IP prefix problems
Ari Gordon-Schlosberg
regs at nebcorp.com
Fri Jan 28 20:47:00 UTC 2000
Howdy.
I have this odd problem with setting up some acls, that perhaps someone
could shed some light on. I set up the following acl at the top of
named.config:
// Define our local clients
acl local {
216.233.11.82;
10.0.0/24;
localhost;
209.157.133.196;
};
(I have reason for not wanting to use the localnets alias.)
Later on, I set up zones for my internal (10.*) network:
zone "10.in-addr.arpa" {
type master;
file "named.internal.reverse";
//allow-query { local; };
};
zone "internal.heavyware.com" {
type master;
file "named.internal";
//allow-query { local; };
};
As you can see, the allow-query parameters are commented out. The problem
is that when I enable them, queries generated from the 10.* network are
denied. I've tried all different form for the IP prefix syntax, and none
of them seem to work: 10/24, 10.0.0.0/24, etc. The other clients that I
have allowed in the same acl do work, however. I want to be able to
restrict queries to inside that 10.* network plus a few select IPs outside.
Any help would be appreciated. Thanks.
--
Ari there is no spoon
-------------------------------------------------------------------------
http://www.nebcorp.com/~regs/pgp for PGP public key
More information about the bind-users
mailing list