|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
Re: [PLUG] DNS security question
|
I'm not sure I entirely understand your question, but bind does have the
allow-query option directive that will facilitate access restrictions
(IP-based) on who can perform a query. By default, allow-query is 0.0.0.0
internally. As soon as you specify an IP, it defaults to deny all queries,
then only allow query access based on what you specify.
-John
----------------------------------------------------
>From : Neill R <nrdevelopment@gmail.com>
To : Philadelphia Linux User's Group Discussion List
<plug@lists.phillylinux.org>
Subject : [PLUG] DNS security question
Date : Thu, 11 Sep 2008 21:08:21 -0400
> I have three client zones hosted on an internal name server. There are
three
> clients using the name server for name resolution. The client's each
have
> their own subnet.
>
> ie.
>
> client 1 - 10.10.20.0/24
> client 2 - 10.10.30.0/24
> client 3 - 10.10.40.0/24
>
> my company name is outsource.com, each client has a domain of
> clientX.outsource.com. My question - is there a way in bind or any dns
> server that I can restrict hostx.client1.outsource.com queries to
> 10.10.20.0/24, hostx.client2.outsource.com queries to 10.10.30.0/24,
etc..
>
> Thanks in advance,
> Neill
>
___________________________________________________________________________
> Philadelphia Linux Users Group --
http://www.phillylinux.org
> Announcements -
http://lists.phillylinux.org/mailman/listinfo/plug-announce
> General Discussion --
http://lists.phillylinux.org/mailman/listinfo/plug
___________________________________________________________________________
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug
|
|