[Pdns-dev] Re: BIND backend support for allow-query in named.conf (Was: Help with Bison parser for BIND named.conf (allow-query))

[Brendan Oakley]

Hi,

I've updated this patch, against the current svn, to fix some problems
with the original. It's running in production and working as expected.
It now returns SERVFAIL rather than NXDOMAIN for disallowed hosts, and
has better sanity checking. I posted more details on the ticket.

I am interested in seeing this included. It is a requirement on our
site because the same authoritative server hosts public domains as
well as private zone data we want to keep hidden to outside.

Thanks.
Brendan


On Fri, Oct 12, 2007 at 1:48 PM, Brendan Oakley  wrote:
> Hello,
>
> With all "ttl" settings set to 0 in pdns.conf, this patch is working
> well for me, so I have now attached it to ticket #166
> (http://wiki.powerdns.com/cgi-bin/trac.fcgi/ticket/166). I am open to
> criticism of how I did it, and willing to do more work to improve the
> implementation to make it worth of inclusion. I'm also curious whether
> I am the only one with a need for this feature.
>
> Unlike BIND, the replies are NXDOMAIN rather than NOAUTH, but that is
> acceptable for my purposes.