middleware/file/README.md

# file

`file` enables serving zone data from an RFC 1035-style master file.

The file middleware is used for an "old-style" DNS server. It serves from a preloaded file that exists
on disk. If the zone file contains signatures (i.e. is signed, i.e. DNSSEC) correct DNSSEC answers
are returned. Only NSEC is supported! If you use this setup *you* are responsible for resigning the
zonefile.

## Syntax

~~~
file dbfile [zones...]
~~~

* `dbfile` the database file to read and parse.
* `zones` zones it should be authoritative for. If empty, the zones from the configuration block
    are used.

If you want to round robin A and AAAA responses look at the `loadbalance` middleware.

TSIG key configuration is TODO; directive format for transfer will probably be extended with
TSIG key information, something like `transfer out [address...] key [name] [base64]`

~~~
file dbfile [zones... ] {
    transfer to [address...]
    no_reload
}
~~~

* `transfer` enables zone transfers. It may be specified multiples times. *To* or *from* signals
  the direction. Addresses must be denoted in CIDR notation (127.0.0.1/32 etc.) or just as plain
  addresses. The special wildcard `*` means: the entire internet (only valid for 'transfer to').
  When an address is specified a notify message will be send whenever the zone is reloaded.
* `no_reload` by default CoreDNS will reload a zone from disk whenever it detects a change to the
  file. This option disables that behavior.

## Examples

Load the `example.org` zone from `example.org.signed` and allow transfers to the internet, but send
notifies to 10.240.1.1

~~~
file example.org.signed example.org {
    transfer to *
    transfer to 10.240.1.1
}
~~~
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00			`# file`

Update README.md Grammatical fixes. 2016-08-22 14:12:03 -07:00			`file` enables serving zone data from an RFC 1035-style master file.
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00
Update README.md Grammatical fixes. 2016-08-22 14:12:03 -07:00			`The file middleware is used for an "old-style" DNS server. It serves from a preloaded file that exists`
Update docs Update the file and dnssec docs and glarify what is implement and that we only do NSEC. 2016-08-29 19:15:04 +01:00			`on disk. If the zone file contains signatures (i.e. is signed, i.e. DNSSEC) correct DNSSEC answers`
			`are returned. Only NSEC is supported! If you use this setup you are responsible for resigning the`
			`zonefile.`
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00
			`## Syntax`

			`~~~`
			`file dbfile [zones...]`
			`~~~`

			* `dbfile` the database file to read and parse.
Update README.md Grammatical fixes. 2016-08-22 14:12:03 -07:00			* `zones` zones it should be authoritative for. If empty, the zones from the configuration block
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00			`are used.`

Support outgoing zone transfers These can be enabled by adding "transfer out" to the Corefile. Without it no AXFR is allowed. For now only AXFR and no IXFR. No TSIG and no ACLs. 2016-03-28 12:08:05 +01:00			If you want to round robin A and AAAA responses look at the `loadbalance` middleware.
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`TSIG key configuration is TODO; directive format for transfer will probably be extended with`
Allow more than 1 address for transfer (#121) No reason why not to allow more then one address: `transfer to 127.0.0.1 10.240.20.1`. Fix startup as well, as it turned out to be broken... 2016-04-14 19:57:39 +01:00			TSIG key information, something like `transfer out [address...] key [name] [base64]`
Add notifies to master servers This adds a bunch of supporting code to send notifies to a primary name server. 2016-04-03 07:37:41 +01:00
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00			`~~~`
Support outgoing zone transfers These can be enabled by adding "transfer out" to the Corefile. Without it no AXFR is allowed. For now only AXFR and no IXFR. No TSIG and no ACLs. 2016-03-28 12:08:05 +01:00			`file dbfile [zones... ] {`
Allow more than 1 address for transfer (#121) No reason why not to allow more then one address: `transfer to 127.0.0.1 10.240.20.1`. Fix startup as well, as it turned out to be broken... 2016-04-14 19:57:39 +01:00			`transfer to [address...]`
Reload zone when a write is detected (#122) Zone reloading 2016-04-15 14:26:27 +01:00			`no_reload`
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00			`}`
			`~~~`

Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			* `transfer` enables zone transfers. It may be specified multiples times. To or from signals
docs: document default startup (#266) Some small additions to the documentation. 2016-09-18 09:32:06 +01:00			`the direction. Addresses must be denoted in CIDR notation (127.0.0.1/32 etc.) or just as plain`
			addresses. The special wildcard `*` means: the entire internet (only valid for 'transfer to').
			`When an address is specified a notify message will be send whenever the zone is reloaded.`
Reload zone when a write is detected (#122) Zone reloading 2016-04-15 14:26:27 +01:00			* `no_reload` by default CoreDNS will reload a zone from disk whenever it detects a change to the
			`file. This option disables that behavior.`
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00
			`## Examples`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00
docs: document default startup (#266) Some small additions to the documentation. 2016-09-18 09:32:06 +01:00			Load the `example.org` zone from `example.org.signed` and allow transfers to the internet, but send
			`notifies to 10.240.1.1`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00
			`~~~`
docs: document default startup (#266) Some small additions to the documentation. 2016-09-18 09:32:06 +01:00			`file example.org.signed example.org {`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`transfer to *`
docs: document default startup (#266) Some small additions to the documentation. 2016-09-18 09:32:06 +01:00			`transfer to 10.240.1.1`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`}`
			`~~~`