Open resolver: Difference between revisions
From ICO wiki
Jump to navigationJump to search
| Line 5: | Line 5: | ||
* Ubuntu Bind9 konfigureerimine [https://help.ubuntu.com/community/BIND9ServerHowto] | * Ubuntu Bind9 konfigureerimine [https://help.ubuntu.com/community/BIND9ServerHowto] | ||
* konfinäide: [http://jazzymarketing.com/main/0904/open-resolver-securing-bind-server] | * konfinäide: [http://jazzymarketing.com/main/0904/open-resolver-securing-bind-server] | ||
* Openresolver [http://dns.measurement-factory.com/surveys/openresolvers.html] | |||
=Bind9 konfigureerimine= | =Bind9 konfigureerimine= | ||
Revision as of 19:25, 12 March 2011
Teema võetud - Peep Binsol, Rene Vahtel
Sissejuhatus
Lingid
Bind9 konfigureerimine
name.conf.options näitefail
acl me {192.168.7.0/24;};
options {
directory "/var/cache/bind";
forwarders {
8.8.8.8;
8.8.4.4;
};
allow-recursion { me; };
allow-query { me; };
allow-transfer { me; };
auth-nxdomain no; # conform to RFC1035
listen-on-v6 { any; };
};
- acl - access control list, nimekiri võrkudest või ip aadressidest
- allow-recursion - kas päringud on lubatud "forwarders" nimeserveritesse
- allow-query - kas päringud on lubatud
- allow-transafer - kas tsooni transfer on lubatud
Open resolver test
- Käsurealt küsimine kasutades dig programmi:
Kontrollime nimeserverit 193.40.254.227
dig +short 227.254.40.193.dnsbl.openresolvers.org
