[Techtalk] bind gurus: restricting queries to your domain(s)
Carla Schroder
carla at bratgrrl.com
Fri Aug 20 15:52:16 EST 2004
On Friday 20 August 2004 2:21 pm, Evilpig wrote:
> On Fri, 20 Aug 2004 13:45:30 -0700, Carla Schroder <carla at bratgrrl.com>
wrote:
> > Hiya,
> >
> > When you run a public BIND server for your domain, how do you restrict
BIND
> > to only accept queries for your domain, or domains? I've been looking at
> > allow-query directives under Options, but I'm not sure that's the correct
> > tool, or how to use it.
>
> If I'm understanding you right, what you want to do is make it where,
> for example, I can't ask your DNS server to resolve www.google.com;
> instead you want to make it where I (or anyone else on the internet)
> can only ask it to resolve whatever.carlasdomain.com and other
> carlasdomain.com records.
Thanks, that is exactly what I want. More peeled grapes!
You don't have to worry about this with djbdns, because the resolver
(dnscache) and the authoritative server (tinydns) have strictly separate
functions. tinydns only serves authoritative data; there is no way to make it
respond to requests for google.com when tinydns is the authority only for
carlasdomain.com.
Thees bind stuff it gives me headache. :)
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Carla Schroder
this message brought to you
by Libranet 2.8 and Kmail
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
More information about the Techtalk
mailing list