Date: Wed, 21 Jul 1999 12:56:51 -0700 (PDT) From: Dan Busarow <dan@dpcsys.com> To: Kevin Weiss <kevin.weiss@mail.utexas.edu> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: DNS Config Question--named.conf file Message-ID: <Pine.BSF.3.96.990721125413.27620L-100000@java.dpcsys.com> In-Reply-To: <19990721192144.D7F081556B@hub.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 21 Jul 1999, Kevin Weiss wrote:
> IP#'s and so forth are fake. I have yet to go
> back and shorten the db files, but I'll do that after I
> get your opinions. I also want to make sure that I
> don't allow zone transfers.
>
>
> Here is my named.conf file:
...
> options {
> directory "/etc/namedb";
> recusrion no;
> fetch-glue no;
> };
> zone "example.com" in {
> type master;
> file "db.example";
> notify no;
> allow-transfer { 149.7.13.3; };
> };
> zone "13.7.149.in-addr.arpa" in {
> type master;
> file "db.149.7.13";
> };
Move your allow-transfer to the options section. Then your currently
unprotected in-addr.arpa zone will be covered too.
Dan
--
Dan Busarow 949 443 4172
Dana Point Communications, Inc. dan@dpcsys.com
Dana Point, California 83 09 EF 59 E0 11 89 B4 8D 09 DB FD E1 DD 0C 82
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.990721125413.27620L-100000>