Access Control Lists error
Greg Choules
gregchoules+bindusers at googlemail.com
Thu Feb 20 17:35:21 UTC 2025
Hi.
An ACL can match other ACLs, meaning that you can include the name of one
ACL in the definition of another.
Your config is being interpreted as:
acl "tsg_acl" {
Start the definition of an ACL called "tsg_acl", which will be followed by
a list of things to match, each of which must end with a semicolon.
ecs 10.56.21.236/30;
Match another ACL called "ecs", but that term should be followed by a
semicolon, and it's not.
This is why it fails. Add that semicolon and try again.
I hope that helps.
Cheers, Greg
On Thu, 20 Feb 2025 at 02:44, Duan Duan via bind-users <
bind-users at lists.isc.org> wrote:
> Hey Guys,
>
> I am upgrading my bind version from 9.11.0 to 9.18.31.
>
> But I have some questions about Access Control Lists(acls).
>
> I am in version 9.11.0 acl file is like this
>
> root at hz#cat tsg_acl
> acl "tsg_acl" {
> ecs 10.56.21.236/30;
> };
>
> But when I upgraded to version 9.18.31, it reported an error.
>
> error : /home/named/acl/tsg_acl:2: missing ';' before '10.56.21.236'
>
> Why is this? Is there any inconsistency between version 9.11.0 and version
> 9.18.31 about access control lists?
>
> Thanks,
>
> Kind regards
> Duan
> --
> Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe
> from this list
>
> ISC funds the development of this software with paid support
> subscriptions. Contact us at https://www.isc.org/contact/ for more
> information.
>
>
> bind-users mailing list
> bind-users at lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20250220/f32a99e3/attachment.htm>
More information about the bind-users
mailing list