File config.curvedns of Package curvedns

# (C) 2011 Peter Conrad <conrad@quisquis.de>
#
# This file is licensed under the terms of the
# GNU General Public License Version 2. A copy of these terms should be
# enclosed as "COPYING" in the package containing this file.

## MANDATORY ##

# Login to use after dropping privileges (curvedns)
USER="named"

# Login to use for logging (needs write access to /var/log/curvedns)
LOGUSER="named"

# IPs to listen on (separated by comma):
LISTEN_IPS="0.0.0.0"

# Port to listen on (root is needed if port < 1024):
LISTEN_PORT="53"

# Authoritative name server (target) IP:
TARGET_IP="127.0.0.1"

# Authoritative name server port:
TARGET_PORT="53"

# Generate one with curvedns-keygen
# DONT USE THIS! CURVEDNS_PRIVATE_KEY_FD or CURVEDNS_PRIVATE_KEY_FILE are more secure!
#CURVEDNS_PRIVATE_KEY=""

# Generate one with curvedns-keygen
CURVEDNS_PRIVATE_KEY_FILE="/etc/curvedns/private.key"

# Generate one with curvedns-keygen
#CURVEDNS_PRIVATE_KEY_FD=3


## OPTIONAL, leave unset to use default ##

# Number of seconds when to consider the target server has timeout
# (default: 1.2).
#CURVEDNS_INTERNAL_TIMEOUT=1.2

# Total number of tries towards the target server before we drop the query
# (default: 2).
#CURVEDNS_UDP_TRIES=2

# Number of simultaneous TCP connections that are allowed (default: 25).
#CURVEDNS_TCP_NUMBER=25

# Number of seconds before the TCP session to the client times out
# (default: 60.0).
#CURVEDNS_TCP_TIMEOUT=60.0

# Number of shared secrets that can be cached (default: 5000).
#CURVEDNS_SHARED_SECRETS=5000

# What information should be shown, i.e. the debug level. The number represents
# the debug level; 1: fatal, 2: error, 3: warning, 4: info, 5: debug
# (default: 2).
CURVEDNS_DEBUG=3

# The IP address CurveDNS will use as source IP address when it will forward
# the query to the authoritative name server (default: let kernel pick).
#CURVEDNS_SOURCE_IP=