The power of default configurations

• Previous message (by thread): The power of default configurations
• Next message (by thread): The power of default configurations
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

* Sean Donelan:

> On Mon, 4 Apr 2005, Paul Vixie wrote:
>> adding more.  oh and as long as you're considering whether to restrict
>> things to your LAN/campus/ISP, i'm ready to see rfc1918 filters deployed...
>
> Why does BIND forward lookups for RFC1918 addresses by default?

I think Paul complained about DNS queries with source addresses from
RFC 1918 space.  It's hard to stop this without using connected UDP
sockets.

> Why isn't the default not to forward RFC1918 addresses (and martian
> addresses).

Is the fraction of PTR lookups for RFC 1918 space really that high?

> If a sysadmin is using BIND in a local network which uses RFC1918
> address, those sysdmins can change their configuration?

They already have to, otherwise the queries won't hit their
authoritative servers.

• Previous message (by thread): The power of default configurations
• Next message (by thread): The power of default configurations
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]