From owner-freebsd-isp Tue Jul 24 8:48: 5 2001 Delivered-To: freebsd-isp@freebsd.org Received: from db.nexgen.com (db.nexgen.com [66.92.98.149]) by hub.freebsd.org (Postfix) with SMTP id 616C037B409 for ; Tue, 24 Jul 2001 08:47:43 -0700 (PDT) (envelope-from ml@db.nexgen.com) Received: (qmail 72660 invoked from network); 24 Jul 2001 15:47:51 -0000 Received: from localhost.nexgen.com (HELO alexus) (root@127.0.0.1) by localhost.nexgen.com with SMTP; 24 Jul 2001 15:47:51 -0000 Message-ID: <007a01c11457$f7385920$0d00a8c0@alexus> From: "alexus" To: "Drew J. Weaver" , References: Subject: Re: Can someone do me a favor? Date: Tue, 24 Jul 2001 11:47:38 -0400 Organization: NexGen MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0077_01C11436.6FDA46D0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2499.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2499.0000 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_0077_01C11436.6FDA46D0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Can someone do me a favor?alexus@~# host 206.222.1.2 2.1.222.206.IN-ADDR.ARPA domain name pointer dns2.ee.net alexus@~# host 206.222.1.3 3.1.222.206.IN-ADDR.ARPA domain name pointer dns3.ee.net alexus@~# host 209.51.192.194 194.192.51.209.IN-ADDR.ARPA domain name pointer = ns1.netservice.columbus-nap.net alexus@~# host 206.222.1.4 =20 4.1.222.206.IN-ADDR.ARPA domain name pointer dns4.ee.net alexus@~# host 209.51.193.2 2.193.51.209.IN-ADDR.ARPA domain name pointer dns1.ee.net alexus@~#=20 allow-query has nothin to do with trying to resolve it.. allow query = only limit ips from using your ns let's say if you only put your ip, you'll be the only one who can query = your ns..=20 read how dns works.. ----- Original Message -----=20 From: Drew J. Weaver=20 To: 'freebsd-isp@freebsd.org'=20 Sent: Tuesday, July 24, 2001 9:48 AM Subject: Can someone do me a favor? try and resolve through any of these dns servers=20 206.222.1.2, 206.222.1.3, 209.51.192.194, 206.222.1.4, 209.51.193.2=20 I just implemented the allow-query command in my named.conf on all of = these servers and much to my shygrin i dont think its actually limiting = anything? It appears to still be wide open.=20 -Drew=20 ------=_NextPart_000_0077_01C11436.6FDA46D0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Can someone do me a favor?
alexus@~# host=20 206.222.1.2
2.1.222.206.IN-ADDR.ARPA domain name pointer=20 dns2.ee.net
alexus@~# host 206.222.1.3
3.1.222.206.IN-ADDR.ARPA = domain=20 name pointer dns3.ee.net
alexus@~# host=20 209.51.192.194
194.192.51.209.IN-ADDR.ARPA domain name pointer=20 ns1.netservice.columbus-nap.net
alexus@~# host = 206.222.1.4  =20
4.1.222.206.IN-ADDR.ARPA domain name pointer = dns4.ee.net
alexus@~# host=20 209.51.193.2
2.193.51.209.IN-ADDR.ARPA domain name pointer=20 dns1.ee.net
alexus@~#
 
allow-query has nothin to do = with trying to=20 resolve it.. allow query only limit ips from using your ns
 
let's say if you only put your = ip, you'll=20 be the only one who can query your ns..
 
read how dns = works..
 
----- Original Message -----
From:=20 Drew J.=20 Weaver
Sent: Tuesday, July 24, 2001 = 9:48=20 AM
Subject: Can someone do me a = favor?

        try and = resolve=20 through any of these dns servers
206.222.1.2,=20 206.222.1.3, 209.51.192.194, 206.222.1.4, 209.51.193.2

I just implemented the allow-query command in my = named.conf on=20 all of these servers and much to my shygrin i dont think its actually = limiting=20 anything?

It appears to still be wide open.

-Drew =






------=_NextPart_000_0077_01C11436.6FDA46D0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message