restricting queries...

Matthew Whitworth matthew at okcomputer.org
Sun Aug 29 05:58:12 UTC 1999


I have a couple of DNS servers (BIND 8.1.2) doing double duty as Master DNS
servers for a domain and also providing resolver service for a PC LAN.  I'd
like for the Internet in general to be able to query these servers for names
particular to my domain/zone (obviously), but I don't want everybody and
their brother to be able to use me as their general DNS server.

I've examined the "allow-query" option, but I'm a little confused how to
make it do what I want.  I would like to make a generic rule to only allow
queries from my subnet, but allow everybody to query for my specific zone.
Is there a way to do this?

Thanks!

--

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
matthew whitworth
matthew(at)okcomputer.org






More information about the bind-users mailing list