Difference between revisions of "Disabling IPv6 lookups in bind"

From Notes_Wiki
(Created page with "<yambe:breadcrumb>Bind_DNS_server_configuration|Bind DNS</yambe:breadcrumb> =Disabling IPv6 lookups in bind= Just disabling bind to listen on IPv6 addresses does not prevents...")
 
m
 
(5 intermediate revisions by the same user not shown)
Line 1: Line 1:
<yambe:breadcrumb>Bind_DNS_server_configuration|Bind DNS</yambe:breadcrumb>
[[Main Page|Home]] > [[CentOS]] > [[CentOS 6.x]] > [[Bind DNS server configuration]] > [[Disabling IPv6 lookups in bind]]
=Disabling IPv6 lookups in bind=


Just disabling bind to listen on IPv6 addresses does not prevents it from querying for IPv6 addresses to remote hosts.  To ensure that IPv6 is completely disabled use:
Just disabling bind to listen on IPv6 addresses does not prevents it from querying for IPv6 addresses to remote hosts.  To ensure that IPv6 is completely disabled use:
Line 7: Line 6:
#::OPTIONS="-4"
#::OPTIONS="-4"
#:</pre>
#:</pre>
#Use '<tt>service named restart</tt>'
#Edit '/etc/named.conf' and set
#:<pre>
#::filter-aaaa-on-v4 yes;
#:</pre>
#:Also optionally comment '<tt>listen-on-v6 port 53 { ::1; };</tt>'
#Finally use '<tt>service named restart</tt>'
 
 
Some of this has been learned from https://kb.isc.org/article/AA-00576/0/Filter-AAAA-option-in-BIND-9-.html
 
 
==Related youtube video==
 
<youtube>UwiNtMsdo1Y</youtube>
 
 
More videos related to this wiki are available at youtube channel https://www.youtube.com/channel/UCk8GVLah-TL2TrLlHVPgFKw
 
 
 


Note that it is still good to disable bind on listening on IPv6 addresses by commenting
[[Main Page|Home]] > [[CentOS]] > [[CentOS 6.x]] > [[Bind DNS server configuration]] > [[Disabling IPv6 lookups in bind]]
<pre>
//listen-on-v6 port 53 { ::1; };
</pre>

Latest revision as of 08:31, 10 March 2022

Home > CentOS > CentOS 6.x > Bind DNS server configuration > Disabling IPv6 lookups in bind

Just disabling bind to listen on IPv6 addresses does not prevents it from querying for IPv6 addresses to remote hosts. To ensure that IPv6 is completely disabled use:

  1. Edit /etc/sysconfig/named and set
    OPTIONS="-4"
  2. Edit '/etc/named.conf' and set
    filter-aaaa-on-v4 yes;
    Also optionally comment 'listen-on-v6 port 53 { ::1; };'
  3. Finally use 'service named restart'


Some of this has been learned from https://kb.isc.org/article/AA-00576/0/Filter-AAAA-option-in-BIND-9-.html


Related youtube video


More videos related to this wiki are available at youtube channel https://www.youtube.com/channel/UCk8GVLah-TL2TrLlHVPgFKw



Home > CentOS > CentOS 6.x > Bind DNS server configuration > Disabling IPv6 lookups in bind