Re: Zone transfer using TSIG

Rich Goodson Thu, 19 Apr 2012 12:45:30 -0700

Carlos,

zone "example.com" {
...
allow-transfer { key hostA-myserver.key; };
...
};


and in our environment, I have the key files readable only by the user that 
named is running as, then use something like:

include keys/tsig_key_file.key

in named.conf so that the named.conf file can remain readable by normal users.

-Rich

On Apr 19, 2012, at 1:48 PM, Carlos Ribas wrote:

> Hello all,
> 
>     I have a server that is authoritative to my domain and is secondary to 
> four different domains. What is the best way to receive the zones from master 
> using TSIG? May I have something like this into a view statement?
> 
> server 10.0.1.1 { keys hostA-myserver; }; 
> server 10.0.1.2 { keys hostB-myserver; };
> server 10.0.1.3 { keys hostC-myserver; };
> server 10.0.1.4 { keys hostD-myserver; };
> 
> Best regards,
> 
> ---------------------------------
> Carlos Eduardo Ribas
> 
> 
> _______________________________________________
> Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
> from this list
> 
> bind-users mailing list
> bind-users@lists.isc.org
> https://lists.isc.org/mailman/listinfo/bind-users

_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe 
from this list

bind-users mailing list
bind-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/bind-users

Re: Zone transfer using TSIG

Reply via email to