Date: Sun, 30 Jan 2000 01:37:00 +0000 From: Stuart Henderson <sh@octarine.org> To: Brett Glass <brett@lariat.org> Cc: Michael Bryan <fbsd-security@ursine.com>, <freebsd-security@FreeBSD.ORG> Subject: Re: Continual DNS requests from mysterious IP Message-ID: <949196220.389395bcb8f26@webmail.octarine.org> In-Reply-To: <4.2.2.20000129173939.0410f700@localhost> References: <200001291634.IAA36101@floozy.zytek.com> <200001291634.IAA36101@floozy.zytek.com> <4.2.2.20000129173939.0410f700@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
Quoting Brett Glass <brett@lariat.org>: > Which brings up a question I've had > for a long time. When I set up a > system as a NAT router, I would like > to assign names to the internal > machines (e.g. on 10.x.x.x) so that > the POP server and other programs > that do DNS queries are happy. (It > also makes the logs more readable.) > However, I don't want anyone OUTSIDE > to be able to do forward or reverse > DNS for those machines. Is there an > easy way to do this? Recent versions of BIND let you specify who may query, transfer, and update at a per-zone granularity. http://www.isc.org/products/BIND/docs/config/z one.html To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?949196220.389395bcb8f26>