Limit allow-transfer to key + IP
jpetersson at garnser.se
Tue Apr 14 17:43:00 UTC 2009
I was reading up on TSIG signed zone-transfers and gave it a try in my
lab this morning, successfully. However what I noticed (which makes
sense based on my config) is that any host with the appropriate key is
allowed to perform a zone-transfer.
Is there any way to limit the zone-transfer to require both key and
known IP using allow-transfer?
More information about the bind-users