acl hostlist1 {
200.200.200/24;
};
^^^ The above example would allow any machine on 200.200.200.* with a 24
bit subnet mask access to named.
HOWEVER
listen-on port 53 { 200.200.200.1; };
^^^
This works.. it's spec, look it up =) You may have another issue somewhere
else.
Use
http://nim.cit.cornell.edu/usr/share/man/info/en_US/a_doc_lib/files/aixfiles/named.conf.htm
if you get stuck.
- Josh Reynolds
On Fri, 9 Nov 2001, Jeff wrote:
> I did this, changing the IP addresses of course, and now it doesn't work at all on either card.... :)
>
> Any other suggestions?
>
>
> At 10:31 AM 11/9/2001, you wrote:
>
> >here you go..
> >
> >
> >options {
> > directory "/var/named";
> > listen-on port 53{ 200.200.200.1; };
> > version "Questions should be directed to root@nat.lan";
> > allow-transfer { 200.200.200.0/24; };
> >
> >
> >and BTW..
> >the new BIND is quite secure if set up properly. :)
> >
> >
> >On Fri, 9 Nov 2001, Jeff wrote:
> >
> >> I'd rather not go back a kernel now.... But would like to make it more
> >> secure.
> >>
> >> Maybe I'll just fix my box to use DHCP so I don't need to run a name
> >> server - yeah... I like that idea. Less services the better I always
> >> say. :)
> >>
> >> Thanks anyways.
> >>
> >> At 10:18 AM 11/9/2001, you wrote:
> >>
> >>
> >> -----Original Message-----
> >> From: plug-discuss-admin@lists.PLUG.phoenix.az.us
> >> [mailto:plug-discuss-admin@lists.PLUG.phoenix.az.us]On Behalf
> >> Of Jeff
> >> Sent: Friday, November 09, 2001 9:51 AM
> >> To: plug-discuss@lists.PLUG.phoenix.az.us
> >> Subject: named
> >>
> >>
> >> Does anyone know how to setup named to only listen on one
> >> ethernet
> >> interface?
> >>
> >> I believe it's done in named.conf , I can't seem to decode
> >> what it says in
> >> there to be able to figure it out. And the manual isn't
> >> helping me.
> >>
> >> ~Jeff
> >>
> >> Slackware 8.0
> >> Linux 2.4.5
> >>
> >> Cant remember there being anything in Bind to say only one
> >> Nic
> >>
> >> I hope ure not running this on your linux gateway box that
> >> would be quite
> >> bad cause bind isnt the most secure name server.
> >>
> >> might have been safer to keep with Kernel 2.2 right now
> >> 2.2.20 is out right
> >> now with the ow patch to match
> >> ________________________________________________
> >> See http://PLUG.phoenix.az.us/navigator-mail.shtml if your
> >> mail doesn't post
> >> to the list quickly and you use Netscape to write mail.
> >>
> >> PLUG-discuss mailing list -
> >> PLUG-discuss@lists.PLUG.phoenix.az.us
> >> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
> >>
> >> ________________________________________________
> >> See http://PLUG.phoenix.az.us/navigator-mail.shtml if your
> >> mail doesn't post to the list quickly and you use Netscape to
> >> write mail.
> >>
> >> PLUG-discuss mailing list -
> >> PLUG-discuss@lists.PLUG.phoenix.az.us
> >> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
> >>
> >> ~Jeff
> >>
> >> Slackware 8.0
> >> Linux 2.4.5 ________________________________________________ See
> >> http://PLUG.phoenix.az.us/navigator-mail.shtml if your mail doesn't post
> >> to the list quickly and you use Netscape to write mail. PLUG-discuss
> >> mailing list - PLUG-discuss@lists.PLUG.phoenix.az.us
> >> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
> >>
> >
> >________________________________________________
> >See http://PLUG.phoenix.az.us/navigator-mail.shtml if your mail doesn't post to the list quickly and you use Netscape to write mail.
> >
> >PLUG-discuss mailing list - PLUG-discuss@lists.PLUG.phoenix.az.us
> >http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
> ~Jeff
>
> Slackware 8.0
> Linux 2.4.5
>
> ________________________________________________
> See http://PLUG.phoenix.az.us/navigator-mail.shtml if your mail doesn't post to the list quickly and you use Netscape to write mail.
>
> PLUG-discuss mailing list - PLUG-discuss@lists.PLUG.phoenix.az.us
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
(text/plain)