I came across solutions for blocking selected DNS resolutions by creating block zones. But how would I allow certain sites only and blocking all others in BIND?
Asked
Active
Viewed 1,904 times
1 Answers
2
Just configure BIND so that it doesn't allow recursive resolution and create explicit forward zones for the domains that you want to permit querying.
On a side note, if you're attempting to use this as a means of restricting access, it's a terrible method that can be trivially bypassed either by clients simply specifying alternative DNS servers (although you could potentially block this too) or by adding manual entries for DNS names on the local machine.
Olipro
- 3,147