Date: Sun, 10 Nov 2002 14:50:59 +0100 From: Mark <admin@asarian-host.net> To: <freebsd-questions@freebsd.org> Subject: BIND Message-ID: <200211101351.GAADP3S77820@asarian-host.net>
next in thread | raw e-mail | index | archive | help
Hello, :)
I was experimenting with BIND (8.3.3) on FreeBSD. I got everything pretty
much set up properly. Then I came up with the idea to allow outside queries
for my own domain names, but to disallow outsiders to use my name servers to
resolve the world. So, I did this:
zone "." {
type hint;
file "named.root";
allow-query { trusted; };
};
I thought that would only allow myself (localhost and a few others are in
the "trusted" acl) to query the world, but prevent others from doing so, via
my name servers. Alas, BIND disagrees with my logic. It reports:
'allow-query' option for non-{master,slave,stub} zone ''
zone '.' did not validate, skipping
Hmm, there's gotta be a way to only let outsiders use my name servers to
resolve my own domains. Has anyone any ideas?
Thanks!
- Mark
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200211101351.GAADP3S77820>