What I did on my vacation from reality

Home About RTL8187B Laptop Cam Quotes Login

May 11, 2007

BIND9 stupidity

1:27 am — Code, Geek

After a few hours of playing with my BIND9 config, I finally figured out how to get it to accept queries from local nets, and give a REFUSED for others.

Maybe I’m doing something wrong, but this is what I got to work as I expected it to.

acl "known" {
  /*
  ** Wireless and wired clients.
  ** All known (xbox, ps2, etc.)
  */
  192.168.0.0/16;

  /* No comment */
  127.0.0.0/8;
};

acl "guests" {
  /*
  ** Wireless net 2, open
  */
  10.0.0.0/8;
};

view "known" {
  match-clients { known; guests; };

  /*
  ** Usual stuff goes here
  */
};

/* This chunk denies everyone else */
view "other" {
  match-clients { };
  allow-query { };
};



RSS feed | Trackback URI

Comments»

No comments yet.

Name (required)
E-mail (required - never shown publicly)
URI
Your Comment (smaller size | larger size)
You may use <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong> in your comment.