Running BIND 9.10.1-P1, I am trying to use the new 'in-view' option.
Here is a digest of the configuration:
acl "clients-internes" {
list_of_inside_addresses;
};
view "interne" {
match-clients { clients-internes; };
recursion yes;
allow-query { clients-internes; }
Alain Fontaine wrote:
> view "interne" {
> match-clients { clients-internes; };
> allow-query { clients-internes; };
> zone testzone.net {
> type slave;
> file "slave.int/net.testzone";
> masters { address_of_master; };
> };
> };
>
Le 19 janv. 2015 à 16:33, Tony Finch a écrit :
> Does it work if you set allow-query { any; }; in the testzone.net clause
> in the interne view?
>
> My guess is that the zone is inheriting the allow-query acl from its
> parent view, and keeping that acl when it is shared by the externe view.
>Fr
Alain Fontaine wrote:
> Le 19 janv. 2015 à 16:33, Tony Finch a écrit :
>
> > Does it work if you set allow-query { any; }; in the testzone.net clause
> > in the interne view?
>
> From the ARM:
>
> A zone statement which uses the in-view option may not use any other
> options with the exception of
Le 20 janv. 2015 à 10:21, Tony Finch a écrit :
> Alain Fontaine wrote:
>> Le 19 janv. 2015 à 16:33, Tony Finch a écrit :
>>
>>> Does it work if you set allow-query { any; }; in the testzone.net clause
>>> in the interne view?
>>
>> From the ARM:
>>
>> A zone statement which uses the in-view op
Alain Fontaine wrote:
>
> Thank you for your help, and for your patience in dealing with my bad
> reading of your first suggestion.
No problem, glad you got it working!
Tony.
--
f.anthony.n.finchhttp://dotat.at/
Viking: Southeasterly 5 to 7, perhaps gale 8 later. Moderate or rough,
occasion
6 matches
Mail list logo
