jvdias 18d1e1
# BIND named process options
jvdias 18d1e1
# ~~~~~~~~~~~~~~~~~~~~~~~~~~
cvsdist aed712
# Currently, you can use the following options:
jvdias 18d1e1
#
Adam Tkac 583a06
# ROOTDIR="/var/named/chroot"  --  will run named in a chroot environment.
jvdias 18d1e1
#                            you must set up the chroot environment 
jvdias 18d1e1
#                            (install the bind-chroot package) before
cvsdist aed712
#                            doing this.
Adam Tkac 91895c
#	NOTE:
Adam Tkac 91895c
#         Those directories are automatically mounted to chroot if they are
Adam Tkac 91895c
#         empty in the ROOTDIR directory. It will simplify maintenance of your
Adam Tkac 91895c
#         chroot environment.
Adam Tkac 91895c
#          - /var/named
Adam Tkac 91895c
#          - /etc/pki/dnssec-keys
Adam Tkac 91895c
#          - /etc/named
Adam Tkac 732323
#          - /usr/lib64/bind or /usr/lib/bind (architecture dependent)
Adam Tkac 91895c
#
Adam Tkac 91895c
#	  Those files are mounted as well if target file doesn't exist in
Adam Tkac 91895c
#	  chroot.
Adam Tkac 91895c
#          - /etc/named.conf
Adam Tkac 91895c
#          - /etc/rndc.conf
Adam Tkac 91895c
#          - /etc/rndc.key
Adam Tkac 91895c
#          - /etc/named.rfc1912.zones
Adam Tkac 91895c
#          - /etc/named.dnssec.keys
Adam Tkac 34adbe
#	   - /etc/named.iscdlv.key
Adam Tkac 2af3ea
#
Adam Tkac 2af3ea
#	Don't forget to add "$AddUnixListenSocket /var/named/chroot/dev/log"
Adam Tkac 2af3ea
#	line to your /etc/rsyslog.conf file. Otherwise your logging becomes
Adam Tkac 2af3ea
#	broken when rsyslogd daemon is restarted (due update, for example).
jvdias 18d1e1
#
jvdias 18d1e1
# OPTIONS="whatever"     --  These additional options will be passed to named
jvdias 18d1e1
#                            at startup. Don't add -t here, use ROOTDIR instead.
jvdias 18d1e1
#
Adam Tkac fb5bf1
# KEYTAB_FILE="/dir/file"    --  Specify named service keytab file (for GSS-TSIG)
Adam Tkac d4ce1d
#
Adam Tkac d4ce1d
# DISABLE_ZONE_CHECKING  -- By default, initscript calls named-checkzone
Adam Tkac d4ce1d
#			    utility for every zone to ensure all zones are
Adam Tkac d4ce1d
#			    valid before named starts. If you set this option
Adam Tkac d4ce1d
#			    to 'yes' then initscript doesn't perform those
Adam Tkac d4ce1d
#			    checks.