moseley@hank.org said on Wed, Sep 10, 2003 at 09:22:15AM -0700: > I know I can use ACLs to setup what hosts can AXFR with allow-transfer, > but I'm wondering if there is a way to only allow transfers to hosts > specified as NS in the zone. That would avoid having to update the > bind conf file if a zone's NS records change. Is that possible in > Bind9? Not directly. You could either a) write script to parse zonefiles and generate a config file fragment or b) use TSIG and keys to allow xfers, but then you need to have all of your slaves running BIND9, and key distribution might be an issue. M
Attachment:
pgp_AJeiUCPJj.pgp
Description: PGP signature