Cannot get "allow-query-on" to work.
Bob Harold
rharolde at umich.edu
Wed Jul 2 17:16:07 UTC 2014
"listen-on" defaults to all the computer's IPv4 addresses, including the
loopback, so I did not put an explicit "listen-on" statement. It answers
queries to both the loopback and other addresses.
--
Bob Harold
DNS hostmaster
University of Michigan
On Wed, Jul 2, 2014 at 1:06 PM, Bob McDonald <bmcdonaldjr at gmail.com> wrote:
> Did you specify 127.0.0.1 in the "listen-on" options statement?
>
> > I am using Ubuntu 12.04.4, BIND 9.8.1-P1, and just added:
>
> > allow-query-on { 127.0.0.1; };
>
> > To the default /etc/bind/named.conf.options file.
> > That should make it only answer queries sent to 127.0.0.1, and not answer
> > queries sent to the server's normal IP. But it seems to have no effect.
>
> > I have tried putting the computer's real IP in there instead - same
> results
> > - both IP's answer queries.
>
> > I have tried the similar "allow-recursion-on" option and that works as
> > documented.
>
> > Any clue how to get "allow-query-on" to work?
> > Searching the mail archives and Google did not find anything - but it is
> > hard to filter on just "allow-query-on" as a complete string.
> > Has anyone even used that option?
>
> > --
> > Bob Harold
> > DNS hostmaster
> > University of Michigan
>
> Regards,
>
> Bob
>
>
>
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> unsubscribe from this list
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20140702/a07e3f18/attachment-0001.html>
More information about the bind-users
mailing list