[LPIC-2]Volume 44

Which of these ways can be used to only allow access to a DNS server from specified networks/hosts?

A. Using the limit{...;}; statement in the named configuration file.
B. Using the allow-query{...;}; statement in the named configuration file.
C. Using the answer only{...;}; statement in the named configuration file.
D. Using the answer{...;}; statement in the named configuration file.
E. Using the query access{...;}; statement in the named configuration file.

題解

「named.conf」設定檔中，可以在「options」區塊內使用「allow-query」來指定允許存取這台DNS伺服器的主機或是網路。例如：

options { 
    allow-query { 192.168.100.0/24; 168.95.162.1/32; 168.95.100.1/32; };
};

也可以使用「acl」替一個或多個主機與網路定義一個名稱。例如：

options {
    acl internals { 192.168.10.0/24; };
    allow-query { 192.168.100.0/24; 168.95.162.1/32; 168.95.100.1/32; internals; };
};