This document is about PowerDNS 4.0. For other versions, please see the documentation index.

NAME

nproxy - DNS notification proxy

SYNOPSIS

nproxy --powerdns-address ADDRESS [OPTION]... ADDRESS...

DESCRIPTION

nproxy is a simple daemon that reads DNS NOTIFY queries on one address and forwards them to an 'inner' nameserver that will process the notification.

Its usecase is e.g. a private authoritative server inside a NAT or firewalled LAN where nproxy is deployed in the DMZ.

The PowerDNS Authoritative Server has the trusted-notification-proxy option that should be set to the address set with --origin-address to accept these proxied notifications.

nproxy also has a health-check option built in. A query for 'pdns.nproxy.' with QType 'TXT' will be responded to with an answer of "OK" (inside the TXT record. When the query is for an A-record, '1.2.3.4.' is returned.

OPTIONS

--powerdns-address ADDRESS : IP address of the PowerDNS server to forward the notifications to.

--chroot PATH : chroot to PATH for additional security.

--setuid UID : setuid to this numerical UID.

--setgid GID : setgid to this numerical GID.

--origin-address ADDRESS : Set the source of the notifications sent to PowerDNS to ADDRESS. By default, the best matching address (kernel's choice) is used.

--listen-address ADDRESS : IP addresses to listen on.

--listen-port PORT : Source port to listen on, 53 by default.

-d,--daemon ARG : Set ARG to 0 to disable running in the background.

-v,--verbose : Be verbose