Nsdc absent from NSD

Fong · July 29, 2014, 12:22pm

Trying NSD out on a FreeBSD 10 machine. Installed from ports and trying to follow info in these two tutorials:

http://www.prado.it/2012/04/19/how-to-run-master-and-slave-nsd-on-freebsd-9-0/

http://www.tokiwinter.com/nsd-master-slave-dns-servers/

Both instruct reloading using nsdc, but the command seems to be totally absent after the install from ports. Any idea why?

Thanx

FONG

Erwin_Lansing · July 29, 2014, 12:30pm

Those turorials are probably based on NSD3 (still available in ports as dns/nsd3). nsdc has been replaced by the nsd-control utility in NSD4.
http://open.nlnetlabs.nl/pipermail/nsd-users/2013-October/001734.html

Best,
Erwin

anandb · July 29, 2014, 12:37pm

The port has probably been updated to NSD 4, which does *not* have nsdc
any more. NSD 4 now has a new command called nsd-control. I expect the
port to have installed the man pages, so do the following to familiarise
yourself with NSD 4's new commands:

man nsd
man nsd.conf
man nsd-control

Alternatively, download a tarball of NSD 4's source code and read the
file called NSD-4-features in there.

Regards,

Anand Buddhdev
RIPE NCC

Fong · July 31, 2014, 11:07pm

Thank you!

When I run 'nsd-control status' I get:

warning: control-enable is 'no' in the config file.
error: Error setting up SSL_CTX client key and cert
34381051560:error:02001002:system library:fopen:No such file or directory:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:398:fopen('/usr/local/etc/nsd/nsd_control.pem','r')
34381051560:error:20074002:BIO routines:FILE_CTRL:system lib:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:400:
34381051560:error:140AD002:SSL routines:SSL_CTX_use_certificate_file:system lib:/usr/src/secure/lib/libssl/../../../crypto/openssl/ssl/ssl_rsa.c:470:

Reading that link you included, do I get the impression that if I am just running one local daemon, I shouldn't bother with nsd-control and just do a kill -HUP to reload it?

Or should I be generating keys for nsd-control even if its just on localhost?

FONG

Fong · July 31, 2014, 11:34pm

Ha nevermind. The kill -HUP reference threw me off/distracted me before I saw nsd-control-setup. All seems well now.

Thanx

FONG