Allow or not allow?
Barry Margolin
barmar at alum.mit.edu
Wed May 31 03:56:24 UTC 2006
In article <e5hn8h$1jh1$1 at sf1.isc.org>, "Ronni Jensen" <roj at mvb.dk>
wrote:
> Hi,
>
> I hope you can help me out a bit - am pretty new at BIND, so here comes
> a newbie question :)
>
> I have a DNS setup of 1 master (local) and 2 slaves (public reachable)
> hosting some domains. Now.. I want to restrict the slaves, so only
> people from certain IP networks can query them.
>
> How do I restrict access to the slaves from users outside our network,
> but still allow those users within other ISP networks to make dns
> queries for domains hosted on "my" servers?
>
> Actually, this question is about not having the whole world use our dns
> servers, but use their own ISP's ones.
Put:
Create an ACL called "localusers" that specifies your network. Put:
allow-query { localusers; };
in the global options section. Then in each zone you host, put:
allow-query { any; };
--
Barry Margolin, barmar at alum.mit.edu
Arlington, MA
*** PLEASE post questions in newsgroups, not directly to me ***
*** PLEASE don't copy me on replies, I'll read them in the group ***
More information about the bind-users
mailing list