• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 257
  • Last Modified:

BIND - restricting public access to a specific zone

I have an internal zone that I've setup, however I'd like to restrict access to this zone file to only machines on our internal network with the IP addresses 10.9.3.x.  

I am running Fedora Core 3 with BIND.  How can I restrict all outside traffic and not allow them to resolve host entries just for that zone?  I can see where there is an allow-transfer within my named.conf file, however within the zone file itself - is this where I need to restrict it?

Thanks for your response.
0
JWeb Admin
Asked:
JWeb Admin
  • 3
  • 2
1 Solution
 
Chris DentPowerShell DeveloperCommented:

Hi,

Add an allow-query statement to named.conf for the zone:

zone "name"
{
  ...
  allow-query { 10.9.3.0/24; }
}


HTH

Chris
0
 
JWeb AdminAuthor Commented:
OK - I don't have to do anything else as far as adding a statement to say "don't allow anyone else, but allow 10.9.3.0/24?"
0
 
Chris DentPowerShell DeveloperCommented:

Nope, it's implied by the allow-query statement.

Chris
0
 
JWeb AdminAuthor Commented:
Thanks!
0
 
Chris DentPowerShell DeveloperCommented:

You're welcome :)

Chris
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now