Query status refused afer upgrading from 9.7.2-P2 to 9.7.2-P3
Mark Andrews
marka at isc.org
Fri Dec 3 05:45:47 UTC 2010
In message <4CF7396B.3050704 at pnyet.web.id>, "David S." writes:
> Hi Mark,
>
> Yes, bind work fine without allow-query statement in view.
> Here is my named.conf and view:
>
> options {
> allow-query { "trusted"; };
> };
>
> view "mynetwork" in {
> match-clients {"trusted"; };
> recursion yes;
> allow-transfer { "xfer"; };
> additional-from-auth yes;
> additional-from-cache yes;
>
> view "internet" in {
> match-clients { any; };
> recursion no;
> allow-transfer { "xfer"; };
> additional-from-auth no;
> additional-from-cache no;
>
> Do you mean "allow-query" statement necessary need on view?
You have allow-query set in options which sets the default
for all the views. Effectively you have
view "internet" in {
match-clients { any; };
allow-query { trusted; };
which is not what you intend. Just remove allow-query from options
as it is not needed.
Mark
--
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: marka at isc.org
More information about the bind-users
mailing list