Lawrence Chan webmaster at
Sat Nov 6 02:36:13 UTC 1999


With current BIND setting, one can config the name servers under one's
administration to restrict zone transfer update to designated secondary
servers.  Are there ways to ensure that those secondaries (most likely
under different LAN admin policies) also would oblige with the same
restriction?  If not, and short of running both primary and secondaries
on the same LAN, one could easily try for zone transfer from the
secondaries eventhough restricted from the primary, would it not?
Kindly advice.

Lawrence Chan
lchan at

More information about the bind-users mailing list