Zone Transfer Q

Jim Reid jim at mpn.cp.philips.com
Wed Jul 7 15:46:02 UTC 1999


>>>>> "Marc" == Trottier, Marc <MTrottie at NRCan.gc.ca> writes:

    Marc> Hello, I would like configure my DNS server to disallow zone
    Marc> transfers from system other the peer DNS server that I
    Marc> participate with. How do I do so ?

That depends on your name server. In BIND8, an allow-transfer
substatement in the zone statement will do this. Some versions of
BIND4 support an xfernets directive in named.boot to restrict who can
do zone transfers. Personally, I don't see the point of restricting
zone transfers. It doesn't make things "more secure" and needlessly
complicates your DNS administration.


More information about the bind-users mailing list