Date: Mon, 22 Apr 2002 11:45:06 -0400 From: "Jim Flowers" <jflowers@ezo.net> To: Mario Lobo <Mlobo@ear.com.br> Cc: freebsd-security@FreeBSD.ORG Subject: Re: DNS Question Message-ID: <20020422114506.M42132@ezo.net> In-Reply-To: <20020422100301.A46936@cowbert.2y.net> References: <3CC3C250.28097.2D5EA4@localhost> <20020422100301.A46936@cowbert.2y.net>
next in thread | previous in thread | raw e-mail | index | archive | help
You don't say what version but assuming 8.x.x there are a number of options
to help. Read Chapter 10 of the DNA & BIND book. Particularly, you can
configure your dns to be useful as a resolver to only your trusted addresses
with option allow-query {trusted-addresses;} while at the same time allowing
everyone access to your authoritative zones with an allow-query {any;} entry
in each of your authoritative zone files.
> On Mon, Apr 22, 2002 at 07:57:08AM -0300, Mario Lobo wrote:
> > Hi;
> >
> > I have a DNS (named) server running on a FreeBSD 4.4 box firewall.
> >
--
Jim Flowers<jflowers@ezo.net>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020422114506.M42132>