Recursion without recursion to enable forward zones



I need to add a forward zone to an authoritative bind9 server, but forward zones don't appear to work with recursion disabled, and I don't want to turn this server into an open resolver.


Turn the server into an open resolver, but delete all of the root hints so it doesn't have anywhere to lookup from, and make sure you don't have forwarders specified under options {}

options {
    allow-recursion { ::/0;; };

zone ""  {
   type forward;
   forward only;
   forwarders {; };

zone "." {
        type hint;
        file "/dev/null";



Revision #1
Created 25 May 2023 23:50:35 by bluecrow76
Updated 25 May 2023 23:58:32 by bluecrow76