IPv6 dns query control in non-routed (ULA) v6 networks?
David Carmean
dlc at halibut.com
Mon Jun 23 16:42:06 UTC 2008
On Sat, Jun 21, 2008 at 09:50:12AM +1000, Mark Andrews wrote:
>
> >
> > Is there a method within BIND to allow named to listen on ipv6, but not
> > originate any queries over ipv6?
> >
> > We're bringing up a dual-stack network using Unique Local Unicast address
> > space, and my caching servers are attempting to perform recursion over
> > v6 to some external servers. I can't readily use an RFC3484 policy
> > table on the host because it's an "appliance" and such a mod would be unsuppo
> > rted.
> >
> > Thanks.
>
> The following may work. Untested.
>
> Mark
>
> server <ula_prefix>/48 {
> bogus no;
> };
>
> server ::/0 {
> bogus yes;
> };
Unfortunately, at least this version ( BIND 9.3.4-P1 ) seems not to support
the use of an ip_prefix (or address_match_list) as the target of a server clause:
/etc/named.conf:33: '{' expected near '/'
More information about the bind-users
mailing list