Hi.
I would like to have my bind9 DNS server to allow queries only from LAN or VPN. I now how to restrict it to LAN only. If I do that and connect with VPN to my local network I can not query the DNS because it denies querys from outside the local. DNS queries from VPN are shown in the logs as queries from outside the local network (the true IP is being used instead of local). I am connecting from many places to my home so it is not comfortable to add all networks to 'allowed' in DNS server configuration. The goal is to allow DNS queries from LAN and VPN and restrict queries from outside my LAN.
Do you have idea how to solve that? Is it possible?
Best regards, Dawid.
My named.conf:
Code:
options {
directory "/var/cache/bind";
// If there is a firewall between you and nameservers you want
// to talk to, you may need to fix the firewall to allow multiple
// ports to talk. See http://www.kb.cert.org/vuls/id/800113
// If your ISP provided one or more IP addresses for stable
// nameservers, you probably want to use them as forwarders.
// Uncomment the following block, and insert the addresses replacing
// the all-0's placeholder.
forwarders {
195.66.144.2;
217.17.34.10;
};
auth-nxdomain no; # conform to RFC1035
listen-on-v6 { any; };
listen-on {any;}; # DNS does not answer to queries from VPN if I restrict
# here to my LAN only
allow-query-cache {any;};
};
Bookmarks