Question on DNS "options allow-query"
Joseph S D Yao
jsdy at cospo.osis.gov
Mon Jun 21 18:28:34 UTC 1999
> added this to the options section of my /etc/named.conf:
> allow-query { 192.168.0\24; };
> The addition of this line (after restarting named) causes many logged
> messages of this nature:
> unapproved query from [127.0.0.1].1076
> Hmm. To me this seems like reasonable behavior even if it is not what I
> want. After all, 127.0.0.1 is not 192.168.0.12.
>
> So what is the correct way to allow only queries from the local subnet?
Should be pretty obvious:
allow-query { 192.168.0/24; 127.0.0.1; };
;-)
The latter address is "localhost" - the machine itself.
--
Joe Yao jsdy at cospo.osis.gov - Joseph S. D. Yao
COSPO/OSIS Computer Support EMT-B
-----------------------------------------------------------------------
This message is not an official statement of COSPO policies.
More information about the bind-users
mailing list