Getting complete zone file?
Ronan Flood
ronan at noc.ulcc.ac.uk
Thu Sep 30 15:41:02 UTC 2004
"s" <activeco at home.nl> wrote:
> What would be the right way to disable such queries at own nameserver?
> Iptables? Any example?
Specify "allow-transfer { none; };" in named.conf, either in the general
options section or on the zone definition, eg
zone "example.com" in {
type master;
file "example.com.zone";
allow-transfer { none; };
};
Of course slave servers for your zone have to be able to transfer it,
in which case you list their IP addresses in the allow-transfer, eg
allow-transfer { 10.1.2.3; 192.168.4.5; };
--
Ronan Flood <R.Flood at noc.ulcc.ac.uk>
working for but not speaking for
Network Services, University of London Computer Centre
(which means: don't bother ULCC if I've said something you don't like)
More information about the bind-users
mailing list