a075 ACL Problem w/named.conf - The FreeBSD Forums
The FreeBSD Forums  

Go Back   The FreeBSD Forums > Server & Networking > Web & Network Services
Reload this Page ACL Problem w/named.conf
Register FAQ Calendar Search Today's Posts Mark Forums Read

Web & Network Services Discussion related to network/web services such as apache, bind, sendmail, etc.

Reply
 
Thread Tools Display Modes
  #1  
Old September 15th, 2012, 01:02
AlbyVA AlbyVA is offline
Junior Member
  
Join Date: Apr 2012
Posts: 48
Thanks: 4
Thanked 4 Times in 4 Posts
Default ACL Problem w/named.conf
In the example below is my zone setup in named.conf. When I have the
ACL's set with allow-query and allow-transfer to (internals/externals)
all my queries and zone transfers fail. When I change it to (any) everything
works.

Do you see anything wrong with my ACL setup? I'm using BIND 9.8


Code:
acl internals { 192.168.1.0/24; };
acl externals { 216.218.128.0/17; };

zone "XXXXX.org" {
        type master;
        file "/etc/namedb/master/XXXXX.org";
        allow-query { internals; externals; };
        allow-transfer { internals; externals; };
};
Reply With Quote
  #2  
Old September 15th, 2012, 04:44
chatwizrd chatwizrd is offline
Member
  
Join Date: Jul 2012
Posts: 145
Thanks: 7
Thanked 13 Times in 11 Posts
Default
Do you see any errors in /var/log/messages

http://www.zytrax.com/books/dns/ch7/acl.html
Reply With Quote
  #3  
Old September 16th, 2012, 01:14
AlbyVA AlbyVA is offline
Junior Member
  
Join Date: Apr 2012
Posts: 48
Thanks: 4
Thanked 4 Times in 4 Posts
Default
Quote:
Originally Posted by chatwizrd View Post
Do you see any errors in /var/log/messages

http://www.zytrax.com/books/dns/ch7/acl.html


Thank You. That link gave me the tip I was missing.
I just had my setup with the wrong format. Using this format resolved my issue.

Code:

acl allow {
        216.218.128.0/17;
};

zone "XXXXX.org" {
        type master;
        file "/etc/namedb/master/XXXXX.org";
        allow-query { localnets; allow; };
        allow-transfer { localnets; allow; };
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
[Solved] BIND 9 named.conf delegation problem ObiektywNy Web & Network Services 1 June 18th, 2012 17:23
where is the "listen-on { 192.249.249/24; }; };" line in named.conf file baronobeefdip Web & Network Services 19 July 5th, 2011 19:21
[Solved] Cannot start named also cannot find named.conf Amanat Web & Network Services 11 March 9th, 2010 17:19
Does FreeBSD's named.conf run without using "rndc"? aurora72 Web & Network Services 2 January 22nd, 2010 11:53
named problem cruzler Web & Network Services 6 July 29th, 2009 05:55


All times are GMT +1. The time now is 06:37.

Contact Us - FreeBSD - Archive - Top

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2013, vBulletin Solutions, Inc.
The mark FreeBSD is a registered trademark of The FreeBSD Foundation and is used by The FreeBSD Project with the permission of The FreeBSD Foundation.
Web protection and acceleration provided by CloudFlare
0