gcloud_beta_dns_managed-zones_create (1)
NAME
- gcloud beta dns managed-zones create - create a Cloud DNS managed-zone
SYNOPSIS
-
gcloud beta dns managed-zones create ZONE_NAME --description=DESCRIPTION --dns-name=DNS_NAME [--denial-of-existence=DENIAL_OF_EXISTENCE] [--dnssec-state=DNSSEC_STATE] [--forwarding-targets=[IP_ADDRESSES,...]] [--ksk-algorithm=KSK_ALGORITHM] [--ksk-key-length=KSK_KEY_LENGTH] [--labels=[KEY=VALUE,...]] [--networks=[NETWORK,...]] [--visibility=VISIBILITY; default="public"] [--zsk-algorithm=ZSK_ALGORITHM] [--zsk-key-length=ZSK_KEY_LENGTH] [GCLOUD_WIDE_FLAG ...]
DESCRIPTION
(BETA) This command creates a Cloud DNS managed-zone.
POSITIONAL ARGUMENTS
-
- ZONE_NAME
-
- The name of the managed-zone to be created.
- The name of the managed-zone to be created.
REQUIRED FLAGS
-
- --description=DESCRIPTION
-
Short description for the managed-zone.
- --dns-name=DNS_NAME
-
The DNS name suffix that will be managed with the created zone.
OPTIONAL FLAGS
-
- --denial-of-existence=DENIAL_OF_EXISTENCE
-
Requires DNSSEC enabled. DENIAL_OF_EXISTENCE must be one of: nsec,
nsec3.
- --dnssec-state=DNSSEC_STATE
-
The DNSSEC state for this managed zone. DNSSEC_STATE must be one of:
-
- off
- Disable DNSSEC for the managed zone.
- on
- Enable DNSSEC for the managed zone.
- transfer
- Enable DNSSEC and allow transferring a signed zone in or out.
-
- --forwarding-targets=[IP_ADDRESSES,...]
-
List of IPv4 addresses of target name servers that the zone will forward queries
to. Ignored for private visibility.
- --ksk-algorithm=KSK_ALGORITHM
-
String mnemonic specifying the DNSSEC algorithm of the key-signing key.
Requires DNSSEC enabled. KSK_ALGORITHM must be one of:
ecdsap256sha256, ecdsap384sha384, rsasha1, rsasha256,
rsasha512.
- --ksk-key-length=KSK_KEY_LENGTH
-
Length of the key-signing key in bits. Requires DNSSEC enabled.
- --labels=[KEY=VALUE,...]
-
List of label KEY=VALUE pairs to add.
Keys must start with a lowercase character and contain only hyphens (-), underscores (_), lowercase characters, and numbers. Values must contain only hyphens (-), underscores (_), lowercase characters, and numbers.
- --networks=[NETWORK,...]
-
List of networks that the zone should be visible in if the zone visibility is
[private].
- --visibility=VISIBILITY; default="public"
-
Visibility of the zone. Public zones are visible to the public internet. Private
zones are only visible in your internal networks denoted by the
--networks flag. VISIBILITY must be one of: public,
private.
- --zsk-algorithm=ZSK_ALGORITHM
-
String mnemonic specifying the DNSSEC algorithm of the key-signing key.
Requires DNSSEC enabled. ZSK_ALGORITHM must be one of:
ecdsap256sha256, ecdsap384sha384, rsasha1, rsasha256,
rsasha512.
- --zsk-key-length=ZSK_KEY_LENGTH
-
Length of the zone-signing key in bits. Requires DNSSEC enabled.
GCLOUD WIDE FLAGS
These flags are available to all commands: --account, --configuration, --flags-file, --flatten, --format, --help, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity. Run $ gcloud help for details.
EXAMPLES
To create a managed-zone, run:
-
$ gcloud beta dns managed-zones create my_zone \
--dns-name my.zone.com. --description "My zone!"
To create a managed-zone with DNSSEC, run:
-
$ gcloud beta dns managed-zones create my_zone_2 \
--description "Signed Zone" \
--dns-name myzone.example \
--dnssec-state=on
NOTES
This command is currently in BETA and may change without notice. This variant is also available:
- $ gcloud dns managed-zones create