How to restrict queries ?
Jim Reid
jim at rfc1035.com
Mon May 10 18:00:50 UTC 2004
>>>>> "Gerardo" == Gerardo Blanco <gblanco at gatelink.net> writes:
Gerardo> I am using Bind 8.4.1
Upgrade. The current release of BIND8 is 8.4.4. Better still, upgrade
to BIND9.
Gerardo> I need to restrict all queries to my server for my local
Gerardo> network only. But, I need to allow queries from outside
Gerardo> for the domains hosted in my server only.
Gerardo> Is that possible ?
Yes. Read up on the allow-query and allow-recursion clauses. You can
limit recursive queries to addresses on your local net and at the same
time allow anyone to query your name server for the zones it serves.
Everyone should do this. Though it's even better to separate
authoritive and resolving functionality. ie Anyone can query your
authoritative-only servers which never resolve anything. And the
caching-only servers only serve requests from the local net.
More information about the bind-users
mailing list