Is there a "not" operator for the BIND config file?
Mark_Andrews at isc.org
Mark_Andrews at isc.org
Wed Jan 22 22:57:13 UTC 2003
>
> Yes ther is one. You can make a list in allow-recurse like this:
>
> allow-recurse {
> any;
> ! ip.to.deny;
> };
>
> The order is important, you set to allow any but ip.to.deny otherwise it woul
> d
> say deny to ip.to.deny BUT allow any )which may include ip.to.deny
Yes the order is important. You had it wrong.
allow-recursion {
!ip.to.deny; // deny ip.to.deny
any; // allow everyone left.
};
allow-recursion { any; !ip.to.deny; }; is equivalent to
allow-recursion { any; };
Mark
> On 22 Jan 2003, James Kilton wrote:
>
> =>
> =>I'd like our BIND 8.34 servers to not do recursive queries for a
> =>particular host, but do recursive queries for the rest of that host's
> =>subnet. Is this possible via some type of "not" operator?
> =>
> =>
>
> --
>
> -- 'You tread upon my patience' -- William Shakespeare, "Henry IV"
>
> The river is within us, the sea is all about us.
> =============================================================================
> ==
> José Enrique Díaz Jolly e-mail: enrique at podernet.com.mx
> =============================================================================
> ==
> @(#) $Id: signature.podernet,v 1.1 2003/01/21 23:45:50 ediaz Exp $
>
>
>
--
Mark Andrews, Internet Software Consortium
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742 INTERNET: Mark.Andrews at isc.org
More information about the bind-users
mailing list