blackhole and allow-transfer
Michael Kjorling
michael at kjorling.com
Wed Apr 3 21:47:41 UTC 2002
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Apr 3 2002 17:32 +0200, Jochen Schiffler wrote:
> can anyone tell me which option statement is more powerful?
>
> I mean if I 'blackhole' the net 192/8, will a single server with an
> 192.x.x.x address be able to transfer zones when it´s explicitly allowed in
> the allow-transfer-statment? Or will blackhole override allow-transfer?
I don't have the documentation easily at hand right now, but it would
seem that more specific controls override more general ones. So, just
a guess: allow-{query,recursion,transfer} would override blackhole,
and zone controls would override options set under, well, options...
Just remember that there are quite a few people out there using 192/8
addresses on the Internet. 192.168/16 is a private range according to
RFC 1918, though. (A good friend of mine administers a /24 under
192/8.)
Michael Kjörling
- --
Michael Kjörling -- Programmer/Network administrator ^..^
Internet: michael at kjorling.com -- FidoNet: 2:204/254.4 \/
PGP: 95f1 074d 336d f8f0 f297 6a5b 2aa3 7bfd 8a70 e33e
``And indeed people sometimes speak of man's "bestial" cruelty, but
this is very unfair and insulting to the beasts: a beast can never be
so cruel as a man, so ingeniously, so artistically cruel.''
(Ivan Karamazov, in Dostoyevsky's 'The Brothers Karamazov')
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: Public key is at http://michael.kjorling.com/contact/pgp.html
iD8DBQE8q3iEKqN7/Ypw4z4RAkpDAKCRZiEl+cVmV0QQqHdVU2iuWRUctQCeMCZC
c/WtgSC0ugPmK7C3DdbAGYc=
=xs18
-----END PGP SIGNATURE-----
More information about the bind-users
mailing list