vantaged.conf(5) Vantages vantaged.conf(5)
NAME
vantaged.conf - The config file for vantaged
DESCRIPTION
vantaged.conf
is the config file for vantaged and should be located in /etc/ direc-
tory.
The following options in the config file are.
db_cxn_string = ...
This variable tells the vantaged daemon how to connect to its data-
base.
pid_file = ...
This is the location of the file that holds vantaged's PID.
ps_log_file = ...
The path and name of the default log file vantaged will output
to.
ps_log_level = (DEBUG | INFO | WARNING | ERROR | CRITICAL)
This variable specifies the default log level
This can be overridden on the command line, and
the default (if not specified) is CRITICAL.
The levels are:
DEBUG
INFO
WARNING
ERROR
CRITICAL
http_port = #
This is the port the HTTP front end will open for peer connec-
tions as well as the admin interface.
ps_curl_ca_file = ...
This is the path for libcurl to find its CA bundle if it is
installed.
ps_default_user = <user name>
This variable instructs the vantaged.sh start up script to spec-
ify a user account to use for vantaged after start up. The
start up script will use the specified user name with vantaged's
-u option. Thus, by specifying this parameter, vantaged.sh will
launch vantaged with -u <user name>. In future releases, van-
taged itself will read this parameter.
dnskey_app_enable = (yes|no)
If this option is set to yes vantaged will run its DNSSEC trust-
anchor system when the daemon starts up.
The options below specify the behavior of the vantaged application.
res_concurrency = # (default is 120)
This number value is the max number of concurrent DNS queries
that the resolver will issue.
ta_file = ...
The trust-anchor file location. (default = /var/van-
tages/ta_file.txt)
ta_max_key_age = #
This option tells vantaged
db_poll_chunk_size = #
This optional parameter can be used to reduce the memory foot-
print of vantaged. This keeps vantaged from trying to poll an
unbounded number of sources at the same time. Instead it will
poll at the given sizes denoted by this option. (default = 5000)
dnskey_admin_pass = ...
This variable specifies that the admin web interface should be
password protected using HTTP digest authentication. This
parameter specifies the file location for file generated by
Apache's ``htdigest''
dnskey_pcap_enable = (yes|no)
This variable instructs vantaged to use libpcap to listen for
DNS queries and scrape the zone names. This allows vantaged to
run on a machine that hosts a recursive resolver and learn what
zones to poll for DNSKEYs automatically.
dnskey_pcap_dev = ...
If dnskey_pcap_enable is set to 'yes' then this variable speci-
fies which interface to listen on.
dnskey_pcap_program = ...
This option gives vantaged a libpcap "program" to run. the
default example value is "udp port 53"
dsync_query_sleep = #
The dsync_query_sleep value specifies the sleep time (in sec-
onds) that a zone will be idle for between checks. (default is
10)
dsync_weighted_check = #
This dsync_weighted_check value defines a percentage of the time
that dsync will re-query for each zone's base information (ns
servers, etc) when querying for its dnskey. Set to a float value
between 0 and 1. (default value is 0)
SEE ALSO
vantaged, dnsfunnel, dnskey-grab.
AUTHORS
vantaged was developed by Eric Osterweil, with help from Ben Tuchscher,
Brendan Sheridan, and Dave Oko
CONTACT
tools@netsec.colostate.edu
UCLA/CSU NetSec Jul 20, 2009 vantaged.conf(5)
Man(1) output converted with
man2html