Can we use rndc addzone to add zone in rpz configuration?

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

Can we use rndc addzone to add zone in rpz configuration?

blason16
Hi,

Keen to know if rndc addzone functionality can be used to add zones in bind serving response-policy? If so then what would be my view? Do I need to define my view to make it work?

I tried this and its failing hence wondering if rndc can be used to add zone or delete zone on the fly?

Here is my config

******************************
options {
        version "xxxxx";
        allow-query     { localhost;subnets; };
        directory "/var/cache/bind";
        recursion yes;
        allow-new-zones yes;
        querylog yes;
        forwarders {
                9.9.9.9
         };
//      dnssec-validation auto;
        request-ixfr yes;
        auth-nxdomain no;    # conform to RFC1035
//      listen-on-v6 { any; };
        listen-on port 53 { any; };
        response-policy { zone "whitlist.allow" policy passthru;
                        zone "immediate.block";
                        zone "malware.trap";
                        zone "block.tld";
                        zone "cryptojack.block";
                        zone "ransomwareips.block";  };
};

And I wanted to add lets say porn.block zone

_______________________________________________
Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list

ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information.


bind-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/bind-users