Zone transfer using TSIG
Rich Goodson
rgoodson at gronkulator.com
Thu Apr 19 19:44:19 UTC 2012
Carlos,
zone "example.com" {
...
allow-transfer { key hostA-myserver.key; };
...
};
and in our environment, I have the key files readable only by the user that named is running as, then use something like:
include keys/tsig_key_file.key
in named.conf so that the named.conf file can remain readable by normal users.
-Rich
On Apr 19, 2012, at 1:48 PM, Carlos Ribas wrote:
> Hello all,
>
> I have a server that is authoritative to my domain and is secondary to four different domains. What is the best way to receive the zones from master using TSIG? May I have something like this into a view statement?
>
> server 10.0.1.1 { keys hostA-myserver; };
> server 10.0.1.2 { keys hostB-myserver; };
> server 10.0.1.3 { keys hostC-myserver; };
> server 10.0.1.4 { keys hostD-myserver; };
>
> Best regards,
>
> ---------------------------------
> Carlos Eduardo Ribas
>
>
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
More information about the bind-users
mailing list