Date: Thu, 02 Aug 2001 18:29:28 +0200 From: Oliver von Bueren <maillist@ovb.ch> To: isp@freebsd.org Subject: bind configuration for rbl - deny forward access through my server Message-ID: <icvimtshpfd4332l0i1otgmgali525s1mv@4ax.com>
next in thread | raw e-mail | index | archive | help
Good'day. I'm using a FreeBSD server for mail processing, which has also a DNS server running (bind 8.2.x out of -stable). As we use the rbl-Lists from mail-abuse.org to filter inbound traffic and as of now the access to this list is no more free, I need a way to deny access to these zones through my dns server, which in turn has access to the rbl-dns-servers. I have tried the following in named.conf: zone "relays.mail-abuse.org" { type stub; file "s/relays.mail-abuse.org"; transfer-source my.address.registered.with.maps; allow-query { localhost; }; masters { some-master-servers; }; }; My goal was to prevent queries to any address in relays.mail-abuse.org and "below", meaning 2.0.0.127.relays.mail-abuse.org as an example. The access to relays.mail-abuse.org gets denied to any host other than the local host but all the addresses "below" get processed as usual. BTW: I can't restrict access to the server in general, it's used otherwise too. Any hint's on that? Oliver To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?icvimtshpfd4332l0i1otgmgali525s1mv>