is set to 10 by default or when unset.
54 # The directory where the domain data is stored. When unset, the current
55 # working directory is used. Note that this directory must be writable for the
56 # user or group ixfrdist runs as.
58 # work-dir: '/var/lib/ixfrdist'
60 # User to drop privileges to once all listen-sockets are bound. May be either
61 # a username or numerical ID.
65 # Group to drop privileges to once all listen-sockets are bound. May be either
66 # a username or numerical ID.
70 # The domains to redistribute, the 'master' and 'domains' keys are mandatory.
71 # When no port is specified, 53 is used. When specifying ports for IPv6, use the
75 # - domain: example.com
77 # - domain: rpz.example
78 # master: [2001:DB8:a34:543::53]:5353