Hi Gilles,
this question came up as well at a DNSSEC workshop I attended recently. IMHO
redirecting to a website will cause similar misuse to what wildcard records
have caused. One might argue a new RCODE would be the right thing but really,
the SERVFAIL is actually correct. The server at the
Torsten,
ws.mobilecdn.verisign.com. doesn't answer for me either.
It's supposed to be authoritatively hosted here:
mobilecdn.verisign.com. 900 IN NS dns1-auth.m-qube.com.
mobilecdn.verisign.com. 900 IN NS dns2-auth.m-qube.com.
But neither of them answer an iterative
Hi,
For whitelisting a set of domains via their netblocks to allow recursion FROM
them, the allow-recursion statement is your friend. For a filtering setup,
which I think is what you want to achieve, a web proxy is much more suitable.
An internal root would allow you to such things via DNS,
3 matches
Mail list logo
