Hi all,
How to deny any zone transfer out of my host??? bind 8.2.3
Thank you all,
Regards
BIND allows you to explicitly specify which hosts you will allow transfers to. usually you will specify just your secondary nameservers. The syntax is:
xfernets 192.168.0.1&255.255.255.255
Replace 192.168.0.1 with whatever the IP of your seconday server is. All other IP's will be denied. Note that you must follow the syntax exactly (no additional whitespace allowed). Check out the BIND docs for more, or read the "Ask Mr DNS" website which answers just about every DNS-related question you could think of: http://www.acmebw.com/askmrdns
solvman,
You can also use the "allow-transfer" in the options section of the named.conf file.
an example is:
allow-transfer { 192.168.1.1; 192,168.1.2};
Andy H