DNS Recursion
Kenneth E. Lussier
klussier at comcast.net
Thu Sep 15 08:28:01 EDT 2005
On Wed, 2005-09-14 at 21:22 -0400, Benjamin Scott wrote:
>
> If I understand you correctly:
You did.
> "allow-recursion" is not the best choice for this. In the above, BIND will
> still attempt to answer queries, it just won't perform recursion to do so.
> In particular, the cache is still available. See problem statement, above.
Interesting.. I have apparently mis-understood the allow-recursion
option for many years.
> That should do it, I believe.
>
That did it. It does exactly what I want the way I wanted it.
> References:
>
> Secure BIND Template
> http://www.cymru.com/Documents/secure-bind-template.html
This is a really good read (so far, I haven't finished it yet) for
anyone that is interested.
> BIND Administrator Reference Manual
> (included in BIND distribution)
Yeah, read that. Got a headache. :-)
Thanks,
Kenny
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://mail.gnhlug.org/mailman/private/gnhlug-discuss/attachments/20050915/2ca09f6d/attachment.bin
More information about the gnhlug-discuss
mailing list