Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Bind9 ACLs

I'm trying to setup Bind9 so that people cant point their dns server addresses to my box and do lookups off my server, but still have them able to query my dns server for the domains its authoritive for.


My named.conf


acl bogusnets {;;;;;;;;};

options {

directory "/var/named";

version ":P";

blackhole { bogusnets; };

allow-recursion { none; };


zone "" {

type master;

file "data/";

allow-query { any; };



The only way I've been able to stop people from doing lookups off my server is by setting recursion to none. I would like to have my localnet to have the option of doing lookups off my box so I need a more suited way of controling who does lookups off my box.


I have read about views and I wont be serving different content to my localnet so I dont think I require them.


Version info











Forum Jump:

Users browsing this thread: 1 Guest(s)