Limit allow-transfer to key + IP

Jonathan Petersson jpetersson at garnser.se
Tue Apr 14 17:43:00 UTC 2009


Hi all,

I was reading up on TSIG signed zone-transfers and gave it a try in my
lab this morning, successfully. However what I noticed (which makes
sense based on my config) is that any host with the appropriate key is
allowed to perform a zone-transfer.

Is there any way to limit the zone-transfer to require both key and
known IP using allow-transfer?

Thanks

/Jonathan



More information about the bind-users mailing list