diff options
| author |  Chris O'Haver <cohaver@infoblox.com>
| 2021-06-29 22:09:23 -0400 |
|---|---|---|
| committer |  GitHub <noreply@github.com>
| 2021-06-30 10:09:23 +0800 |
| commit | 97bb9d87e5228ab9baf37898563ef96d98408a63 (patch) | |
| tree | 9b65b537c5f898764e4f3aaa91e2e0a8d8ff7c34 /plugin | |
| parent | 9e90d6231e27bf81441edc94f4b6280998bd18ad (diff) | |
| download | coredns-97bb9d87e5228ab9baf37898563ef96d98408a63.tar.gz coredns-97bb9d87e5228ab9baf37898563ef96d98408a63.tar.zst coredns-97bb9d87e5228ab9baf37898563ef96d98408a63.zip | |
fix to docs; add acl example (#4711)
Signed-off-by: Chris O'Haver <cohaver@infoblox.com>
Diffstat (limited to 'plugin')
| -rw-r--r-- | plugin/transfer/README.md | 26 |
1 files changed, 23 insertions, 3 deletions
diff --git a/plugin/transfer/README.md b/plugin/transfer/README.md index 8924a1e79..a7c6dca7f 100644 --- a/plugin/transfer/README.md +++ b/plugin/transfer/README.md @@ -31,9 +31,29 @@ transfer [ZONE...] { `transfer.Transferer`. * `to` **ADDRESS...** The hosts *transfer* will transfer to. Use `*` to permit transfers to all - addresses. **ADDRESS** must be denoted in CIDR notation (e.g., 127.0.0.1/32) or just as plain - addresses. `to` may be specified multiple times. + addresses. Zone change notifications are sent to all **ADDRESS** that are an IP address or + an IP address and port e.g. `1.2.3.4`, `12:34::56`, `1.2.3.4:5300`, `[12:34::56]:5300`. + `to` may be specified multiple times. + +You can use the _acl_ plugin to further restrict hosts permitted to receive a zone transfer. +See example below. ## Examples -See the specific plugins using this plugin for examples on it's usage. +Use in conjuction with the _acl_ plugin to restrict access to subnet 10.1.0.0/16. + +``` +... + acl { + allow type AXFR net 10.1.0.0/16 + allow type IXFR net 10.1.0.0/16 + block type AXFR net * + block type IXFR net * + } + transfer { + to * + } +... +``` + +Each plugin that can use _transfer_ includes an example of use in their respective documentation.
\ No newline at end of file |