Solved

BIND - restricting public access to a specific zone

Posted on 2007-03-27
5
251 Views
Last Modified: 2013-12-16
I have an internal zone that I've setup, however I'd like to restrict access to this zone file to only machines on our internal network with the IP addresses 10.9.3.x.  

I am running Fedora Core 3 with BIND.  How can I restrict all outside traffic and not allow them to resolve host entries just for that zone?  I can see where there is an allow-transfer within my named.conf file, however within the zone file itself - is this where I need to restrict it?

Thanks for your response.
0
Comment
Question by:JWeb Admin
  • 3
  • 2
5 Comments
 
LVL 70

Accepted Solution

by:
Chris Dent earned 500 total points
ID: 18802923

Hi,

Add an allow-query statement to named.conf for the zone:

zone "name"
{
  ...
  allow-query { 10.9.3.0/24; }
}


HTH

Chris
0
 

Author Comment

by:JWeb Admin
ID: 18802950
OK - I don't have to do anything else as far as adding a statement to say "don't allow anyone else, but allow 10.9.3.0/24?"
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 18803023

Nope, it's implied by the allow-query statement.

Chris
0
 

Author Comment

by:JWeb Admin
ID: 18803097
Thanks!
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 18803184

You're welcome :)

Chris
0

Featured Post

3 Use Cases for Connected Systems

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, testing some more, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I wrote this article to explain some important DNS concepts that should be known to avoid some typical configuration errors I often see in forums. I assume that what is described here is the typical behavior of Microsoft DNS client. I don't know …
The purpose of this article is to show how we can create Linux Mint virtual machine using Oracle Virtual Box. To install Linux Mint we have to download the ISO file from its website i.e. http://www.linuxmint.com. Once you open the link you will see …
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question