Reading between the lines - it sounds like you may be mixing nameserver
roles, recursion with authoritative.
This is not a good idea and is why other Nameserver software (NSD,
UNBOUND and others) either perform one role or the other. I understand
that BIND-10 was also designed like this - separate
On Mon, Feb 19, 2018 at 03:51:42PM -0700, @lbutlr wrote:
> If I set
>
> allow-query { 127.0.0.1; [myipblock]; }
>
> Then my DNS doesn't respond to any other servers, right? This would be
> bad for being authoritative. so, should I set that and then set
> allow-query { any; }; in each zone?
>
>
If I set
allow-query { 127.0.0.1; [myipblock]; }
Then my DNS doesn't respond to any other servers, right? This would be bad for
being authoritative. so, should I set that and then set allow-query { any; };
in each zone?
Is that better than simply setting the IPs that are allowed recursion?
3 matches
Mail list logo
