djbdnscurve6:

Section: Misc. Reference Manual Pages (tinydns)
Updated: 8
Index Return to Main Contents
 

NAME

tinydns - CurveDNS enabled DNS content server  

DESCRIPTION

tinydns accepts iterative DNS queries from hosts around the Internet, and responds with locally configured information. Encrypted DNS queries in the DNSCurve format are supported when the name server's public key is generated by means of dnscurve-keygen and used as primary DNS name for tinydns.  

CONFIGURATION

Normally tinydns is set up by the tinydns-conf program.

tinydns runs chrooted in the directory s as specified by the $ROOT environment variable, under the uid and gid specified by the $UID and $GID environment variables.

tinydns expects a directory s/env to include the CurveDNS private key given in the file CURVEDNS_PRIVATE_KEY in binary form.

Typically, the root directory is s/root where the zone file is given as data to be translated into its binary form data.cdb by tinydns-data.  

OPERATION

tinydns listens for incoming UDP packets addressed to port 53 of $IP. It does not listen for TCP queries. Specifying 0.0.0.0 or :: results in listing to all available IP adresses and interfaces (for IPv6) respectively. In case $IP is specified as the pseudo IP address :0, tinydns is forced to bind to all available IPv4 and IPv6 addresses simultaneously. tinydns answers queries as specified by data.cdb.  

ZONE FILE

The zone file data provides one DNS record per line. It is easy to edit and well structured for automatic generation. Typically, make is called reading Makefile to compile data into its binary form data.cdb. Further helper routines for most common tasks are available.

The file data.cdb is binary exchangeable among different tinydns name servers, thus classicle zone transfers can be avoided, though it is supported.  

FURTHER DETAILS

tinydns rejects zone-transfer requests, inverse queries, non-Internet-class queries, truncated packets, and packets that contain anything other than a single query.

tinydns, like BIND, includes NS records with answers to most queries in its authority section. This increases DNS packet sizes, but it draws queries away from parent servers, and reduces the frequency of long DNS delays. With the default tinydns-data cache times, a client that uses a normal record at least once every day will always have the corresponding NS records cached and will never have to talk to parent servers.

tinydns allows a ``split-horizon'' operation based on the query origin.  

SEE ALSO

curvedns-keygen(8), tinydns-conf(8), tinydns-data(8), tinydns-edit(8), tinydns-log(5), axfrdns(8), axfr-get(8).  

REFERENCE

For tutorial information, see the FAQ List https://cr.yp.to/djbdns.html

 

Index

NAME
DESCRIPTION
CONFIGURATION
OPERATION
ZONE FILE
FURTHER DETAILS
SEE ALSO
REFERENCE
This document was created by man2html, using the manual pages.
Time: 15:54:42 GMT, April 04, 2026