Cannot get "allow-query-on" to work

Bob Harold rharolde at umich.edu
Wed Jul 2 15:08:50 UTC 2014


I am using Ubuntu 12.04.4, BIND 9.8.1-P1, and just added:

allow-query-on { 127.0.0.1; };

To the default /etc/bind/named.conf.options file.
That should make it only answer queries sent to 127.0.0.1, and not answer
queries sent to the server's normal IP.  But it seems to have no effect.

I have tried putting the computer's real IP in there instead - same results
- both IP's answer queries.

I have tried the similar "allow-recursion-on" option and that works as
documented.

Any clue how to get "allow-query-on" to work?
Searching the mail archives and Google did not find anything - but it is
hard to filter on just "allow-query-on" as a complete string.
Has anyone even used that option?

-- 
Bob Harold
DNS hostmaster
University of Michigan
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20140702/51730182/attachment-0001.html>


More information about the bind-users mailing list