From owner-freebsd-questions Fri Mar 15 23:04:33 1996 Return-Path: owner-questions Received: (from root@localhost) by freefall.freebsd.org (8.7.3/8.7.3) id XAA09901 for questions-outgoing; Fri, 15 Mar 1996 23:04:33 -0800 (PST) Received: from mailserver.newtrend.com (mailserver.newtrend.com [206.216.135.152]) by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id XAA09886 for ; Fri, 15 Mar 1996 23:04:29 -0800 (PST) Received: from orion.newtrend.com (orion.newtrend.com [206.216.135.153]) by mailserver.newtrend.com (8.6.12/8.6.12) with SMTP id XAA10155 for ; Fri, 15 Mar 1996 23:03:51 -0800 Date: Fri, 15 Mar 1996 23:03:51 -0800 Message-Id: <199603160703.XAA10155@mailserver.newtrend.com> X-Sender: freebsd@mailserver.newtrend.com X-Mailer: Windows Eudora Version 1.4.3 Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" To: questions@FreeBSD.org From: freebsd@newtrend.com (FreeBSD) Subject: named boot file directive question Sender: owner-questions@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk Hi, I need to know how to setup the DNS server to answer zone transfer query to specific hosts only. I read the man page ( and BIND manual ) about named and found that there is a way to do that thru using the "xfrnets" directive in named.boot file. But unfortunately, there is no example to show how it works. I tried a few times but still could not get the DNS server behave the way I want. For example, when using nslookup and set the default server to the DNS server and issue a command like ls -t xxx.com, a list of all hosts managed by the server will be displayed. Basically the ls command is a zone transfer query from nslookup. My question is how to disable this function and still allow my provider to have their secondary DNS servers to perform a zone transfer. I tried to include the following lines in the named.boot but the named server still does not responded in the way I was expected. xfrnets xxx.com or xfrnets 999.999.999.0 or xfrnets 999.999.999 or xfrnets yyy.xxx.com Thanks.