Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Domain names entries in Bind Setup.

Status
Not open for further replies.
dinoteo

dinoteo

Technical User
Oct 2, 2003
51
SG
Hi Guys,

Just like to inquire something about Bind.

In BIND setup, the domain name entries are stored in the many db.xxxxx files. I would like to configure the BIND is a way that certain network segment can access and resolve the domain name is db.xxxxxA file but not db.xxxxxB file while another network segment can access db.xxxxxB file but not db.xxxxxA file. How should I configure that?

Hope someone could help me out on this.

Thanks in advance,
PS.
 
Sort by date Sort by votes
In the "Options" section usually you specify global settings about all the zones, which you have. For example the allow-query statement. It is also possible to include an allow-query in the definition of every zone which will override the allow-query in "Options". Let's assume that you want to let users from network 10.0.0.0/24 resolve names defined in the zone file "domain1.zone", and not resolve names defined in the zone "domain2.zone". Further the network 10.0.0.1/24 is allowed to resolve names in "domain2.zone", but not in "domain1.zone". Then you could write the following configuration:

Code: 
zone "domain1" IN {
type master;
file "domain1.zone";
allow-query {10.0.0.0/24; };

}

zone "domain2" IN {
type master;
file "domain2.zone";
allow-query {10.0.0.1/24; };

}

In that way, for instance, if a user from network 10.0.0.0/24 tries to resolve a name within the domain ""domain2" they will get a "Query refused" response.


Jordan Jordanov
Network administrator
Faculty of German Engineering Education and Industrial Management
Technical University of Sofia, Bulgaria
 
Upvote 0 Downvote
Oh, don't forget the semi-colons after the closing brace. This should look like this:

Code: 
zone "domain1" IN {
type master;
file "domain1.zone";
allow-query {10.0.0.0/24; };

};

zone "domain2" IN {
type master;
file "domain2.zone";
allow-query {10.0.0.1/24; };

};

Sorry for the two posts, but I can't see an "Edit" button here.


Jordan Jordanov
Network administrator
Faculty of German Engineering Education and Industrial Management
Technical University of Sofia, Bulgaria
 
Upvote 0 Downvote
Thanks Kreichek for the detailed information,

I will try it out.

Cheers,
PS
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Propus Gemini
  • Locked
  • Question
BIND don't resolve Microsoft Teams URL
Replies
1
Views
6K
iggsterman
iggsterman
R. B.
  • Locked
  • Question
BIND BLOCK IN ANY REQUEST
Replies
0
Views
5K
R. B.
R. B.
alpha76
  • Locked
  • Question
Advice on DNS setup/configuration
Replies
3
Views
6K
technome
technome
dl12345
  • Locked
  • Question
IPV6 related issue on bind 9.16.1 on Ubuntu 20.04
Replies
1
Views
5K
dl12345
dl12345
Nick Ellson
  • Locked
  • Question
Bind9 with RPZ and local forwarding zones?
Replies
1
Views
5K
Nick Ellson
Nick Ellson

Part and Inventory Search

Sponsor

Back
Top