Tag Archives: bind9

Configuring list-based querying permissions in bind9

In named.conf.options:

At the top (needs to be at the top, not the bottom), create your access lists:

acl “allowquery” {
    10.9.0.0/16;
    localhost;
};
acl “allowrecursion” {
    10.9.100.1/31;
    10.9.100.2/31;
    localhost;
};

 

Then your options section will look like this:

options {

    forwarders {
        10.0.0.1;
        10.0.0.2;
    };

    allow-query {
        allowquery;
    };

    allow-query-cache {
        allowquery;
    };

    allow-recursion {
        allowrecursion;
    };

    auth-nxdomain no;    #conform to RFC1035
    listen-on-v6 { any; };

};