testing validation
Spain, Dr. Jeffry A.
spainj at countryday.net
Wed Apr 18 18:14:38 UTC 2012
Alan: Comments on your configuration file:
I believe that managed-keys... and zone "." { type hint... are built into bind 9.9.0 recursive resolvers and therefore not needed. You can enable the built in root trust anchor by changing dnssec-validation from yes to auto.
I think that listen-on { 127.0.0.1; }; will prevent your resolver from accepting queries from network sources, and so is inconsistent with your allow-query statement. Consider omitting listen-on and changing listen-on-v6 to {any;}.
Consider adding zones for 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa and localhost.
Jeff.
More information about the bind-users
mailing list