Skip to main content

vserver services name-service dns modify

Contributors
Suggest changes

Change a DNS table entry

Availability: This command is available to cluster and Vserver administrators at the admin privilege level.

Description

Use the vserver services name-service dns modify command to modify an existing DNS server mapping.

To permanently remove a mapping, use the vserver services name-service dns delete command.

Parameters

-vserver <vserver name> - Vserver

Use this parameter to specify the Vserver whose DNS mapping is modified.

[-domains <text>,…​] - Domains

Use this parameter to specify a domain for the Vserver.

[-name-servers <IP Address>,…​] - Name Servers

Use this parameter to specify the IP addresses of the DNS name servers for this Vserver.

[-timeout <integer>] - Timeout (secs)

Use this parameter to specify a timeout value (in seconds) for queries to the DNS servers.

[-attempts <integer>] - Maximum Attempts

Use this parameter to specify the number of times to attempt queries to the DNS servers.

[-is-tld-query-enabled {true|false}] - Is TLD Query Enabled? (privilege: advanced)

Use this parameter to enable or disable top-level domain (TLD) queries. If the parameter is set to false , the resolver will not attempt to resolve a name that has no "." characters in it. The default value for this parameter is true .

[-require-source-address-match {true|false}] - Require Source and Reply IPs to Match (privilege: advanced)

Use this parameter to allow dns responses sourced from an IP that does not match where the vserver sent the request. If the parameter is set to false , the resolver will allow response from an IP other than the one to which the request was sent.

[-require-packet-query-match {true|false}] - Require Packet Queries to Match (privilege: advanced)

Use this parameter to check if the query section of the reply packet is equal to that of the query packet. If the parameter is set to false , the resolver will not check if the query section of the reply packet is equal to that of the query packet.

[-skip-config-validation <true>] - Skip Configuration Validation

Use this parameter to skip the DNS configuration validation.

The domain name specified with the -domains is validated with the following rules:

  • The name must contain only the following characters: A through Z, a through z, 0 through 9, ".", "-" or "_".

  • The first character of each label, delimited by ".", must be one of the following characters: A through Z or a through z or 0 through 9.

  • The last character of each label, delimited by ".", must be one of the following characters: A through Z, a through z, or 0 through 9.

  • The top level domain must contain only the following characters: A through Z, a through z.

  • The maximum supported length is 254 characters.

  • The system reserves the following names: "all", "local", and "localhost".

The hosts specified with the -name-servers parameter are validated to verify that each of the name servers is reachable, and is providing DNS services.

The validation fails, if the domain name is invalid, or there is no valid name server.

Examples

This example modifies the DNS server mapping for the domain example.com on the Vserver vs0, specifying that 10.0.0.1 and 10.0.0.2 are the name servers for this domain.

cluster1::> vserver services name-service dns modify -vserver vs0 -domains example.com -name-servers 10.0.0.1,10.0.0.2