Solved

BIND - restricting public access to a specific zone

Posted on 2007-03-27
5
249 Views
Last Modified: 2013-12-16
I have an internal zone that I've setup, however I'd like to restrict access to this zone file to only machines on our internal network with the IP addresses 10.9.3.x.  

I am running Fedora Core 3 with BIND.  How can I restrict all outside traffic and not allow them to resolve host entries just for that zone?  I can see where there is an allow-transfer within my named.conf file, however within the zone file itself - is this where I need to restrict it?

Thanks for your response.
0
Comment
Question by:JWeb Admin
  • 3
  • 2
5 Comments
 
LVL 70

Accepted Solution

by:
Chris Dent earned 500 total points
Comment Utility

Hi,

Add an allow-query statement to named.conf for the zone:

zone "name"
{
  ...
  allow-query { 10.9.3.0/24; }
}


HTH

Chris
0
 

Author Comment

by:JWeb Admin
Comment Utility
OK - I don't have to do anything else as far as adding a statement to say "don't allow anyone else, but allow 10.9.3.0/24?"
0
 
LVL 70

Expert Comment

by:Chris Dent
Comment Utility

Nope, it's implied by the allow-query statement.

Chris
0
 

Author Comment

by:JWeb Admin
Comment Utility
Thanks!
0
 
LVL 70

Expert Comment

by:Chris Dent
Comment Utility

You're welcome :)

Chris
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
docker invalid registry name 2 48
LINUX, CPANEL & WHM 5 16
Sendmail STARTTLS error 37 38
Import a txt file into 2012 DNS server 2 22
The purpose of this article is to fix the unknown display problem in Linux Mint operating system. After installing the OS if you see Display monitor is not recognized then we can install "MESA" utilities to fix this problem or we can install additio…
BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now