Allowing PTR queries only for specific subnets ?
George (Yorgos) Thessalonikefs
george at nlnetlabs.nl
Thu Jul 13 08:41:19 UTC 2023
Hi Nicolas,
The following configuration parts may result in what you need; I haven't
tested though:
server:
access-control-view: 10.1.0.0/16 allowptr
access-control-view: 0.0.0.0/0 disallowptr
view:
name: allowptr
view:
name: disallowptr
local-zone: in-addr.arpa. refuse
local-zone: ip6.arpa. refuse
Best regards,
-- Yorgos
On 13/07/2023 10:18, Nicolas Pillot via Unbound-users wrote:
> Hello
>
> Anyone would, by chance, have any insight on this subject ?
>
> We are currently looking at using iptables to filter the queries,
> and it is not the most elegant/future-proof/reliable way...
>
> It would be great if we could do the filtering in the application instead !
>
> Thanks in advance for your help
> Nicolas
More information about the Unbound-users
mailing list