How to deny all AXFR transfers from my DNS server
Michael Kjorling
michael at kjorling.com
Fri May 25 15:55:51 UTC 2001
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
The zone{allow-transfer{}} overrides the one in options{}, at least in
BIND 9. I have something like this:
options {
allow-transfer { none; };
};
zone "domain" {
allow-transfer { slaves_for_this_domain; };
};
Michael Kjörling
On May 25 2001 10:03 -0500, Treptow, Craig wrote:
> Putting "allow-transfer { none; };" in the zone definitions should
> do it. I think putting this up in "options" section should do it,
> too.
>
>
> > -----Original Message-----
> > From: Dzevad Hadzic ZEX [mailto:zex at remove-this.vipme.com]
> > Sent: Friday, May 25, 2001 4:17 AM
> > To: comp-protocols-dns-bind at moderators.isc.org
> > Subject: How to deny all AXFR transfers from my DNS server
> >
> >
> > I have bind 8.2.3 and i would like to deny all AXFR transfer
> > for about 50
> > domain that are hosted on my server.
> > I just can't find in doc's how to deny that.
> >
> >
> > Signed,
> > ZEX
- --
Michael Kjörling - michael at kjorling.com - PGP: 8A70E33E
"We must be the change we wish to see" (Mahatma Gandhi)
^..^ Support the wolves in Norway -- go to ^..^
\/ http://home.no.net/ulvelist/protest_int.htm \/
-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.8
iQA/AwUBOw6AlSqje/2KcOM+EQI3bACfaeCmPpaqVJL7tygjhaxvsO3jf9wAoMlg
8RA+ZPFzw9+V0/UlilJyQoo/
=zWGI
-----END PGP SIGNATURE-----
More information about the bind-users
mailing list