coredns/plugin/secondary/README.md

# secondary

## Name

*secondary* - enables serving a zone retrieved from a primary server.

## Description

With *secondary* you can transfer (via AXFR) a zone from another server. The retrieved zone is
*not committed* to disk (a violation of the RFC). This means restarting CoreDNS will cause it to
 retrieve all secondary zones.

~~~
secondary [ZONES...]
~~~

* **ZONES** zones it should be authoritative for. If empty, the zones from the configuration block
    are used. Note that without a remote address to *get* the zone from, the above is not that useful.

A working syntax would be:

~~~
secondary [zones...] {
    transfer from ADDRESS
    transfer to ADDRESS
    upstream [ADDRESS...]
}
~~~

* `transfer from` specifies from which address to fetch the zone. It can be specified multiple times;
    if one does not work, another will be tried.
* `transfer to` can be enabled to allow this secondary zone to be transferred again.
* `upstream` defines upstream resolvers to be used resolve external names found (think CNAMEs)
  pointing to external names. This is only really useful when CoreDNS is configured as a proxy, for
  normal authoritative serving you don't need *or* want to use this. **ADDRESS** can be an IP
  address, and IP:port or a string pointing to a file that is structured as /etc/resolv.conf.
  If no **ADDRESS** is given, CoreDNS will resolve CNAMEs against itself.

When a zone is due to be refreshed (Refresh timer fires) a random jitter of 5 seconds is
applied, before fetching. In the case of retry this will be 2 seconds. If there are any errors
during the transfer the transfer fails; this will be logged.

## Examples

Transfer `example.org` from 10.0.1.1, and if that fails try 10.1.2.1.

~~~ corefile
example.org {
    secondary {
        transfer from 10.0.1.1
        transfer from 10.1.2.1
    }
}
~~~

Or re-export the retrieved zone to other secondaries.

~~~ corefile
. {
    secondary example.net {
        transfer from 10.1.2.1
        transfer to *
    }
}
~~~

## Bugs

Only AXFR is supported and the retrieved zone is not committed to disk.
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`# secondary`

Manual pages (#1346) * Add manual pages Generate manual pages from the README and extend README with Name and Description sections. The generation requires 'ronn' which may not be available. Just check in all generated manual pages. 2018-01-04 12:53:07 +00:00			`## Name`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00
Manual pages (#1346) * Add manual pages Generate manual pages from the README and extend README with Name and Description sections. The generation requires 'ronn' which may not be available. Just check in all generated manual pages. 2018-01-04 12:53:07 +00:00			`secondary - enables serving a zone retrieved from a primary server.`

			`## Description`

			`With secondary you can transfer (via AXFR) a zone from another server. The retrieved zone is`
			`not committed to disk (a violation of the RFC). This means restarting CoreDNS will cause it to`
			`retrieve all secondary zones.`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00
			`~~~`
docs: rewrite using manpage style (#327) This still needs cleanup, but this is a first pass the cleans some cruft and documents our style (in middleware.md) and makes all the docs match that style. 2016-10-10 20:13:22 +01:00			`secondary [ZONES...]`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`~~~`

docs: rewrite using manpage style (#327) This still needs cleanup, but this is a first pass the cleans some cruft and documents our style (in middleware.md) and makes all the docs match that style. 2016-10-10 20:13:22 +01:00			`* ZONES zones it should be authoritative for. If empty, the zones from the configuration block`
Update README.md Grammatical fixes. 2016-08-22 14:40:24 -07:00			`are used. Note that without a remote address to get the zone from, the above is not that useful.`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00
			`A working syntax would be:`

			`~~~`
			`secondary [zones...] {`
docs: rewrite using manpage style (#327) This still needs cleanup, but this is a first pass the cleans some cruft and documents our style (in middleware.md) and makes all the docs match that style. 2016-10-10 20:13:22 +01:00			`transfer from ADDRESS`
middleware/secondary: multiple fixes (#745) Fix transferring the zone from a master and the matching of notifies to source and dst IP addresses. Add `upstream` keyword as well, because it is needed for the same reasons as in the file middlware. Add some dire warning about upstream in the readme of both middlewares. Out of band testing, hidden by net build tag was added. Integration testing still needs to be setup. 2017-06-21 23:46:20 -07:00			`transfer to ADDRESS`
plugin/auto/file/secondary: Use new upstream resolver (#1534) * move file, auto, secondary to new upstream * include context in request 2018-02-16 03:44:50 -05:00			`upstream [ADDRESS...]`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`}`
			`~~~`

