projects / sysconfig / bind.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: d356d0a)
Update transfer/notify config
authorAlex Dehnert <adehnert@mit.edu>
Wed, 19 Dec 2018 05:34:28 +0000 (00:34 -0500)
committerAlex Dehnert <adehnert@mit.edu>
Wed, 19 Dec 2018 05:34:28 +0000 (00:34 -0500)
- Add charon4 to the set of allowed transferers
- Use a named ACL, rather than listing the full set twice
- Comment the different allowed IPs with what they are
- Enable notifications (or at least don't explicitly disable them) so changes
  propagate faster

named.conf.local patch | blob | history

diff --git a/named.conf.local b/named.conf.local
index b05b5d64b814b47e82393057d6be19d48f2ff935..99249f61ee3ec3ea9f756e0951a9dee1ef374216 100644 (file)
--- a/named.conf.local
+++ b/named.conf.local
@@ -12,21 +12,31 @@
 #        notify no;
 #};
 
+acl "transfer-allowed" {
+       localhost;
+       207.29.250.54;  // ???
+       18.4.60.36;     // charon
+       18.49.3.1;      // charon4
+       74.207.246.137; // arctic
+       66.92.29.156;   // copan
+       18.102.208.15;  // olinda
+};
+
 zone "dehnert.arctic.org" IN {
        type master;
        file "/etc/bind/pri/combined-dehnerts.zone";
        allow-update { none; };
-       allow-transfer { localhost;  207.29.250.54; 18.4.60.36; 74.207.246.137; 66.92.29.156; 18.102.208.15; };
+       allow-transfer { "transfer-allowed"; };
        allow-query { any; };
-       notify no;
+       //notify no;
 };
 zone "dehnerts.com" IN {
        type master;
        file "/etc/bind/pri/combined-dehnerts.zone";
        allow-update { none; };
-       allow-transfer { localhost;  207.29.250.54; 18.4.60.36; 74.207.246.137; 66.92.29.156; 18.102.208.15; };
+       allow-transfer { "transfer-allowed"; };
        allow-query { any; };
-       notify no;
+       //notify no;
 };
 
 logging {