Allowed transfers?
Mark Damrose
mdamrose at elgin.cc.il.us
Mon Jun 3 03:39:23 UTC 2002
"Dan Mahoney" <google at gushi.org> wrote in message
news:addmpg$f2i3$1 at isrv4.isc.org...
>
> Okay. What's the config line to allow zone transfers by default?
Not having an "allow-transfer" will allow transfer to anyone.
Is
> there a line that just says "allow zone transfers to any zone with a
> defined NS record"?
No.
>
> Also, when you define an allow-transfer as a global, are ones defined
> in the zone file ADDITIVE or REPLACEING?
Replacing
>
> options {
> directory "/etc/namedb";
> # forwarders {
> # 208.23.118.8;
> # 208.23.118.20;
> # };
> notify yes;
> allow-transfer {
> 208.23.118.172;
> 63.163.4.222;
> 208.23.118.20;
> 208.23.118.8;
> 208.23.118.252;
> };
> forward first;
> statistics-file "/etc/namedb/s/stats.out";
> listen-on {
> 208.23.118.172;
> 127.0.0.1;
> };
> statistics-interval 0;
> };
>
> zone "." {
> type hint;
> file "named.root";
> };
>
> zone "0.0.127.IN-ADDR.ARPA" {
> type master;
> file "localhost.rev";
> };
>
> zone "gushi.org" {
> type master;
> file "/etc/namedb/m/db.gushi.org";
> allow-transfer {
> 63.163.4.222;
> 208.23.118.20;
> 208.23.118.8;
> 208.23.118.172;
> };
> notify yes;
> allow-update {
> 127.0.0.1;
> 208.23.118.172;
> };
> also-notify {
> 208.23.118.20;
> 208.23.118.8;
> 63.163.4.222;
> };
> };
>
More information about the bind-users
mailing list