plugin/secondary/README.md

# secondary

## Name

*secondary* - enables serving a zone retrieved from a primary server.

## Description

With *secondary* you can transfer (via AXFR) a zone from another server. The retrieved zone is
*not committed* to disk (a violation of the RFC). This means restarting CoreDNS will cause it to
 retrieve all secondary zones.

~~~
secondary [ZONES...]
~~~

* **ZONES** zones it should be authoritative for. If empty, the zones from the configuration block
    are used. Note that without a remote address to *get* the zone from, the above is not that useful.

A working syntax would be:

~~~
secondary [zones...] {
    transfer from ADDRESS
    transfer to ADDRESS
    upstream
}
~~~

* `transfer from` specifies from which address to fetch the zone. It can be specified multiple times;
    if one does not work, another will be tried.
* `transfer to` can be enabled to allow this secondary zone to be transferred again.
* `upstream` resolve external names found (think CNAMEs) pointing to external names. This is only
  really useful when CoreDNS is configured as a proxy; for normal authoritative serving you don't
  need *or* want to use this. CoreDNS will resolve CNAMEs against itself.

When a zone is due to be refreshed (Refresh timer fires) a random jitter of 5 seconds is
applied, before fetching. In the case of retry this will be 2 seconds. If there are any errors
during the transfer the transfer fails; this will be logged.

## Examples

Transfer `example.org` from 10.0.1.1, and if that fails try 10.1.2.1.

~~~ corefile
example.org {
    secondary {
        transfer from 10.0.1.1
        transfer from 10.1.2.1
    }
}
~~~

Or re-export the retrieved zone to other secondaries.

~~~ corefile
. {
    secondary example.net {
        transfer from 10.1.2.1
        transfer to *
    }
}
~~~

## Bugs

Only AXFR is supported and the retrieved zone is not committed to disk.
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`# secondary`

Manual pages (#1346) * Add manual pages Generate manual pages from the README and extend README with Name and Description sections. The generation requires 'ronn' which may not be available. Just check in all generated manual pages. 2018-01-04 12:53:07 +00:00			`## Name`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00
Manual pages (#1346) * Add manual pages Generate manual pages from the README and extend README with Name and Description sections. The generation requires 'ronn' which may not be available. Just check in all generated manual pages. 2018-01-04 12:53:07 +00:00			`secondary - enables serving a zone retrieved from a primary server.`

			`## Description`

			`With secondary you can transfer (via AXFR) a zone from another server. The retrieved zone is`
			`not committed to disk (a violation of the RFC). This means restarting CoreDNS will cause it to`
			`retrieve all secondary zones.`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00
			`~~~`
docs: rewrite using manpage style (#327) This still needs cleanup, but this is a first pass the cleans some cruft and documents our style (in middleware.md) and makes all the docs match that style. 2016-10-10 20:13:22 +01:00			`secondary [ZONES...]`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`~~~`

docs: rewrite using manpage style (#327) This still needs cleanup, but this is a first pass the cleans some cruft and documents our style (in middleware.md) and makes all the docs match that style. 2016-10-10 20:13:22 +01:00			`* ZONES zones it should be authoritative for. If empty, the zones from the configuration block`
Update README.md Grammatical fixes. 2016-08-22 14:40:24 -07:00			`are used. Note that without a remote address to get the zone from, the above is not that useful.`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00
			`A working syntax would be:`

			`~~~`
			`secondary [zones...] {`
docs: rewrite using manpage style (#327) This still needs cleanup, but this is a first pass the cleans some cruft and documents our style (in middleware.md) and makes all the docs match that style. 2016-10-10 20:13:22 +01:00			`transfer from ADDRESS`
middleware/secondary: multiple fixes (#745) Fix transferring the zone from a master and the matching of notifies to source and dst IP addresses. Add `upstream` keyword as well, because it is needed for the same reasons as in the file middlware. Add some dire warning about upstream in the readme of both middlewares. Out of band testing, hidden by net build tag was added. Integration testing still needs to be setup. 2017-06-21 23:46:20 -07:00			`transfer to ADDRESS`
Default to upstream to self (#2436) * Default to upstream to self This is a backwards incompatible change. This is a massive (cleanup) PR where we default to resolving external names by the coredns process itself, instead of directly forwarding them to some upstream. This ignores any arguments `upstream` may have had and makes it depend on proxy/forward configuration in the Corefile. This allows resolved upstream names to be cached and we have better healthchecking of the upstreams. It also means there is only one way to resolve names, by either using the proxy or forward plugin. The proxy/forward lookup.go functions have been removed. This also lessen the dependency on proxy, meaning deprecating proxy will become easier. Some tests have been removed as well, or moved to the top-level test directory as they now require a full coredns process instead of just the plugin. For the etcd plugin, the entire StubZone resolving is dropped! This was a hacky (but working) solution to say the least. If someone cares deeply it can be brought back (maybe)? The pkg/upstream is now very small and almost does nothing. Also the New() function was changed to return a pointer to upstream.Upstream. It also returns only one parameter, so any stragglers using it will encounter a compile error. All documentation has been adapted. This affected the following plugins: * etcd * file * auto * secondary * federation * template * route53 A followup PR will make any upstream directives with arguments an error, right now they are ignored. Signed-off-by: Miek Gieben <miek@miek.nl> * Fix etcd build - probably still fails unit test Signed-off-by: Miek Gieben <miek@miek.nl> * Slightly smarter lookup check in upstream Signed-off-by: Miek Gieben <miek@miek.nl> * Compilez Signed-off-by: Miek Gieben <miek@miek.nl> 2019-01-13 16:54:49 +00:00			`upstream`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`}`
			`~~~`

