nsd users - Jul 2022 - how does zonefile-write work?

Hi Dears,

I'm new to NSD and I'm testing it to use in my production environment

I'm confuse how zonefiles-write works.

I created some slave zones in /etc/nsd/nsd.conf.d/

something like that:

  /etc/nsd/nsd.conf.d/foo.bar.conf

In this file I have the following content

---------------------------------------------------------------------------------------------------------
zone:
    # this server is secondary, X.X.X.X is primary.
    name: foo.bar
    zonefile: "00/foo.bar/foo.bar"
    allow-notify: X.X.X.X key
    request-xfr: X.X.X.X  key
---------------------------------------------------------------------------------------------------------


In my /etc/nsd/nsd.conf I have the following configuration

---------------------------------------------------------------------------------------------------------
include: "/etc/nsd/nsd.conf.d/*.conf"

server:
   server-count: 1
   ip-address: XXX.XXX.XXX.XXX
   ip-address: XXX.XXX.XXX.XXX
   ip-address: 127.0.0.1
   do-ip4: yes
   do-ip6: no
   port: 53
   username: nsd
   zonesdir: "/var/lib/nsd/db/"
   database: "/var/lib/nsd/nsd.db"
   logfile: "/var/log/nsd/nsd.log"
   pidfile: "/var/run/nsd/nsd.pid"
   xfrdfile: "/var/lib/nsd/xfrd.state"
   xfrdir: "/tmp"
   hide-version: no
   version: "NSD"
   zonefiles-write: 3600
   rrl-ratelimit: 200
   verbosity: 3

remote-control:
    control-enable: yes

key:
   name: "key"
   algorithm: hmac-md5
   secret: "some key"
---------------------------------------------------------------------------------------------------------

Ok, here's my doubt. The file /var/lib/nsd/db/00/foo.bar/foo.bar would be
automatically created after 3600 seconds or I could be run "nsd-control
write foo.bar" to create it.

does zonefile-write works only to zone updates?

Regards
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://lists.nlnetlabs.nl/pipermail/nsd-users/attachments/20220728/9ecbfa02/attachment.htm>

On 28/07/2022 10:10, Alexander Varej?o via nsd-users wrote:

Hi Alexander,

[snip]
> Ok, here's my doubt. The file /var/lib/nsd/db/00/foo.bar/foo.bar would
be
> automatically created after 3600 seconds or I could be run
"nsd-control
> write foo.bar" to create it.
The file 00/foo.bar/foo.bar will be created within at most 3600 seconds. 
However, you need to ensure that the directory hierarchy 00/foo.bar 
exists. NSD will not create directories.

If you want to force NSD to write the zone file before 3600 seconds have 
elapsed, you can do that with "nsd-control write <zone>".

Also note that NSD only writes a new zone file when the zone is updated. 
If a zone doesn't have any updates, NSD does not write out a new file.

Regards,
Anand