[prev in list] [next in list] [prev in thread] [next in thread]
List: unbound-users
Subject: [Unbound-users] access-control
From: Andreas Schulze <andreas.schulze () datev ! de>
Date: 2013-01-29 13:56:17
Message-ID: 20130129135617.GA7927 () spider ! services ! datevnet ! de
[Download RAW message or body]
Hello again,
while reading the manpage not all questions are answer to me...
# man unbound.conf
access-control:
...
By default only localhost is allowed ...
I read it like "if you do not configure any access-control at all, then loc=
alhost is allowed,
all other addresses are refused"
Imagin this line:
access-control: 192.0.2.0/24
Is access still allowed from localhost while not explicit declared?
Yes, I tried and it looks so.
- This should be added to the documentation.
- in this example 193.0.2.0/24 *is* refused
but I have to write an explizit rule to *disallow* localhost
The manpage could be more precise here ...
Andreas
-- =
Andreas Schulze
Internetdienste | P252
DATEV eG
90329 N=FCrnberg | Telefon +49 911 319-0 | Telefax +49 911 319-3196
E-Mail info @datev.de | Internet www.datev.de
Sitz: 90429 N=FCrnberg, Paumgartnerstr. 6-14 | Registergericht N=FCrnberg, =
GenReg Nr.70
Vorstand
Prof. Dieter Kempf (Vorsitzender)
Dipl.-Kfm. Wolfgang Stegmann (stellvertretender Vorsitzender)
Dipl.-Kfm. Michael Leistenschneider
Dipl.-Kfm. Dr. Robert Mayr
J=F6rg Rabe v. Pappenheim
Dipl.-Vw. Eckhard Schwarzer
Vorsitzender des Aufsichtsrates: Reinhard Verholen
_______________________________________________
Unbound-users mailing list
Unbound-users@unbound.net
http://unbound.nlnetlabs.nl/mailman/listinfo/unbound-users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic