[RPZ] Which 'options' section does the RPZ config go in?
Paul Vixie
paul at redbarn.org
Fri Mar 29 22:21:53 UTC 2013
ixloran at sent.at wrote:
> From what I understand the zone provider you're using PUSHES the
> updates as master to your slave. I thought the "allow-transfer" is
> what's needed to allow/enable that push. No?
allow-transfer means "allow these addresses to transfer from me". it's
an ACL. where you transfer from is another matter, determined by the
"master" clause.
>> as cricket said, the rpz configuration elements belong in your recursive view.
>
> OK. If I were to ever turn on recursive for BOTH internal & external
> views, would the config go best in EACH recursive view at that point?
> Or can I put it in the global options stanza?
you can do either.
paul
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.redbarn.org/pipermail/dnsfirewalls/attachments/20130329/62b50faa/attachment.htm>
More information about the DNSfirewalls
mailing list