Skip to main content
A newer release of this product is available.

vserver services name-service dns create

Contributors
Suggest changes

Create a new DNS table entry

Availability: This command is available to cluster and Vserver administrators at the admin privilege level.

Description

The vserver services name-service dns create command creates new DNS server mappings. DNS servers provide remote connection information, such as IP addresses, based on domain and system names.

Parameters

-vserver <vserver name> - Vserver

Use this parameter to specify the Vserver on which to create the new DNS server mapping.

-domains <text>,…​ - Domains

Use this parameter to specify the domains of the Vserver. Separate multiple domains with commas.

-name-servers <IP Address>,…​ - Name Servers

Use this parameter to specify the IP addresses of the DNS servers that provide name service for the domains in this DNS server mapping. Separate multiple addresses with commas.

[-timeout <integer>] - Timeout (secs)

Use this parameter to specify a timeout value (in seconds) for queries to the name servers. The default value is 2 seconds.

[-attempts <integer>] - Maximum Attempts

Use this parameter to specify the number of attempts the Vserver should make when querying the DNS name servers. The default value is 1 attempt.

[-is-tld-query-enabled {true|false}] - Is TLD Query Enabled? (privilege: advanced)

Use this parameter to enable or disable top-level domain (TLD) queries. If the parameter is set to false , the resolver will not attempt to resolve a name that has no "." characters in it. The default value for this parameter is true .

[-require-source-address-match {true|false}] - Require Source and Reply IPs to Match (privilege: advanced)

Use this parameter to allow dns responses sourced from an IP that does not match where the vserver sent the request. If the parameter is set to false , the resolver will allow response from an IP other than the one to which the request was sent. The default value for this parameter is true .

[-require-packet-query-match {true|false}] - Require Packet Queries to Match (privilege: advanced)

Use this parameter to check if the query section of the reply packet is equal to that of the query packet. If the parameter is set to false , the resolver will not check if the query section of the reply packet is equal to that of the query packet. The default value for this parameter is true .

[-skip-config-validation <true>] - Skip Configuration Validation

Use this parameter to skip the DNS configuration validation.

The domain name specified with the -domains is validated with the following rules:

  • The name must contain only the following characters: A through Z, a through z, 0 through 9, ".", "-" or "_".

  • The first character of each label, delimited by ".", must be one of the following characters: A through Z or a through z or 0 through 9.

  • The last character of each label, delimited by ".", must be one of the following characters: A through Z, a through z, or 0 through 9.

  • The top level domain must contain only the following characters: A through Z, a through z.

  • The maximum supported length is 254 characters.

  • The system reserves the following names: "all", "local", and "localhost".

The hosts specified with the -name-servers parameter are validated to verify that each of the name servers is reachable, and is providing DNS services.

The validation fails, if the domain name is invalid, or there is no valid name server.

Examples

This example creates a new DNS server mapping for the Vserver vs0 in the domain example.com, specifying that 192.168.0.16 and 192.168.0.24 are the name servers for this domain.

cluster1::> vserver services name-service dns create -vserver vs0 -domains example.com -name-servers 192.168.0.16,192.168.0.24