secure zone transfer and dynamic update
saravanan ganapathy
sarav_gsa at yahoo.com
Wed Sep 29 09:55:08 UTC 2004
Hai,
I have configured bind9.2 on my debian woody.TSIG
also configured for zone Txfr and ddns update.
My config file as
zone "abc.com" {
type master;
file "abc";
allow-transfer {key abc.com;};
allow-update { key abc.com;};
};
server 50.50.50.1 {
keys { abc.com ;};
};
key "abc.com." {
algorithm HMAC-MD5;
secret "aasfsv131414";
};
I also configured slave server with this TSIG.It works
well.
My Problem:
------------
The master server gives the zone data to any server
which have the same TSIG key, though I have specified
the slave server ip address only in the master server.
The server should responds for zone txfr only when
both the ip address and TSIG key matches.
How to configure this?
I have the same problem with ddns update also.
Pls guide me
Note :
Even " allow-transfer {key abc.com;50.50.50.1;}; "
doesn't help
Sarav
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
More information about the bind-users
mailing list