[Info] Global access control list in named.conf

Article ID: 1656 
Last Review: Oct,6 2008
Author: Oleg Beznosov APPLIES TO:
  • Plesk 8.1.0 for Windows
  • Plesk 8.1 for Windows
  • Plesk 8.1.1.2 for Windows
  • Plesk 8.2 for Windows

Symptoms

This article explains how to allow DNS transfers server-wide (for all domains) in Plesk.

Resolution

Administrator can use global access control list in named.conf.
To set up an ACL, the administrator should insert the values describing DNS slave servers (to which DNS transfers are allowed) into the Plesk database. It can be done using the query:

insert into misc (param,val) values ('DNS_Allow_Transfer1', '192.168.2.11/24');

For the next entry the parameter DNS_Allow_Transfer2 should be used and so on.

IP addresses of the slave hosts should be correctly specified with optional network mask in IP/mask format.

During the DNS reconfiguration the following snippet will be added to the named.conf:

acl common-allow-transfer {
                    xxx.xxx.xxx.xxx;
             };

with values extracted from the Plesk database with DNS_Allow_Transfer% or none parameter if  a value does not exist. Name of this acl will be added to the common-allow-transfer section of each DNS zone.

            zone "zone1.com" {
                     type master;
                     file "zone1.com";
                     allow-transfer {
                             common-allow-transfer;
                     };

             };



Subscription for this article changesSubscription for this article changes

Please provide feedback on this article

Did this article help you solve your issue?
Yes
No
Partially
I do not know yet
 
Strongly Agree   Strongly Disagree
  9 8 7 6 5 4 3 2 1
The article is easy to understand
The article is accurate
Additional Comments:
*Please provide us with your email address in case we need to contact you.
* - required fields