Update README.md Grammatical fixes. 2016-08-22 14:40:24 -07:00			* `transfer from` specifies from which address to fetch the zone. It can be specified multiple times;
			`if one does not work, another will be tried.`
			* `transfer to` can be enabled to allow this secondary zone to be transferred again.
middleware/secondary: multiple fixes (#745) Fix transferring the zone from a master and the matching of notifies to source and dst IP addresses. Add `upstream` keyword as well, because it is needed for the same reasons as in the file middlware. Add some dire warning about upstream in the readme of both middlewares. Out of band testing, hidden by net build tag was added. Integration testing still needs to be setup. 2017-06-21 23:46:20 -07:00			* `upstream` defines upstream resolvers to be used resolve external names found (think CNAMEs)
			`pointing to external names. This is only really useful when CoreDNS is configured as a proxy, for`
mw/*: updates docs about upstream (#968) Upstream allows file structured like /etc/resolv.conf. Update docs. Fixes #709 2017-08-22 14:56:00 +01:00			`normal authoritative serving you don't need or want to use this. ADDRESS can be an IP`
			`address, and IP:port or a string pointing to a file that is structured as /etc/resolv.conf.`
plugin/auto/file/secondary: Use new upstream resolver (#1534) * move file, auto, secondary to new upstream * include context in request 2018-02-16 03:44:50 -05:00			`If no ADDRESS is given, CoreDNS will resolve CNAMEs against itself.`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00
plugin/secondary: fix a bunch of things and tests (#1406) Fix the error handling. Log when we have an error during any of the transfer state. And if there isn't an error transfer the zones. Also fix the tests in test/ so we, at least, check the initial transfer. Update the docs to show more about how errors are handled. Ref #1400 2018-01-23 10:35:10 +00:00			`When a zone is due to be refreshed (Refresh timer fires) a random jitter of 5 seconds is`
			`applied, before fetching. In the case of retry this will be 2 seconds. If there are any errors`
			`during the transfer the transfer fails; this will be logged.`

Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`## Examples`

documention: test README snippets (#1043) If a README has a corefile snippet that is annotated with `corefile`, this test will parse the instance and checks the snippet is legal. This means a) we will get better docs b) we know for sure everything still parses. The test parses everything in middleware//README.md, it does not check for README presence, just Corefile snippets. The port used is 10053 and overrides whatever port is set in the docs. The secondary middleware was used as an example and adds two examples that should parse. failures show up as: ~~~ --- FAIL: TestReadme (0.04s) readme_test.go:50: Testing ../middleware/secondary/README.md, with 100 byte snippet readme_test.go:50: Testing ../middleware/secondary/README.md, with 93 byte snippet readme_test.go:53: Failed to start server for input "middleware/secondary: Corefile:3 - Error during parsing: unknown property 'transfeT'": . { secondary example.net { transfeT from 10.1.2.1 transfer to } } FAIL ~~~ 2017-09-10 19:52:15 +01:00			Transfer `example.org` from 10.0.1.1, and if that fails try 10.1.2.1.

			`~~~ corefile`
			`example.org {`
			`secondary {`
			`transfer from 10.0.1.1`
			`transfer from 10.1.2.1`
			`}`
			`}`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`~~~`
documention: test README snippets (#1043) If a README has a corefile snippet that is annotated with `corefile`, this test will parse the instance and checks the snippet is legal. This means a) we will get better docs b) we know for sure everything still parses. The test parses everything in middleware//README.md, it does not check for README presence, just Corefile snippets. The port used is 10053 and overrides whatever port is set in the docs. The secondary middleware was used as an example and adds two examples that should parse. failures show up as: ~~~ --- FAIL: TestReadme (0.04s) readme_test.go:50: Testing ../middleware/secondary/README.md, with 100 byte snippet readme_test.go:50: Testing ../middleware/secondary/README.md, with 93 byte snippet readme_test.go:53: Failed to start server for input "middleware/secondary: Corefile:3 - Error during parsing: unknown property 'transfeT'": . { secondary example.net { transfeT from 10.1.2.1 transfer to } } FAIL ~~~ 2017-09-10 19:52:15 +01:00
			`Or re-export the retrieved zone to other secondaries.`

			`~~~ corefile`
			`. {`
			`secondary example.net {`
			`transfer from 10.1.2.1`
			`transfer to *`
			`}`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`}`
			`~~~`
Manual pages (#1346) * Add manual pages Generate manual pages from the README and extend README with Name and Description sections. The generation requires 'ronn' which may not be available. Just check in all generated manual pages. 2018-01-04 12:53:07 +00:00
Doc (#1369) * Constent atx headers * Regen manual pages 2018-01-10 11:45:12 +00:00			`## Bugs`
Manual pages (#1346) * Add manual pages Generate manual pages from the README and extend README with Name and Description sections. The generation requires 'ronn' which may not be available. Just check in all generated manual pages. 2018-01-04 12:53:07 +00:00
			`Only AXFR is supported and the retrieved zone is not committed to disk.`