[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] Re: approved AXFR
- Subject: Re: [cobalt-security] Re: approved AXFR
- From: Dan Keller <dan@xxxxxxxxxx>
- Date: Tue, 29 Jan 2002 17:22:38 -0800
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
At 03:00 PM 1/29/02 -0700, you wrote:
>> Stick on a DNS ACL to stop Zone transfers, except to your named
>secondaries
>> i.e.
>> options {
>> directory "/etc/named";
>> allow-transfer {
>> // ???.??.????????.net
>> C.D.197.133
>> // ??.????????.com
>> A.B.202.244;
>> };
>> version "......";
>> };
>
>This function is also available in the Cobalt DNS GUI. From the DNS
>Settings form (on any domain), select Server Settings from the Add droplist.
>Simply enter the allowed IP addresses, one per line, in the Zone Transfer
>Access field. Make sure to not have a blank line at the bottom of the
>field.
>
>dAvid tHacker
>Thacker Network Technologies Inc.
>Cobalt@xxxxxxxxxxxxxx
>_______________________________________________
>cobalt-security mailing list
>cobalt-security@xxxxxxxxxxxxxxx
>http://list.cobalt.com/mailman/listinfo/cobalt-security
Wooh, great feature! Alas, I don't see it in my RAQ 2's GUI.
Was this feature added in later models, or is mine misconfigured?
Thanks mucho, guri!
Dan Keller
dan@xxxxxxxxxx
http://www.keller.com/
+1 415 861-4500 (voice)
+1 415 861-4593 (fax)