Page History

...

--zone <zone>                     aka -z
[--policy <policy>]               aka -p
[--signerconf <signerconf.xml>]   aka -s
[--input <input>]                 aka -i
[--in-type <input type>]          aka -j
[--output <output>]               aka -o
[--out-type <output type>]        aka -q
[--no-xml]                        aka -m

...

• The <input type> and <output type> fields specify what kind of adaptor should be configured for the zone. Valid values are 'File' (default) and 'DNS' for both input and output:
  
  • When using a 'File' adaptor the <input> field specifies the location of the unsigned zone and the <output> field specifies the location of the signed zone
  • When using a 'DNS' adaptos the <input> and <output> fields specify the location of the xml file that describes the adapter to be used e.g. {prefix}/etc/opendnssec/addns.xml
• Defaults are provided for all options but zone name:
  
  • --policy will use the 'default' policy
  • --signerconf will default to use the {prefix}/var/opendnssec/signerconf/<zone>.xml file
  • --input will default to {prefix}/var/opendnssec/unsigned/<zone> (Note - this currently always assumes a 'File' adaptor. There is no default for a 'DNS' adaptor)
  • --in-type will default to 'File'
  • --output will default to {prefix}/var/opendnssec/signed/<zone> (Note - this currently always assumes a 'File' adaptor. There is no default for a 'DNS' adaptor)
  • --out-type will default to 'File'
     
• The "no-xml" flag is useful when adding a number of zones; it prevents zonelist.xml from being written to thus speeding up the process. If the "no-xml" flag is used then after all the zones have been added then the zonelist file will need to be updated via the command:

ods-ksmutil zonelist export

...