Template:Rollctl ShortTorial

From DNSSEC-Tools
Jump to: navigation, search


{{#if:1| {{#if:| {{#if:1| {{#if:| {{#if:| {{#if:|
DNSSEC-Tools Component
This describes rollctl, which in the Authoritative Server Tools category within the DNSSEC-Tools Components framework of tools.
Tool Name: rollctl
Tool Type: Authoritative Server Tools
Manual: Manual


Example: Example


CLI: Help


Tutorial: Tutorial


How To: How To


Download: rollctl


Rollctl is a tool that communicates with a running rollerd. If you aren't familiar with rollerd, please first read the rollerd tutorial for a tutorial on using rollerd. Among the command it can pass to rollerd are rolling a zone on command, skipping a zone, changing the sleep time, checking zone status, and more. It can be run as a command line tool or to open a window. The window will show the current zones rollerd is configured to process and a user can select a zone and perform commands on it.

Getting started with rollctl

To get a simple status from the command line:

> rollctl -status
boot-time:          Mon Feb 25 23:51:29 2008
directory:          /var/named/
rollrec file:       /etc/named/example.com.rrf
logfile:            /var/log/rollerd.log
loglevel:           4
sleeptime:          300


Or to open the window:

> rollctl -display

A Graphical User Interfaces (GUI) listing the zones rollerd is configured to process, that looks like the below, will appear:

Error creating thumbnail: File missing
rollctl GUI

From here a user can select a zone and perform commands on it from the pull-down menus.

Rolling a zone with rollctl

To have rollctl instruct rollerd to begin the process of rolling keys in a zone, use the --rollksk or --rollzsk option to rollctl:

> rollctl -rollzsk example.com

rollctl can also show the status of a given zone and it's keys within the rolling process:

> rollctl -zonestatus example.com