nsd dns named tsig – an opensource blog

To configure name server deamon as slave for bind:

# useradd -c “NSD” -d /home/nsd -s /sbin/nologin -u 1005 nsd

Download and install the latest version of nsd

# ./configure –prefix=/home/nsd –enable-dnssec –enable-tsig –with-user=nsd
# make
# make install

Edit config: /home/nsd/etc/nsd/nsd.conf
>>>
server: ip-address: hide-version: yes debug-mode: no ip4-only: no ip6-only: no database: "/home/nsd/var/db/nsd/nsd.db" identity: "" logfile: "/var/log/nsd.log" server-count: 1 tcp-count: 10 pidfile: "/home/nsd/var/db/nsd/nsd.pid" port: 53 statistics: 3600 chroot: "/home/nsd/etc/nsd" username: nsd zonesdir: "/home/nsd/etc/nsd" difffile: "/home/nsd/var/db/nsd/ixfr.db" xfrdfile: "/home/nsd/var/db/nsd/xfrd.state" xfrd-reload-timeout: 10

Add key and zone file details:

Start NSD with:
/home/nsd/sbin/nsdc start

to create zone files:
/home/nsd/sbin/nsdc patch

./arun