Quote:
So question here is
* Is it possible to define allow zone transfer at single place or I will have to define allow-transfer every individual zone block?
* IS there better approach to this?
* what trade-off is advisable in terms of security to achive more simplicity in terms of config and managing internal dns service?
|
* Sure it's possible. You need to put the allow-transfer directive into the "Options" part of the main
named.conf.
* None that I can think of
* Better read the full e-book from the link above.
Cheers