Re: Getting complete zone file?
This is a discussion on Re: Getting complete zone file? within the Bind Users forums, part of the DNS and Related Forums category; ----- Original Message ----- From: "Ronan Flood" <ronan@noc.ulcc.ac.uk> Newsgroups: comp.protocols.dns.bind To: &...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
09-30-2004
|
|||
|
|||
Re: Getting complete zone file?
----- Original Message -----
From: "Ronan Flood" <ronan@noc.ulcc.ac.uk> Newsgroups: comp.protocols.dns.bind To: <comp-protocols-dns-bind@isc.org> Sent: Thursday, September 30, 2004 5:41 PM Subject: Re: Getting complete zone file? > "s" <activeco@home.nl> wrote: > > > What would be the right way to disable such queries at own nameserver? > > Iptables? Any example? > > Specify "allow-transfer { none; };" in named.conf, either in the general > options section or on the zone definition, eg > > zone "example.com" in { > type master; > file "example.com.zone"; > allow-transfer { none; }; > }; > > Of course slave servers for your zone have to be able to transfer it, > in which case you list their IP addresses in the allow-transfer, eg > > allow-transfer { 10.1.2.3; 192.168.4.5; }; > > > -- > Ronan Flood <R.Flood@noc.ulcc.ac.uk> > working for but not speaking for > Network Services, University of London Computer Centre > (which means: don't bother ULCC if I've said something you don't like) > > Oh, just plain, stupid me. Thank you Ronan. 
|
Linear Mode
