Getting complete zone file?
s
activeco at home.nl
Thu Sep 30 18:03:11 UTC 2004
----- Original Message -----
From: "Ronan Flood" <ronan at noc.ulcc.ac.uk>
Newsgroups: comp.protocols.dns.bind
To: <comp-protocols-dns-bind at isc.org>
Sent: Thursday, September 30, 2004 5:41 PM
Subject: Re: Getting complete zone file?
> "s" <activeco at home.nl> wrote:
>
> > What would be the right way to disable such queries at own nameserver?
> > Iptables? Any example?
>
> Specify "allow-transfer { none; };" in named.conf, either in the general
> options section or on the zone definition, eg
>
> zone "example.com" in {
> type master;
> file "example.com.zone";
> allow-transfer { none; };
> };
>
> Of course slave servers for your zone have to be able to transfer it,
> in which case you list their IP addresses in the allow-transfer, eg
>
> allow-transfer { 10.1.2.3; 192.168.4.5; };
>
>
> --
> Ronan Flood <R.Flood at noc.ulcc.ac.uk>
> working for but not speaking for
> Network Services, University of London Computer Centre
> (which means: don't bother ULCC if I've said something you don't
like)
>
>
Oh, just plain, stupid me.
Thank you Ronan.
More information about the bind-users
mailing list