2 <!DOCTYPE refentry PUBLIC
"-//OASIS//DTD DocBook XML V4.2//EN"
3 "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd">
6 SPDX-License-Identifier: LGPL-2.1+
9 <refentry id=
"nss-resolve" conditional='ENABLE_NSS_RESOLVE'
>
12 <title>nss-resolve
</title>
13 <productname>systemd
</productname>
17 <refentrytitle>nss-resolve
</refentrytitle>
18 <manvolnum>8</manvolnum>
22 <refname>nss-resolve
</refname>
23 <refname>libnss_resolve.so
.2</refname>
24 <refpurpose>Provide hostname resolution via
<filename>systemd-resolved.service
</filename></refpurpose>
28 <para><filename>libnss_resolve.so
.2</filename></para>
32 <title>Description
</title>
34 <para><command>nss-resolve
</command> is a plug-in module for the GNU Name Service Switch (NSS) functionality of the
35 GNU C Library (
<command>glibc
</command>) enabling it to resolve host names via the
36 <citerefentry><refentrytitle>systemd-resolved
</refentrytitle><manvolnum>8</manvolnum></citerefentry> local network
37 name resolution service. It replaces the
<command>nss-dns
</command> plug-in module that traditionally resolves
38 hostnames via DNS.
</para>
40 <para>To activate the NSS module, add
<literal>resolve
</literal> to the line starting with
41 <literal>hosts:
</literal> in
<filename>/etc/nsswitch.conf
</filename>. Specifically, it is recommended to place
42 <literal>resolve
</literal> early in
<filename>/etc/nsswitch.conf
</filename>'s
<literal>hosts:
</literal> line (but
43 after the
<literal>files
</literal> or
<literal>mymachines
</literal> entries), right before the
44 <literal>dns
</literal> entry if it exists, followed by
<literal>[!UNAVAIL=return]
</literal>, to ensure DNS queries
46 <citerefentry><refentrytitle>systemd-resolved
</refentrytitle><manvolnum>8</manvolnum></citerefentry> if it is
47 running, but are routed to
<command>nss-dns
</command> if this service is not available.
</para>
49 <para>Note that
<command>systemd-resolved
</command> will synthesize DNS resource
50 records in a few cases, for example for
<literal>localhost
</literal> and the
52 <citerefentry><refentrytitle>systemd-resolved
</refentrytitle><manvolnum>8</manvolnum></citerefentry>
53 for the full list. This duplicates the functionality of
54 <citerefentry><refentrytitle>nss-myhostname
</refentrytitle><manvolnum>8</manvolnum></citerefentry>,
55 but it is still recommended (see examples below) to keep
56 <command>nss-myhostname
</command> configured in
57 <filename>/etc/nsswitch.conf
</filename>, to keep those names resolveable if
58 <command>systemd-resolved
</command> is not running.
</para>
62 <title>Example
</title>
64 <para>Here is an example
<filename>/etc/nsswitch.conf
</filename> file that enables
<command>nss-resolve
</command>
67 <programlisting>passwd: compat mymachines systemd
68 group: compat mymachines systemd
71 hosts: files mymachines
<command>resolve [!UNAVAIL=return]
</command> dns myhostname
79 netgroup: nis
</programlisting>
83 <title>See Also
</title>
85 <citerefentry><refentrytitle>systemd
</refentrytitle><manvolnum>1</manvolnum></citerefentry>,
86 <citerefentry><refentrytitle>systemd-resolved
</refentrytitle><manvolnum>8</manvolnum></citerefentry>,
87 <citerefentry><refentrytitle>nss-systemd
</refentrytitle><manvolnum>8</manvolnum></citerefentry>,
88 <citerefentry><refentrytitle>nss-myhostname
</refentrytitle><manvolnum>8</manvolnum></citerefentry>,
89 <citerefentry><refentrytitle>nss-mymachines
</refentrytitle><manvolnum>8</manvolnum></citerefentry>,
90 <citerefentry project='man-pages'
><refentrytitle>nsswitch.conf
</refentrytitle><manvolnum>5</manvolnum></citerefentry>
projects / thirdparty / systemd.git / blob