For public DNS servers it is often desirable to disable recursive name resolution. This can be accomplished by adding:
1 |
recursion no; |
to the “options” section of the /etc/named.conf file.
Alternately you might want to only allow recursion for a limited range of addresses. This can be accomplished by instead adding a line like this:
1 |
allow-recursion { 127.0.0.1/24; }; |
to the “options” section of the /etc/named.conf file.