Block some users with Bind9

Emiliano Vazquez emilianovazquez at
Tue Jul 24 17:32:34 UTC 2012

Hi to everyone!
I'm stuck with this!

I need to do the following but i did not find the real solution.

My problem:

I need to block some IPs from the LAN to specific places, like 

I do this with Squid but https transport is encripted and never goes to 
Squid. There are some news about interception of this port (443) but 
this is un newers version of squid (3.2.x)

I wan't know if you know some tipe of configuration of Bind9 to do 
something like "OpenDNS" who give us this solution.

I need to do:

IP  Block access to &
IP  Full access without limitations.
IP  Block access to &

I follow the instructions from this link and get it working 
but the DNS act for all the machines in the network.

It's possible to make what i wan't to do?

Best regards and thanks for share your time.


Emiliano Vazquez | PcCentro Informatica & CCTV
Office: +54 (11) 4951-0203 Interno 4
Movil: 011-15-6253-7165
Mail: emilianovazquez at

More information about the bind-users mailing list