Red Hat Enterprise Linux BIND Slave Server

Posted on 2009-12-29
Last Modified: 2013-12-15
I'm trying to configure a RHEL BIND slave server and I have been searching for configuration tutorials or examples so I can securely set up the slave servers for the DMZ.  I think I have set up the master server correctly.  How do I set up the slave server so that it performs zone transfers with the master server only, prevent someone from listing all the records for a domain or sub-domain (but can query for individual records) and is relatively secure.  I have set up BIND to run in the chroot "jailed" environment.  

Thank you very much for your feedback and assistance!
Question by:tbaik
    LVL 29

    Accepted Solution

    In Slave server

    in named.conf file : with each file configuration you need to write like this

    zone "" IN {
            type slave;
            file "slaves/";
            masters { ip.of.master.server;};

    and in the Master server

    under options {   }

    add this lines

    # Bellow 2 lines is to secure bind so that no body can transfer the zone file
    Recursion no;                  
     allow-transfer {"none";};

    also, in the zone configuration file

    zone "" IN {
    type master;
    file "";
    allow-update { none; };
    allow-transfer { ip.of.slave.server; };


    now restart the both server

    Slave should create zone file automaticaly


    Author Comment

    Okay.  I'll give it a try and let you know.  Thanks for your feedback.

    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Join & Write a Comment

    Introduction We as admins face situation where we need to redirect websites to another. This may be required as a part of an upgrade keeping the old URL but website should be served from new URL. This document would brief you on different ways ca…
    If you use Debian 6 Squeeze and you are tired of looking at the childish graphical GDM login screen that is used by default, here's an easy way to change it. If you've already tried to change it you've probably discovered that none of the old met…
    Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
    Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    23 Experts available now in Live!

    Get 1:1 Help Now