X-Git-Url: http://git.ipfire.org/?a=blobdiff_plain;f=man%2Fresolvectl.xml;h=0ae70dc34bd2d324db947f569a654f2f020c7219;hb=b7a473455112184a62cd0b591a5f824e38e495d2;hp=8c1d6e5de4a2924070d6e161d40f8e47bdb735fb;hpb=a5f6f346d3db9061fa73527e9dba3fa6b1d80b69;p=thirdparty%2Fsystemd.git diff --git a/man/resolvectl.xml b/man/resolvectl.xml index 8c1d6e5de4a..0ae70dc34bd 100644 --- a/man/resolvectl.xml +++ b/man/resolvectl.xml @@ -45,7 +45,7 @@ interface the data was discovered. It also contains information on whether the information could be authenticated. All data for which local DNSSEC validation succeeds is considered authenticated. Moreover all data originating from local, trusted sources is also reported authenticated, including resolution of the local host - name, the localhost host name or all data from /etc/hosts. + name, the localhost hostname or all data from /etc/hosts. @@ -53,13 +53,15 @@ - + query HOSTNAME|ADDRESS… Resolve domain names, IPv4 and IPv6 addresses. - + service + [[NAME] TYPE] + DOMAIN Resolve DNS-SD and SRV services, depending on the specified list of parameters. @@ -71,7 +73,7 @@ - + openpgp EMAIL@DOMAIN… Query PGP keys stored as OPENPGPKEY resource records. Specified e-mail addresses are converted to the corresponding DNS domain name, and any @@ -79,7 +81,9 @@ - + tlsa + [FAMILY] + DOMAIN[:PORT]… Query TLS public keys stored as TLSA resource records. A query will be performed for each of the specified names prefixed with the port and family @@ -89,28 +93,28 @@ - + status [LINK…] Shows the global and per-link DNS settings currently in effect. If no command is specified, this is the implied default. - + statistics Shows general resolver statistics, including information whether DNSSEC is enabled and available, as well as resolution and validation statistics. - + reset-statistics - Resets the statistics counters shown in to zero. + Resets the statistics counters shown in statistics to zero. This operation requires root privileges. - + flush-caches Flushes all DNS resource record caches the service maintains locally. This is mostly equivalent to sending the SIGUSR2 to the systemd-resolved @@ -118,7 +122,7 @@ - + reset-server-features Flushes all feature level information the resolver learnt about specific servers, and ensures that the server feature probing logic is started from the beginning with the next look-up request. This is @@ -127,48 +131,51 @@ - - - - - - - - + dns [LINK [SERVER…]] + domain [LINK [DOMAIN…]] + default-route [LINK [BOOL…]] + llmnr [LINK [MODE]] + mdns [LINK [MODE]] + dnssec [LINK [MODE]] + dnsovertls [LINK [MODE]] + nta [LINK [DOMAIN…]] - Get/set per-interface DNS configuration. These commands may be used to configure various DNS settings - for network interfaces. These commands may be used to inform systemd-resolved or - systemd-networkd about per-interface DNS configuration determined - through external means. The command expects IPv4 or IPv6 address specifications of DNS - servers to use. The command expects valid DNS domains, possibly prefixed with - ~, and configures a per-interface search or route-only domain. The - command expects a boolean parameter, and configures whether the link may be - used as default route for DNS lookups, i.e. if it is suitable for lookups on domains no other link explicitly - is configured for. The , , and - commands may be used to configure the per-interface LLMNR, MulticastDNS, DNSSEC - and DNSOverTLS settings. Finally, command may be used to configure additional - per-interface DNSSEC NTA domains. - - Options , and can take + Get/set per-interface DNS configuration. These commands may be used to configure various DNS + settings for network interfaces. These commands may be used to inform + systemd-resolved or systemd-networkd about per-interface DNS + configuration determined through external means. The dns command expects IPv4 or + IPv6 address specifications of DNS servers to use. The domain command expects + valid DNS domains, possibly prefixed with ~, and configures a per-interface + search or route-only domain. The default-route command expects a boolean + parameter, and configures whether the link may be used as default route for DNS lookups, i.e. if it + is suitable for lookups on domains no other link explicitly is configured for. The + llmnr, mdns, dnssec and + dnsovertls commands may be used to configure the per-interface LLMNR, + MulticastDNS, DNSSEC and DNSOverTLS settings. Finally, nta command may be used + to configure additional per-interface DNSSEC NTA domains. + + Commands dns, domain and nta can take a single empty string argument to clear their respective value lists. - For details about these settings, their possible values and their effect, see the corresponding options in + For details about these settings, their possible values and their effect, see the + corresponding settings in systemd.network5. - + revert LINK Revert the per-interface DNS configuration. If the DNS configuration is reverted all - per-interface DNS setting are reset to their defaults, undoing all effects of , - , , , , - , , . Note that when a network interface - disappears all configuration is lost automatically, an explicit reverting is not necessary in that - case. + per-interface DNS setting are reset to their defaults, undoing all effects of dns, + domain, default-route, llmnr, + mdns, dnssec, dnsovertls, + nta. Note that when a network interface disappears all configuration is lost + automatically, an explicit reverting is not necessary in that case. + @@ -282,28 +289,38 @@ - Compatibility with <citerefentry><refentrytitle>resolvconf</refentrytitle><manvolnum>8</manvolnum></citerefentry> + Compatibility with + <citerefentry project="debian"><refentrytitle>resolvconf</refentrytitle><manvolnum>8</manvolnum></citerefentry> resolvectl is a multi-call binary. When invoked as resolvconf (generally achieved by means of a symbolic link of this name to the resolvectl binary) it - is run in a limited resolvconf8 + is run in a limited + resolvconf8 compatibility mode. It accepts mostly the same arguments and pushes all data into systemd-resolved.service8, similar to how and commands operate. Note that systemd-resolved.service is the only supported backend, which is different from other - implementations of this command. Note that not all operations supported by other implementations are supported - natively. Specifically: + implementations of this command. + + /etc/resolv.conf will only be updated with servers added with this command + when /etc/resolv.conf is a symlink to + /run/systemd/resolve/resolv.conf, and not a static file. See the discussion of + /etc/resolv.conf handling in + systemd-resolved.service8. + + + Not all operations supported by other implementations are supported natively. Specifically: Registers per-interface DNS configuration data with systemd-resolved. Expects a network interface name as only command line argument. Reads - resolv.conf5 compatible DNS - configuration data from its standard input. Relevant fields are nameserver and + resolv.conf5-compatible + DNS configuration data from its standard input. Relevant fields are nameserver and domain/search. This command is mostly identical to invoking - resolvectl with a combination of and - commands. + resolvectl with a combination of and + commands. @@ -353,7 +370,9 @@ - See resolvconf8 for details on this command line options. + See + resolvconf8 + for details on those command line options.