Date: Tue, 19 Oct 2004 21:53:54 +0200 From: Benjamin Walkenhorst <krylon@gmx.net> To: freebsd-questions@freebsd.org Subject: Re: Private (only) DNS server setup? Message-ID: <417570D2.3010109@gmx.net> In-Reply-To: <417568D4.5000309@pilar-ciudad.com.ar> References: <BAY18-F2ZncJfKHmj9n00008ff3@hotmail.com> <20041019201733.E79192@gaff.hhhr.ision.net> <417568D4.5000309@pilar-ciudad.com.ar>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi,
Ezequiel O. Block wrote:
> The allow-recursion option would limit queries only to your lan. like
> this
>
> options {
>
> allow-recursion { 192.168.1.0/24; 127.0.0.1; };
>
> };
>
>
You can also say:
options {
...
listen-on { 192.168.0.1; 127.0.0.1; };
}; ^^^^^^^^^^^
(Or whatever your server's local IP is)
This way it will only listen on those interfaces.
Also, there's allow-query and blackhole... _Plus_ you can just use a
packet filter
to protect your DNS-server from the internet. Possibilities are
endless... =)
Kind regards,
Benjamin
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?417570D2.3010109>