Issues with loop

[Matus UHLAR - fantomas]

On 10.07.08 19:06, Jonathan Petersson wrote:
> I recently took a couple of new DNS servers online and have stumbled
> upon an issue. These servers are hosting a couple of reverse zones and
> allows recursive lookup for our own external networks. This seams to
> cause a loop when looking up records of the hosted zones.

> Could anyone recommend another approach to allow recursive lookups for
> known networks and still only allow queries for the authoritative
> zones to the rest of the Internet?

the simplest way to achieve this is not to play with views and simply
configure zones and use allow-recursion in the named config.

>         query-source address * port 53;

TURN THIS OFF - read the latest DNS protocol security advisory and this
list's archives for last week for explanation.

-- 
Matus UHLAR - fantomas, uhlar at fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
A day without sunshine is like, night.



The information contained in this message and any attachment may be
proprietary, confidential, and privileged or subject to the work
product doctrine and thus protected from disclosure.  If the reader
of this message is not the intended recipient, or an employee or
agent responsible for delivering this message to the intended
recipient, you are hereby notified that any dissemination,
distribution or copying of this communication is strictly prohibited.
If you have received this communication in error, please notify me
immediately by replying to this message and deleting it and all
copies and backups thereof.  Thank you.