Update README.md Grammatical fixes. 2016-08-22 14:40:24 -07:00			* `transfer from` specifies from which address to fetch the zone. It can be specified multiple times;
			`if one does not work, another will be tried.`
			* `transfer to` can be enabled to allow this secondary zone to be transferred again.
Default to upstream to self (#2436) * Default to upstream to self This is a backwards incompatible change. This is a massive (cleanup) PR where we default to resolving external names by the coredns process itself, instead of directly forwarding them to some upstream. This ignores any arguments `upstream` may have had and makes it depend on proxy/forward configuration in the Corefile. This allows resolved upstream names to be cached and we have better healthchecking of the upstreams. It also means there is only one way to resolve names, by either using the proxy or forward plugin. The proxy/forward lookup.go functions have been removed. This also lessen the dependency on proxy, meaning deprecating proxy will become easier. Some tests have been removed as well, or moved to the top-level test directory as they now require a full coredns process instead of just the plugin. For the etcd plugin, the entire StubZone resolving is dropped! This was a hacky (but working) solution to say the least. If someone cares deeply it can be brought back (maybe)? The pkg/upstream is now very small and almost does nothing. Also the New() function was changed to return a pointer to upstream.Upstream. It also returns only one parameter, so any stragglers using it will encounter a compile error. All documentation has been adapted. This affected the following plugins: * etcd * file * auto * secondary * federation * template * route53 A followup PR will make any upstream directives with arguments an error, right now they are ignored. Signed-off-by: Miek Gieben <miek@miek.nl> * Fix etcd build - probably still fails unit test Signed-off-by: Miek Gieben <miek@miek.nl> * Slightly smarter lookup check in upstream Signed-off-by: Miek Gieben <miek@miek.nl> * Compilez Signed-off-by: Miek Gieben <miek@miek.nl> 2019-01-13 16:54:49 +00:00			* `upstream` resolve external names found (think CNAMEs) pointing to external names. This is only
			`really useful when CoreDNS is configured as a proxy; for normal authoritative serving you don't`
			`need or want to use this. CoreDNS will resolve CNAMEs against itself.`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00
plugin/secondary: fix a bunch of things and tests (#1406) Fix the error handling. Log when we have an error during any of the transfer state. And if there isn't an error transfer the zones. Also fix the tests in test/ so we, at least, check the initial transfer. Update the docs to show more about how errors are handled. Ref #1400 2018-01-23 10:35:10 +00:00			`When a zone is due to be refreshed (Refresh timer fires) a random jitter of 5 seconds is`
			`applied, before fetching. In the case of retry this will be 2 seconds. If there are any errors`
			`during the transfer the transfer fails; this will be logged.`

Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`## Examples`

documention: test README snippets (#1043) If a README has a corefile snippet that is annotated with `corefile`, this test will parse the instance and checks the snippet is legal. This means a) we will get better docs b) we know for sure everything still parses. The test parses everything in middleware//README.md, it does not check for README presence, just Corefile snippets. The port used is 10053 and overrides whatever port is set in the docs. The secondary middleware was used as an example and adds two examples that should parse. failures show up as: ~~~ --- FAIL: TestReadme (0.04s) readme_test.go:50: Testing ../middleware/secondary/README.md, with 100 byte snippet readme_test.go:50: Testing ../middleware/secondary/README.md, with 93 byte snippet readme_test.go:53: Failed to start server for input "middleware/secondary: Corefile:3 - Error during parsing: unknown property 'transfeT'": . { secondary example.net { transfeT from 10.1.2.1 transfer to } } FAIL ~~~ 2017-09-10 19:52:15 +01:00			Transfer `example.org` from 10.0.1.1, and if that fails try 10.1.2.1.

			`~~~ corefile`
			`example.org {`
			`secondary {`
			`transfer from 10.0.1.1`
			`transfer from 10.1.2.1`
			`}`
			`}`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`~~~`
documention: test README snippets (#1043) If a README has a corefile snippet that is annotated with `corefile`, this test will parse the instance and checks the snippet is legal. This means a) we will get better docs b) we know for sure everything still parses. The test parses everything in middleware//README.md, it does not check for README presence, just Corefile snippets. The port used is 10053 and overrides whatever port is set in the docs. The secondary middleware was used as an example and adds two examples that should parse. failures show up as: ~~~ --- FAIL: TestReadme (0.04s) readme_test.go:50: Testing ../middleware/secondary/README.md, with 100 byte snippet readme_test.go:50: Testing ../middleware/secondary/README.md, with 93 byte snippet readme_test.go:53: Failed to start server for input "middleware/secondary: Corefile:3 - Error during parsing: unknown property 'transfeT'": . { secondary example.net { transfeT from 10.1.2.1 transfer to } } FAIL ~~~ 2017-09-10 19:52:15 +01:00
			`Or re-export the retrieved zone to other secondaries.`

			`~~~ corefile`
			`. {`
			`secondary example.net {`
			`transfer from 10.1.2.1`
			`transfer to *`
			`}`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`}`
			`~~~`
Manual pages (#1346) * Add manual pages Generate manual pages from the README and extend README with Name and Description sections. The generation requires 'ronn' which may not be available. Just check in all generated manual pages. 2018-01-04 12:53:07 +00:00
Doc (#1369) * Constent atx headers * Regen manual pages 2018-01-10 11:45:12 +00:00			`## Bugs`
Manual pages (#1346) * Add manual pages Generate manual pages from the README and extend README with Name and Description sections. The generation requires 'ronn' which may not be available. Just check in all generated manual pages. 2018-01-04 12:53:07 +00:00
			`Only AXFR is supported and the retrieved zone is not committed to disk.`