Reload only ACL
Bob Harold
rharolde at umich.edu
Tue Apr 26 13:46:03 UTC 2016
On Mon, Apr 25, 2016 at 5:30 PM, Carl Byington <carl at byington.org> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
>
> On Mon, 2016-04-25 at 23:23 +0300, Ali Jawad wrote:
> > based on a user tool the users "hundreds in corporate environment" get
> > either public or private zone,
>
> Rather than the tool writing an ACL for bind, can the tool instead
> reconfigure the user's local workstation dns settings to point to one of
> two different (sets of) bind servers? One serves the public zone, one
> serves the private zone.
>
>
>
You might be able to use RPZ to give a list of users a different answer for
certain queries, and that can be dynamically updated quickly, if I
understand it correctly. That might work better than ACLs and views for a
fast-changing list of users.
--
Bob Harold
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20160426/6f74b4ee/attachment.html>
More information about the bind-users
mailing list