ACL in /etc/named.zones

Joseph S D Yao jsdy at center.osis.gov
Tue Sep 5 17:58:27 UTC 2006


On Mon, Sep 04, 2006 at 04:07:51PM +0200, Sim wrote:
> Hi to All!
> 
> Is it possible to substitute all "masters {192.168.2.7; 192.168.2.8};"
> with ACL ?
> 
> Source :
> ------------------------------------------------------------------
> zone "example.com" in {
>     type slave;
>     file "slave.example.com";
>     masters { 192.168.2.7; 192.168.2.8; };
> };
> 
> 
> 
> For example:
> ------------------------------------------------------------------
> acl masters {
>         89.186.33.2;
> };
> 
> zone "example.com" in {
>     type slave;
>     file "slave.example.com";
>     masters { masters; };
> };
> 
> 
> Thanks
> 
> Sim


If you are running BIND 9.3.*, you may enter this:

masters our_name_servers {
	89.186.33.2;
};

zone "example.com" in {
	type slave;
	file "slave.example.com";
	masters { our_name_servers; };
};

The ARM prior to 9.3.* does not show this capability.

Note that the difference between your example and this one is your use
of the keyword "acl" instead of "masters".  You also used the name
"masters" for your list of masters, which may or may not be incompatible
with the word being a keyword, depending on how it's being parsed.


-- 
Joe Yao
-----------------------------------------------------------------------
   This message is not an official statement of OSIS Center policies.



More information about the bind-users mailing list