13.3. Limit Access to Domain Information
Generally there are two goals when trying to secure a DNS server: Limit information access to authorized users and limit the information authorized users can access. Of course, how DNS information is secured depends on the type of server that is being secured.
Regardless of whether you are trying to secure a caching or authoritative name server, a tool that can help this process is an ACL. ACLs are a statement within the named.conf file. An ACL can be applied universally, or to specific domains, depending on the administrator’s needs.
The process of using ACLs to protect routers was outlined in Chapter 4. Securing BIND using ACLs is very similar, with the difference being that with BIND there is no need ...
Get The Practice of Network Security: Deployment Strategies for Production Environments now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
