[gentoo-server] stop using dns from world

[gentoo-server] stop using dns from world

[widyachacra]

Dear all,

i deployed a bind9.3.2 server for 'mydomain.com'. now its seem to use
unauthorized users to resolve their DNS quiries. how do i stop this.
please help me.

-- 
---
PS: This is my private email address.

Budu saranay! Sadaham Phitay! Sangha Rekawaranay! {Theruwan Saranay!}

- Widyachacra Rajapaksha -
-- 
gentoo-server@gentoo.org mailing list

Re: [gentoo-server] stop using dns from world

[David CHANIAL]

Le Mercredi 27 Septembre 2006 10:20, widyachacra a écrit :
> i deployed a bind9.3.2 server for 'mydomain.com'. now its seem to use
> unauthorized users to resolve their DNS quiries. how do i stop this.
> please help me.
hi,

i don't remember exactly, but search for :
allow-recursion: none;
Best regards,
-- 
David CHANIAL - Euro Web SARL - http://www.euro-web.fr
  Location de serveurs dédiés infogérés
  Infogérance et consulting
  Hébergement mutualisé sur mesure
  Serveurs de jeux

-- 
gentoo-server@gentoo.org mailing list

Re: [gentoo-server] stop using dns from world

[Georges Toth]

Hi,

> i deployed a bind9.3.2 server for 'mydomain.com'. now its seem to use
> unauthorized users to resolve their DNS quiries. how do i stop this.
> please help me.

To allow queries from the network your server is running on, but from no one 
else:
allow-query { any; };
allow-recursion { localnets; };

Or to deny recursive queries alltogether:
allow-query { any; };
allow-recursion { none; };

-- 

regards,
Georges Toth
-- 
gentoo-server@gentoo.org mailing list

Re: [gentoo-server] stop using dns from world

[widyachacra]

but still my log gives following status...

Log status
---------------
Sep 27 17:24:06 ns1 named[31808]: lame server resolving 'romhat.net'
(in 'romhat.NET'?): 69.30.86.228#53


how to stop this lame server resolvings?

On 9/27/06, Georges Toth <georges@norm.lu> wrote:
> Hi,
>
> > i deployed a bind9.3.2 server for 'mydomain.com'. now its seem to use
> > unauthorized users to resolve their DNS quiries. how do i stop this.
> > please help me.
>
> To allow queries from the network your server is running on, but from no one
> else:
> allow-query { any; };
> allow-recursion { localnets; };
>
> Or to deny recursive queries alltogether:
> allow-query { any; };
> allow-recursion { none; };
>
> --
>
> regards,
> Georges Toth
>


-- 
---
PS: This is my private email address.

Budu saranay! Sadaham Phitay! Sangha Rekawaranay! {Theruwan Saranay!}

- Widyachacra Rajapaksha -
-- 
gentoo-server@gentoo.org mailing list

Re: [gentoo-server] stop using dns from world

[Georges Toth]

> but still my log gives following status...
> Log status
> ---------------
> Sep 27 17:24:06 ns1 named[31808]: lame server resolving 'romhat.net'
> (in 'romhat.NET'?): 69.30.86.228#53
>
> how to stop this lame server resolvings?

"lame server resolving" means that the dns server configured for the domain 
you are trying to resolve is not authoritative for that domain....
You can disable those log messages by putting the following line in you bind 
config file:

logging { 
category lame-servers { null; }; 
}; 


I'm not really sure about your setup... but if you want your dns server to 
only serve the configured zones and not be a recursive resolver for any 
machine (local or on the local net) just put "none" in allow-recursion, and 
remove it from your resolve.conf file.


hope this helps

-- 

regards,
Georges Toth
-- 
gentoo-server@gentoo.org mailing list