I received two prompt responses that gave me the information I needed. In
particular, I need to use the xfrnets directive in the name server's boot
file like so:
xfrnets x.y.z.w
Where "x.y.z.w" is the network address of the network were zone transfers
are to be allowed. Blocking zone transfers blocks the use of the ls
command in nslookup since both use the same underlying DNS commands.
Thanks to:
Michael H. Martel <martelm_at_quark.vsc.edu>
Arrigo Triulzi <arrigo_at_albourne.com>
Original message:
"I'm interested in configuring my name server so that outsiders will not
be able to use the "ls" command in nslookup to get a listing of all the
hosts in my domain. How can this be accomplished?
I'm using bind "out of the box" on a DU v4.0B machine."
*****************************************************************************
Peter
pchapin_at_twilight.vtc.vsc.edu
http://twilight.vtc.vsc.edu/~pchapin/
The philosophy of C++: "Nothing is false; everything else is true."
Received on Mon Dec 14 1998 - 16:05:57 NZDT