Manualshelf

DNS Configuration and Management Manual (G06.27+, H06.05+, J06.03+)

ManualsBrandsHP ManualsServerHP Integrity NonStop H-Series
51525354555657585960
DNS Configuration on the NonStop Server
HP DNS Configuration and Management Manual529432-003
3-14
Use ACLs
In Figure 3-7, the named.conf file is shown from the master server. Only the other
servers for the
animals.hp.com domain and the corresponding address domain
(
8.19.15.in-addr.arpa) are allowed to receive zone transfers. You would put the
same
allow-transfer option statement in the zone statements on the slave
servers.
Since the master only serves the
animals.hp.com and 8.19.15.in-addr.arpa
and the server list is the same for both domains, you could specify the
allow-
Figure 3-7. ACL Example: Restricting Zone Transfers
vst0025.vsd
master
server
/etc/named.conf
slave
server
slave
server
15.19.8.197
15.19.8.64
15.19.8.119
acl "DNS-SERVERS" {
15.19.8.119
15.19.8.197
15.19.8.64
zone "animals.hp.com: {
type master;
file "db.animals:;
allow-transfer {dns-servers; };
zone "8.19.15.in-addr.arpa" {
type master;
file "db.15.19.8";};
allow-transfer {dns-servers; };