If it were me I'd just block access with iptables (and maybe blackhole as well if I were sufficiently concerned) and combine that with the iptables log action…
W On Jun 8, 2012, at 1:44 PM, <christopher.harring...@emc.com> wrote: > All, > > We have a list of DNS servers that we do not want our BIND DNS server > interacting with. We can put the IP addresses of those servers in the > blackhole substatement under options. Is there a way to monitor for when our > DNS server tries to communicate with servers that are in the blackhole list? > Is there a certain level of logging that needs to be enabled to see this? > > Thanks, > > --Chris > > _______________________________________________ > Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe > from this list > > bind-users mailing list > bind-users@lists.isc.org > https://lists.isc.org/mailman/listinfo/bind-users -- With Feudalism, it's your Count that votes. _______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
