rpz using a forward zone
Vadim Pavlov
pvm_job at mail.ru
Wed Jun 5 16:17:11 UTC 2019
You can spin up a separate instance of bind (or use my opensource ioc2rpz dns server) to feed (via a zone transfer) the modified zone to your older bind instance.
Vadim
> On Jun 5, 2019, at 13:04, Mike Woods <cceaood at ucl.ac.uk> wrote:
>
> I was afraid that would be the answer, time to try some other solutions
> then.
>
> Thanks.
>
> On 05/06/2019 12:03, Tony Finch wrote:
>> Mike Woods <cceaood at ucl.ac.uk> wrote:
>>>
>>> So, the long and short of things, is it actually possible to point the
>>> response policy at a forward zone
>>
>> No, the RPZ zone file has to be present on the resolver. The RPZ is parsed
>> into a special fast lookup data structure so that policies can be applied
>> efficiently.
>>
>> Tony.
>>
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
More information about the bind-users
mailing list