nanog mailing list archives

Re: The "not long discussion" thread....

From: Steve Sobol <sjsobol () JustThe net>
Date: Tue, 26 Apr 2005 17:59:55 -0700


Jerry Pasker wrote:

Steve Sobol replied with:
I'm not going to enter into a long discussion with you. :)

I'm just curious why you didn't restrict AXFR to certain IPs instead.
And I'm posting back to NANOG:

I did.
And I had router ACLs doing the same thing. Allow to hosts that neededit, deny for everyone else. And I did this to ALL my DNS servers.


What were the router ACLs doing that the DNS server ACLs weren't/couldn't?



--
JustThe.net - Apple Valley, CA - http://JustThe.net/ - 888.480.4NET (4638)
Steven J. Sobol, Geek In Charge / sjsobol () JustThe net / PGP: 0xE3AE35ED

"The wisdom of a fool won't set you free"
    --New Order, "Bizarre Love Triangle"

Current thread:

Re: Problems with NS*.worldnic.com, (continued)
- - Re: Problems with NS*.worldnic.com Rodney Joffe (Apr 25)
    - Re: Problems with NS*.worldnic.com Suresh Ramasubramanian (Apr 25)
    - Re: Problems with NS*.worldnic.com Kevin Loch (Apr 26)
    - Re: Problems with NS*.worldnic.com Valdis . Kletnieks (Apr 25)
    - Re: Problems with NS*.worldnic.com Randy Bush (Apr 25)
    - Re: Problems with NS*.worldnic.com william(at)elan.net (Apr 25)
    - Re: Problems with NS*.worldnic.com Valdis . Kletnieks (Apr 26)
    - Re: Problems with NS*.worldnic.com Edward Lewis (Apr 26)
  - Re: Problems with NS*.worldnic.com Jerry Pasker (Apr 25)
    - Message not available
    - The "not long discussion" thread.... Jerry Pasker (Apr 26)
    - Re: The "not long discussion" thread.... Steve Sobol (Apr 26)
    - Re: The "not long discussion" thread.... Christopher L. Morrow (Apr 26)
    - Re: The "not long discussion" thread.... Jerry Pasker (Apr 27)
    - Re: The "not long discussion" thread.... Christopher L. Morrow (Apr 27)
- RE: Problems with NS*.worldnic.com Graeme Clark (Apr 25)
  - RE: Problems with NS*.worldnic.com Christopher L. Morrow (Apr 25)
  - Re: Problems with NS*.worldnic.com Simon Waters (Apr 26)
    - Re: Problems with NS*.worldnic.com Christopher L. Morrow (Apr 26)
    - Re: Problems with NS*.worldnic.com Randy Bush (Apr 26)
    - Re: Problems with NS*.worldnic.com Peter Corlett (Apr 26)
    - Re: Problems with NS*.worldnic.com Christopher L. Morrow (Apr 26)

(Thread continues...)