Open DNS how to close it??

[TheDon]

Hi

After doing a dns report and dnsstuff one thing that sticks out in a nice read colour is the fact that I have a open DNS. The advice is too close this.

How would I go about doing this? I have read I need to edit named.conf but I also noticed when looking in this file it auto generated by install of bind-9.2.4-2

So my question is what do I need to place in this file to have a closed DNS?
By closing it will everything run ok still (the sites)
Also if it is generated by install of bind-9.2.4-2 does this happen everytime I add a new domain to the server and if so then wont any changes made to the file be lost?

Thanks in advance to any help.

/Lee

 

[pkilam]

http://www.directadmin.com/forum/showthread.php?t=24866


At the top of the named.conf file, there is a section called options

Just put the line stated in the thread inside the options section, then restart named

options {
xxxxx
recursion no;
xxxx
}

You only need to do this one time.

 

[TheDon]

http://www.directadmin.com/forum/showthread.php?t=24866

Thanks that did the trick

I added the following which was in that thread you linked too and now dnsstuff reports it closed and everything seems to be ok. Now just too do it with the other 3 servers.

You can turn off recursive query by adding the following to the options section of /etc/named.conf

recursion no;

It is also a good idea to not to return the bind version using:

version "null";

The site you want may be:

 

[nobaloney]

If you turn off recursion in your local nameserver then you must make sure that your local IP# (127.0.0.1 or y our real IP#) isn't in your /etc/resolv.conf file, but rather two external recursive nameserver.

Jeff