[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Re: approved AXFR

Subject: Re: [cobalt-security] Re: approved AXFR
From: Dan Keller <dan@xxxxxxxxxx>
Date: Tue, 29 Jan 2002 17:22:38 -0800
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

At 03:00 PM 1/29/02 -0700, you wrote:
>> Stick on a DNS ACL to stop Zone transfers, except to your named
>secondaries
>> i.e.
>> options {
>>         directory "/etc/named";
>>         allow-transfer {
>>                 // ???.??.????????.net
>>                 C.D.197.133
>>                 // ??.????????.com
>>                 A.B.202.244;
>>         };
>>         version "......";
>> };
>
>This function is also available in the Cobalt DNS GUI.  From the DNS
>Settings form (on any domain), select Server Settings from the Add droplist.
>Simply enter the allowed IP addresses, one per line, in the Zone Transfer
>Access field.  Make sure to not have a blank line at the bottom of the
>field.
>
>dAvid tHacker
>Thacker Network Technologies Inc.
>Cobalt@xxxxxxxxxxxxxx
>_______________________________________________
>cobalt-security mailing list
>cobalt-security@xxxxxxxxxxxxxxx
>http://list.cobalt.com/mailman/listinfo/cobalt-security

Wooh, great feature!  Alas, I don't see it in my RAQ 2's GUI.

Was this feature added in later models, or is mine misconfigured?

Thanks mucho, guri!

Dan Keller
dan@xxxxxxxxxx
http://www.keller.com/
+1 415 861-4500 (voice)
+1 415 861-4593 (fax)

References:
- [cobalt-security] Re: approved AXFR
  - From: David Thacker

Prev by Date: [cobalt-security] Re: approved AXFR
Next by Date: : [cobalt-security] [RaQ4] Good logchecker.ignore file for RaQ4i
Previous by thread: [cobalt-security] Re: approved AXFR
Next by thread: SV: [cobalt-security] Re: approved AXFR

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index