[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] Re: approved AXFR

Subject: [cobalt-security] Re: approved AXFR
From: "David Thacker" <Cobalt@xxxxxxxxxxxxxx>
Date: Tue, 29 Jan 2002 15:00:24 -0700
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> Stick on a DNS ACL to stop Zone transfers, except to your named
secondaries
> i.e.
> options {
>         directory "/etc/named";
>         allow-transfer {
>                 // ???.??.????????.net
>                 C.D.197.133
>                 // ??.????????.com
>                 A.B.202.244;
>         };
>         version "......";
> };
>


Hi,

This function is also available in the Cobalt DNS GUI.  From the DNS
Settings form (on any domain), select Server Settings from the Add droplist.
Simply enter the allowed IP addresses, one per line, in the Zone Transfer
Access field.  Make sure to not have a blank line at the bottom of the
field.

dAvid tHacker
Thacker Network Technologies Inc.
Cobalt@xxxxxxxxxxxxxx

Follow-Ups:
- Re: [cobalt-security] Re: approved AXFR
  - From: Dan Keller
- SV: [cobalt-security] Re: approved AXFR
  - From: Kai r. s., euroweb as

Prev by Date: [cobalt-security] Domain of sender address does not resolve
Next by Date: Re: [cobalt-security] Re: approved AXFR
Previous by thread: [cobalt-security] Domain of sender address does not resolve
Next by thread: Re: [cobalt-security] Re: approved AXFR

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index