[phpBB Debug] PHP Notice: in file /includes/db/dbal.php on line 110: Undefined array key "cached"
[phpBB Debug] PHP Notice: in file /includes/db/dbal.php on line 111: Undefined array key "normal"
[phpBB Debug] PHP Notice: in file /includes/db/dbal.php on line 112: Undefined array key "total"
[phpBB Debug] PHP Notice: in file /includes/session.php on line 885: Cannot modify header information - headers already sent by (output started at /includes/functions.php:2922)
[phpBB Debug] PHP Notice: in file /includes/session.php on line 885: Cannot modify header information - headers already sent by (output started at /includes/functions.php:2922)
[phpBB Debug] PHP Notice: in file /includes/session.php on line 885: Cannot modify header information - headers already sent by (output started at /includes/functions.php:2922)
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3391: Cannot modify header information - headers already sent by (output started at /includes/functions.php:2922)
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3393: Cannot modify header information - headers already sent by (output started at /includes/functions.php:2922)
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3394: Cannot modify header information - headers already sent by (output started at /includes/functions.php:2922)
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3395: Cannot modify header information - headers already sent by (output started at /includes/functions.php:2922)
Cabrillo College Linux Classes • View topic - DNS w/o disabling firewall & selinux

DNS w/o disabling firewall & selinux

UNIX/Linux Network Administration

DNS w/o disabling firewall & selinux

Postby Wesley Jessup on Sat May 23, 2009 10:54 pm

On master, along w/ opening udp port 53, open tcp port 53 for zone transfer.
In slave's named.conf, locate zone transfer to slaves directory. SELinux only allows named to write to the data and slaves directory.

Ex.
-A RH-Firewall-1-INPUT -m state --state NEW -m udp -p udp --dport 53 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 53 -j ACCEPT

zone "rivendell" {
type slave;
file "slaves/db.rivendell";
masters { 192.168.2.107; };
};

Seem to work,
-Wes
Wesley Jessup
 
Posts: 40
Joined: Wed Sep 03, 2008 7:29 pm

Return to CIS 192 - Spring 2009

Who is online

Users browsing this forum: No registered users and 0 guests

cron