DNS Slave Zone Requests from the Internet Timing Out

Home Page Forums Network Management Networking DNS Slave Zone Requests from the Internet Timing Out

This topic contains 1 reply, has 0 voices, and was last updated by  derrick 4 years, 2 months ago.

Viewing 1 post (of 1 total)
  • Author
    Posts
  • #44130

    derrick
    Member

    Hi,

    I have some history concerning this topic posted in the Firewall, Traffic Shaping and Net Balancer forum:

    https://www.zeroshell.org/forum/viewtopic.php?p=13622#13622

    Slave zones have been setup on the Internet facing Zeroshell instance from a name server on the Intranet. Querying a slave zone on the name server from the local Intranet works. Making the same query from the Internet times-out.

    Originally I added 0.0.0.0/0 to DNS Clients, but this opens the instance up to a DNS Amplification attack (see post mentioned above). I tried adding query-allow{ 0.0.0.0/0;} to DNS Options but this did not work. It creates two query-allow entries in named.conf which results in:

    /tmp/named.conf:17: ‘allow-query’ redefined near ‘allow-query’

    Where do I go from here?

    Thank you!!

    -Derrick

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.