RE: blockhole'd IP receiving referral?

allow-recursion { internaldns; externaldns; }; blackhole { blackhats; }; Works for me. The acls internaldns and externaldns are specific networks/IPs we allow to do recursion. (Everyone can do lookups for domains for which we are authoritative but not recursion.) The acl blackhats is

Re: blockhole'd IP receiving referral?

Hello, Chris, I believe you are correct. That is, blackhole applies to the sending of queries in addition to the receiving of queries. Let me explain. I discovered this the hard way. I had a /24 in the blackhole because it contained abusive clients. Within this /24 sat two legitimate