Re: Bind: listen-on-v6 {any;}; and linux...

To: Stephane Bortzmeyer <bortzmeyer@nic.fr>
Cc: debian-ipv6@lists.debian.org
Subject: Re: Bind: listen-on-v6 {any;}; and linux...
From: Kai Kasurinen <Kai.Kasurinen@ikonia.fi>
Date: Tue, 13 Aug 2002 11:45:53 +0300 (EEST)
Message-id: <[🔎] Pine.LNX.4.44.0208131143410.5302-100000@nelli.ikonia.fi>
In-reply-to: <[🔎] 20020813075601.GA17974@nic.fr>

On Tue, 13 Aug 2002, Stephane Bortzmeyer wrote:

> I have strange things with Bind 9 (the pristine Debian package from
> woody) and IPv6.
>
> If I use listen-on-v6 (which unfortunately does not allow to listen
> only to *some* IPv6 addresses), I have to change some ACLs. Otherwise:
>
> Aug 12 12:02:42 eve named[8905]: client ::ffff:192.134.0.49#2577: zone transfer 'eureg.org/IN' denied

BIND 9 Administrator Reference Manual
6.2.14.1. Boolean Options

match-mapped-addresses

If yes, then an IPv4-mapped IPv6 address will match any address match list
entries that match the corresponding IPv4 address. Enabling this option is
sometimes useful on IPv6-enabled Linux systems, to work around a kernel
quirk that causes IPv4 TCP connections such as zone transfers to be
accepted on an IPv6 socket using mapped addresses, causing address match
lists designed for IPv4 to fail to match. The use of this option for any
other purpose is discouraged.

Reply to:

Follow-Ups:
- Re: Bind: listen-on-v6 {any;}; and linux...
  - From: Stephane Bortzmeyer <bortzmeyer@nic.fr>

References:
- Bind: listen-on-v6 {any;}; and linux...
  - From: Stephane Bortzmeyer <bortzmeyer@nic.fr>

Prev by Date: Bind: listen-on-v6 {any;}; and linux...
Next by Date: Re: Bind: listen-on-v6 {any;}; and linux...
Previous by thread: Bind: listen-on-v6 {any;}; and linux...
Next by thread: Re: Bind: listen-on-v6 {any;}; and linux...
Index(es):
- Date
- Thread