Is it possible to block bind to answer to queries type "any"?

Asked May 28 '20 at 19:04

Active May 28 '20 at 19:04

Viewed 23 times

I wanted to know if it was possible, like cloudflare is doing, to make bind deny any answer to queries from the type "any" like in dig google.com any

asked May 28 '20 at 19:04

vigilian

1

Maybe I m not sure but I m going to try soon then. Thanks for that because the title was not clear to me – vigilian May 28 '20 at 19:25
You have other ideas in this question: https://serverfault.com/questions/744613/block-any-request-in-bind – Patrick Mevzek Jun 01 '20 at 00:54
If you can filter on the name requested and/or source IP, then you could use bind RPZ feature. But it does not allow to filter on the QTYPE. You can also look towards RRL to limit the trafic. – Patrick Mevzek Jun 01 '20 at 01:00

Is it possible to block bind to answer to queries type "any"?

0 Answers0