allow-update?
BRANCH DONALD
DBRANCH at ibjus.com
Tue Jun 26 21:04:11 UTC 2001
Galen
It sounds like you are allowing yourself meaning your master to do
dynamic zone updates to it's zones. If you have know need for dynamic
updates then you could probably just remove the statement. Your slaves a
bet don't have allow updates in it's config file.
-----Original Message-----
From: Galen Johnson [mailto:gjohnson at eduprise.com]
Sent: Tuesday, June 26, 2001 3:09 PM
To: Bind Users
Subject: allow-update?
Being fairly new to setting up DNS I have a question. I am running bind
9.1.3rc2 and am getting the following warning for several zones:
Jun 26 14:54:19 ns1 /usr/local/sbin/named[11831]: [ID 866145
daemon.warning] zone 'cap-media.com' allows updates by IP address, which
is insecure
I get this on my master but not on my slaves.
My named.conf file has an allow-updates directive in each zone which
points to itself (ie, the ip of the master). Now, my question is
this...do I really need an allow-updates for the master server? Or is
there a way to get rid of these warnings (easily)? (ok, it was 2
questions)
I'd really rather have as few messages spewed to my logs as possible and
this is more an annoyance than anything since I'd like to understand why
it's doing this.
=G+
More information about the bind-users
mailing list