[CentOS] BIND: listen-on and allow-recursion

Fri Jun 18 11:22:04 UTC 2010
Niki Kovacs <contact at kikinovak.net>


I'm currently trying to get a grasp on DNS and Bind. I admit the 
documentation is quite confusing, either too laconic or way too 
detailed. So I'm trying to start from a working example, and then bite 
my way through it.

I have a sample named.conf file from Carla Schroder's Linux Cookbook. In 
the opening global options, I have this :

listen-on {;;
allow-recursion {;;

As far as I understand, the purpose of these two stanzas is to limit 
access to the DNS server to 1) the server itself and 2) the local network. In that case, there seems to be some redundancy 
in the syntax. Correct me if I'm wrong.

Can someone please explain (in plain words) the exact meaning of these 
stanzas ?