ACL / allow-query
Laurent
masterlolo at noos.fr
Thu Sep 29 08:27:01 UTC 2005
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Hi,
I would like reserve my DNS to only client in range ip address.
The Bind version use is 8.2.3.
My named.conf:
acl client {
x.x.0.0/16
};
options {
directory "/var/named";
allow-query { client; };
allow-transfer { none; };
cleaning-interval 120;
statistics-interval 0;
interface-interval 0;
};
logging {
channel named_info {
file "/var/log/named.log" versions 3 size 10m;
print-severity yes;
print-time yes;
};
=20
channel named_query {
file "/var/log/queries.log" versions 3 size 50m;
print-severity yes;
print-time yes;
};
};
zone "localhost" IN {
type master;
file "conf/localhost";
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "conf/0.0.127.in-addr.arpa";
};
zone "." IN {
type hint;
file "conf/root.hint";
};
------------------------------------------------------------------------
If I update the zone hint to :
zone "." IN {
type hint;
file "conf/root.hint";
allow-query { client; };
};
I have an error on named.log :
29-Sep-2005 09:43:35.698 info: sysquery: nlookup error on ?
29-Sep-2005 09:43:39.865 info: sysquery: nlookup error on ?
What's wrong in my configuration named.conf ?
Thanks,
Laurent
More information about the bind-users
mailing list