LinuxQuestions.org
Review your favorite Linux distribution.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page ACL is mandatory option in BIND? Please read this post with patience :-)
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 07-31-2011, 11:50 AM   #1
anishkumarv
Member
 
Registered: Feb 2010
Location: chennai - India
Distribution: centos
Posts: 294

Rep: Reputation: 10
ACL is mandatory option in BIND? Please read this post with patience :-)

Hi all,

Thanks in Advance.

Can any one guide me what is the main purpose of ACL and View option in bind, and i don't understand what is the main usage of ACL, because we configured Primary and Secondary Server, in that which network i need to mention in ACL??

for example this is my secondary server ip 192.168.1.4 do i need to specify this ip in ACL with mask.

And for configure TSIG, Time synchronization is mandatory that means for both the primary and secondary server we need to run the same time zone.??

i read some of the documentation , but still i didn't understand what is the main purpose of ACL. is this the additional security for DNS??

Lot of questions in my mind searching answers for that, i hope i will
get from here.
Last edited by anishkumarv; 07-31-2011 at 12:01 PM.
 
Old 08-01-2011, 08:53 PM   #2
micxz
Senior Member
 
Registered: Sep 2002
Location: CA
Distribution: openSuSE, Cent OS, Slackware
Posts: 1,131

Rep: Reputation: 75
quote form the first page in google:
"The 'acl' clause allows fine-grained control over what hosts or users may perform what operations on the name server."

you may want something like:

Code:
 acl "allowips" {
  192.168.1.4/24;
};

zone "example.com" {
  type slave;
  file "slave.example.com";
  allow-notify {"allowips";}; 
};
to allow your subnet (c class in this example) to notify.
 
1 members found this post helpful.
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
ACL for Bind 9 only allowing host names lookup for LAN j.smith1981 Linux - Server 3 02-28-2011 10:53 AM
bind acl program huyangyang Linux - Server 5 02-04-2010 12:58 AM
Mandatory first post so I can post links Judago LinuxQuestions.org Member Intro 1 05-24-2009 11:59 PM
cpio doesn't have -P (available on solaris) option which preserve ACL's RAJCHAND094 Linux - Software 3 06-26-2008 11:50 AM
BIND 9.2.3 doesn't accept ACL's in forwarders statement? Edaph Linux - Networking 1 05-15-2004 09:02 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 10:05 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration