[nsd-users] Global setting of zone ACL options

Martin Svec martin.svec at zoner.cz
Tue Jul 27 17:05:54 UTC 2010


Hello,

attached I send a patch that adds support for global zone options. With
this patch, all zone options can also be specified globally in "server"
section of nsd.conf. These zone options are then automatically applied
to every zone. For value-like options (allow-xfr-fallback,
notify-retry), the global setting can be overridden in a "zone" section.
ACL-like global settings are simply added to the end of lists specified
in "zone" sections.

We use the patch on our production servers more than two months without
any problems. However, we use only few options and I'm too busy to
prepare test environments for all other possible cases. So, most of the
patch was tested only by inspecting "nsd-checkconf -v".

Pros:
- cleaner configuration for uniform setups with thousands of zones
- faster parsing of (smaller) nsd.conf, more than 70% in our case

Cons:
- goes against "No end-user friendliness" non-requirement of NSD ;-)

Any comments (and testers) are welcomed.

Best regards,

Martin


-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: default-zone-options.patch
URL: <http://lists.nlnetlabs.nl/pipermail/nsd-users/attachments/20100727/55ef9bcc/attachment.ksh>


More information about the nsd-users mailing list