Trying to define an "in-view" zone without success
Alain Fontaine
alain.fontaine at uclouvain.be
Tue Jan 20 08:45:26 UTC 2015
Le 19 janv. 2015 à 16:33, Tony Finch a écrit :
> Does it work if you set allow-query { any; }; in the testzone.net clause
> in the interne view?
>
> My guess is that the zone is inheriting the allow-query acl from its
> parent view, and keeping that acl when it is shared by the externe view.
From the ARM:
A zone statement which uses the in-view option may not use any other options with the exception of forward and forwarders.
Trying to insert the allow-query option anyway gives:
20-Jan-2015 09:30:16.001 config: error: /etc/bind/named.conf:3167: zone 'testzone.net': 'in-view' used with incompatible zone options
I also tried to insert the allow-query { any; }; option at the (externe) view level (where it is already the default), and this does not resolve the problem.
A side note:
The zone was previously defined as:
zone testzone.net {
type slave;
file "slave.ext/net.testzone";
masters { address_of_master; };
};
When first reloading the configuration after changing the definition to use the in-view option, this message appeared:
19-Jan-2015 14:30:31.527 general: info: zone testzone.net/IN/externe: (slave) removed
Removed ?
More information about the bind-users
mailing list