|
+
|
... |
[root@localhost ~]# cat recursor.conf
setuid=pdns-recursor
setgid=pdns-recursor
# Autogenerated configuration file template
#################################
# aaaa-additional-processing turn on to do AAAA additional processing (slow)
#
# aaaa-additional-processing=off
#################################
# allow-from If set, only allow these comma separated netmasks to recurse
#
# allow-from=127.0.0.0/8, 10.0.0.0/8, 192.168.0.0/16, 172.16.0.0/12, ::1/128, fe80::/10
#################################
# allow-from-file If set, load allowed netmasks from this file
#
# allow-from-file=
#################################
# auth-can-lower-ttl If we follow RFC 2181 to the letter, an authoritative server can lower the TTL of NS records
#
# auth-can-lower-ttl=off
#################################
# auth-zones Zones for which we have authoritative data, comma separated domain=file pairs
#
# auth-zones=
#################################
# chroot switch to chroot jail
#
# chroot=
#################################
# client-tcp-timeout Timeout in seconds when talking to TCP clients
#
# client-tcp-timeout=2
#################################
# config-dir Location of configuration directory (recursor.conf)
#
# config-dir=/etc/pdns-recursor/
#################################
# daemon Operate as a daemon
#
# daemon=yes
#################################
# delegation-only Which domains we only accept delegations from
#
# delegation-only=
#################################
# dont-query If set, do not query these netmasks for DNS data
#
# dont-query=127.0.0.0/8, 10.0.0.0/8, 192.168.0.0/16, 172.16.0.0/12, ::1/128, fe80::/10
#################################
# entropy-source If set, read entropy from this file
#
# entropy-source=/dev/urandom
#################################
# export-etc-hosts If we should serve up contents from /etc/hosts
#
# export-etc-hosts=off
#################################
# fork If set, fork the daemon for possible double performance
#
# fork=no
#################################
# forward-zones Zones for which we forward queries, comma separated domain=ip pairs
#
# forward-zones=
#################################
# forward-zones-file File with domain=ip pairs for forwarding
#
# forward-zones-file=
#################################
# hint-file If set, load root hints from this file
#
# hint-file=
#################################
# ignore-rd-bit Assume each packet requires recursion, for compatability
#
# ignore-rd-bit=off
#################################
# local-address IP addresses to listen on, separated by spaces or commas. Also accepts ports.
#
# local-address=127.0.0.1
#################################
# local-port port to listen on
#
# local-port=53
#################################
# log-common-errors If we should log rather common errors
#
# log-common-errors=yes
#################################
# logging-facility Facility to log messages as. 0 corresponds to local0
#
# logging-facility=
#################################
# max-cache-entries If set, maximum number of entries in the main cache
#
# max-cache-entries=0
#################################
# max-negative-ttl maximum number of seconds to keep a negative cached entry in memory
#
# max-negative-ttl=3600
#################################
# max-tcp-clients Maximum number of simultaneous TCP clients
#
# max-tcp-clients=128
#################################
# max-tcp-per-client If set, maximum number of TCP sessions per client (IP address)
#
# max-tcp-per-client=0
#################################
# no-shuffle Don't change
#
# no-shuffle=off
#################################
# query-local-address Source IP address for sending queries
#
# query-local-address=0.0.0.0
#################################
# query-local-address6 Source IPv6 address for sending queries
#
# query-local-address6=
#################################
# quiet Suppress logging of questions and answers
#
# quiet=
#################################
# remotes-ringbuffer-entries maximum number of packets to store statistics for
#
# remotes-ringbuffer-entries=0
#################################
# serve-rfc1918 If we should be authoritative for RFC 1918 private IP space
#
# serve-rfc1918=
#################################
# server-id Returned when queried for 'server.id' TXT, defaults to hostname
#
# server-id=
#################################
# setgid If set, change group id to this gid for more security
#
# setgid=
#################################
# setuid If set, change user id to this uid for more security
#
# setuid=
#################################
# single-socket If set, only use a single socket for outgoing queries
#
# single-socket=off
#################################
# soa-minimum-ttl Don't change
#
# soa-minimum-ttl=0
#################################
# soa-serial-offset Don't change
#
# soa-serial-offset=0
#################################
# socket-dir Where the controlsocket will live
#
# socket-dir=/var/run/
#################################
# spoof-nearmiss-max If non-zero, assume spoofing after this many near misses
#
# spoof-nearmiss-max=20
#################################
# stack-size stack size per mthread
#
# stack-size=200000
#################################
# trace if we should output heaps of logging
#
# trace=off
#################################
# version-string string reported on version.pdns or version.bind
#
# version-string=PowerDNS Recursor 3.1.5 $Id: pdns_recursor.cc 1170 2008-03-22 20:43:44Z ahu $
|
