HP-UX IP Address and Client Management Administrator's Guide HP-UX 11i v2, HP-UX 11i v3

The /etc/named.conf Statements

The following statements are supported in the /etc/named.conf file:

• The acl Statement

• The include Statement

• The key Statement

• The logging Statement

• The options Statement

• The server Statement

• The zone Statement

• The view Statement

• The sortlist Statement

The acl Statement

The acl statement gets its name from the primary use of address match lists, that is, Access

Control Lists (ACLs). The acl statement in the /etc/named.conf file is typically used to define

a named IP address matching list, for the purpose of access control. This statement is typically

used inside a zone statement.

The acl statement is of the following format:

acl name {address_match_list};

Before using the address match list, you must define it with the acl statement because forward

references are not allowed.

The following ACLs are predefined:

• any – Allows all hosts.

• none – Denies all hosts.

• localhost – Allows the IP addresses of all interfaces on the system.

• localnets – Allows any host on a network for which the system has an interface.

An example acl statement is as follows:

acl can_query

{1.2.3; any;};

The acl statement can_query allows queries from any host in the 1.2.3 network.

The include Statement

The include statement in /etc/named.conf inserts the specified file at the particular location

where the include statement is encountered in the configuration file. You can use this statement

to break the configuration file into easily manageable groups.

The include statement is of the following format:

include path_name;

An example include statement is as follows:

include /etc/security/keys.bind;

include /etc/acls.bind;

26 Overview