DNS & IP Spoofing Error Messages
Mark_Andrews at isc.org
Mark_Andrews at isc.org
Thu Aug 14 00:05:58 UTC 2003
> I've been having a problem where my firewall has been logging IP spoofs from
> a dual-homed BIND 8.3.4 server on FreeBSD.
>
> The problem appears to be that some queries are coming from the SOURCE
> address of my public side, and are being routed out the private interface,
> and vice-versa.
>
> Is there a document available that details configuration to keep this from
> happening?
>
> Thanks in advance,
>
> scotto
The default source address will be choosen by the OS based on the
routing table and primary address of the interface choosen.
query-source can be used to override this however you can only choose
a single address.
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews at isc.org
More information about the bind-users
mailing list