Sorry, I should have been clearer - I meant allow-query, allow-recursion,
allow-query-cache, etc. Those are all access control lists too.
ah. i misunderstood.
What I suspect is, in named.conf, you had something like this:
options {
[...]
allow-recursion { none; };
};
view internal {
[...]
allow-recursion { <addresses>; };
};
I still haven't seen your "options" settings (unless it was in an earlier
email that I missed), so I was asking about them just to make absolutely
sure that's what the problem was.
i may have ... 'up there', ^^^ :-/
in any case, on this instance ... indeed,
```
...
options {
...
allow-new-zones no;
allow-proxy {
"none";
};
allow-proxy-on {
"any";
};
allow-query-cache {
"none";
};
allow-query-cache-on {
"any";
};
allow-recursion {
"none";
};
allow-recursion-on {
"any";
};
...
allow-notify {
"none";
};
allow-query {
"none";
};
allow-query-on {
"any";
};
allow-transfer {
"none";
};
allow-update-forwarding {
"none";
};
...
};
...
```
We did find the inheritance bug because of your report
...
It's being tracked as https://gitlab.isc.org/isc-projects/bind9/-/issues/5647>
in our bug database, and a fix will be merged today.
thx for the link/fix o/
(and, by the way, thank you very much for testing the development verison!).
meson build ftw :-)
--
Visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from
this list.
