[TriLUG] Restricting BIND to one address
Jeremy Katz
katzj at linuxpower.org
Tue Mar 4 16:29:58 EST 2003
On Tue, 2003-03-04 at 13:34, Scott Lundgren wrote:
> Can something similar be done with BIND? Similar setup one box, two NICs,
> two IPs, one internal network, one internet exposed. I have a simple
> caching-only nameserver for the internal network, and while port 53 is
> firewalled off on the external interface, I'd rather just not have BIND
> running on that external interface.
Sure, in /etc/named.conf, you want something like the following for the
options part of named.conf (this is a simple case -- the listen-on part
is the interesting bit for this question)
options {
directory "/var/named";
listen-on { 127.0.0.1; };
};
Cheers,
Jeremy
More information about the TriLUG
mailing list