RE: nameservers open to world - with test output
James> Well, if your company runs the DNS for your website on
James> those servers and you block outside IPs from querying from,
James> no one on the internet will be able to go to your website.
James> :) [...]
I think the right way to do this in bind 8.?? is:
In named.conf
options {
// bla bla
allow-query { 127/8; your-network/bits; };
};
and for domain names you are authoritative for
zone "your-domain-name.com" in {
type master;
allow-query { any; } ;
file "/etc/bind/your-domain-name.com";
};
This will accomplish what you want.
cheers,
BM
Reply to: