api:bindacl

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		 Previous revision
Last revisionBoth sides next revision
api:bindacl [2017-04-07T06:27:17Z] – created fuslapi:bindacl [2017-09-29T02:36:47Z] – Added missing semicolon rouben
Line 2: Line 2:
 Administrators running open Tier 1 and Tier 2 servers may wish to make use of the automatically-generated ACL file. This file is a BIND-formatted ACL which has listings for Tier 1 addresses, Tier 2 addresses, and whitelisted user IP addresses. Each list may be combined as desired to control access to your server. ACL lists have been supported since BIND 8.2.1. Administrators running open Tier 1 and Tier 2 servers may wish to make use of the automatically-generated ACL file. This file is a BIND-formatted ACL which has listings for Tier 1 addresses, Tier 2 addresses, and whitelisted user IP addresses. Each list may be combined as desired to control access to your server. ACL lists have been supported since BIND 8.2.1.
  
-If you are a Tier1 or Tier2 administrator and need access to this feature, please contact Shdwdrgn on the mailing list or IRC. Once you have access, you may log in to the [[https://web.archive.org/web/20160913110201/http://www.opennicproject.org/members/|members page]] and you will be shown a wget command with your username and a hash key for authentication:+If you are a Tier 1 or Tier 2 administrator and need access to this feature, please contact Shdwdrgn on the mailing list or IRC. Once you have access, you may log in to the [[https://web.archive.org/web/20160913110201/http://www.opennicproject.org/members/|members page]] and you will be shown a wget command with your username and a hash key for authentication:
   wget -qO- "https://api.opennicproject.org/acl/bind/?user=myUser&auth=myHash"   wget -qO- "https://api.opennicproject.org/acl/bind/?user=myUser&auth=myHash"
   curl "https://api.opennicproject.org/acl/bind/?user=myUser&auth=myHash"   curl "https://api.opennicproject.org/acl/bind/?user=myUser&auth=myHash"
Line 14: Line 14:
  
 Complete automation may be achieved by calling the following script as a cron job. It only updates when a new file is available, so you should check it at least every 1-5 minutes. Complete automation may be achieved by calling the following script as a cron job. It only updates when a new file is available, so you should check it at least every 1-5 minutes.
-  #!/bin/sh+  #!/bin/bash
      
   USER="myUserName"   USER="myUserName"
Line 24: Line 24:
  
 You will need to include this file in your named.conf configuration. Please note that you cannot put this in the options section of named.conf; if you do you will get an unknown option 'acl' error! Just place it anywhere outside of the named sections: You will need to include this file in your named.conf configuration. Please note that you cannot put this in the options section of named.conf; if you do you will get an unknown option 'acl' error! Just place it anywhere outside of the named sections:
-  include "/etc/bind/OpenNIC.acl"+  include "/etc/bind/OpenNIC.acl";
  
 To include these ACLs in BIND9, you could add something like the following to the appropriate named.conf or view: To include these ACLs in BIND9, you could add something like the following to the appropriate named.conf or view:
  • /wiki/data/pages/api/bindacl.txt
  • Last modified: 5 years ago
  • by fusl