限制 DNS 允許指定 ip 遞迴查詢 – 網絡技術日誌

限制 DNS 允許指定 ip 遞迴查詢

Posted on May 16th, 2006 Sam Tang 1 comment

在上一篇文章講到把 DNS Server 的遞迴查詢給關閉，另一個做法是限制只有指定 ip 的電腦可以做遞迴查詢，例如本機或內聯網，做法是打開 named.conf，在 "options" 段落加入:
allow-recursion { 192.168.1.0/100; 127.0.0.1; };
然後重新啟動 BIND，這樣 BIND 就只會允許 192.168.1.0 ~ 100 以及 127.0.0.1 的電腦遞迴查詢。

Linux / BSD 筆記
One response to “限制 DNS 允許指定 ip 遞迴查詢”
1. TY June 15th, 2006 at 18:01
  
  192.168.1.0/100 ? 最多到32吧 ?
Leave a reply

Name (required)

Mail (will not be published) (required)

Website

Anti-spam word: (Required)*
To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.

Categories

Random Posts

Recent Articles

Meta

Calendar

Links