Insecurer mode; there will only be one query for the DNSKEYS. There will not
be crosschecking of all authoritative nameservers.
-\fB-v\f \fIverbosity\fR
+\fB-v\fR \fIverbosity\fR
Set the verbosity level. The following levels are available:
3: Show the intermediate results (authority and dnskey rrsets)
4: Print the answer packets that are returned
-\fB-r\f \fIfile\fR
+\fB-r\fR \fIfile\fR
Use file as the root hints file, should contain A records in presentation
format. The default is /etc/named.root. You can get this file from
.SH OPTIONS
.TP
-\fB-e\f \fIdate\fR
+\fB-e\fR \fIdate\fR
Set expiration date of the signatures to this date, the format can be
YYYYMMDD[hhmmss], or a timestamp.
.TP
-\fB-f\f \fIfile\fR
+\fB-f\fR \fIfile\fR
Use this file to store the signed zone in (default <originalfile>.signed)
.TP
Leave old DNSSEC RRSIGS and NSEC records intact (by default, they are removed from the zone)
.TP
-\fB-o\f \fIorigin\fR
+\fB-o\fR \fIorigin\fR
Use this as the origin of the zone, if it cannot be read from the zonefile
.TP
Print the version and exit
.TP
-\fB-E\f \fIname\fR
+\fB-E\fR \fIname\fR
Use the EVP cryptographic engine with the given name for signing. This can have some extra options; see ENGINE OPTIONS for more information.
.TP
-\fB-k\f \fIid,int\fR
+\fB-k\fR \fIid,int\fR
Use the key with the given id as the signing key for algorithm int as a Zone signing key.
.TP
-\fB-K\f \fIid,int\fR
+\fB-K\fR \fIid,int\fR
Use the key with the given id as the signing key for algorithm int as a Key signing key.
.Sh NAME
ldns-testns
.Nd simple fake nameserver tool
-
.Sh SYNOPSIS
.Nm ldns-testns
.Op Fl r
.Op Fl v
.Op Fl 6
datafile
-
+.Pp
.Sh DESCRIPTION
.Ic ldns-testns
can be used to provide answers to DNS queries for testing.
The answers are premade, and can be tailored to testing needs. The answers
can be wildly invalid or unparseable.
-
+.Pp
This program is a debugging aid. It is not efficient, especially
with a long config file, but it can give any reply to any query.
This can help the developer pre-script replies for queries.
-
+.Pp
It listens to IP4 UDP and TCP by default.
You can specify a packet RR by RR with header flags to return.
-
+.Pp
ldns-testns is not meant for production use.
-
+.Pp
.Sh OPTIONS
.Pp
.Bl -tag -width indent
.It Fl r
Listens to a random port. The port number is printed to stdout.
-
+.Pp
.It Fl p Ar port
Listens to the specified port.
-
+.Pp
.It Fl f Ar num
Forks this number of additional instances that serve the same ports and
same datafile. They do not exit; printed is 'forked pid: <num>' and you
have to kill them yourself.
-
+.Pp
.It Fl v
Outputs more debug information. It is possible to give this option multiple
times to increase verbosity level.
-
+.Pp
.It Fl 6
Bind to IP6 address instead of IP4. Use together with -p.
-
+.Pp
.It datafile
The data file is read on start up. It contains queries and the packets
that should be sent in answer to those queries. The data file format is
explained below.
-
+.Pp
.El
.Pp
.Sh DATA FILE FORMAT
-
+.Pp
The data file format has ';' to denote comment. A number of entries
are processed first to last. The first matching entry is used to answer
the query with. This is a line based format. DNS resource records
are entered in zone-file format.
-
+.Pp
You can use $ORIGIN and $TTL directives. Zone file '(' and ')' to span
multiple lines are not allowed.
-
+.Pp
$ORIGIN origin
.br
$TTL default_ttl
-
+.Pp
ENTRY_BEGIN
.br
; first give MATCH lines, that say what queries are matched
HEX_ANSWER_END
.br
ENTRY_END
-
+.Pp
.Sh AUTHOR
Written by the ldns team as an example for ldns usage, and for testing purposes.
-
.Sh REPORTING BUGS
Report bugs to <ldns-team@nlnetlabs.nl>.
-
.Sh COPYRIGHT
Copyright (C) 2006 NLnet Labs. This is free software. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR
projects / thirdparty / ldns.git / commitdiff
