Download Safari Books Online apps: Apple iOS | Android

Entire Site

Safari Books Online

    Free Trial

    Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.


    • Create BookmarkCreate Bookmark
    • Create Note or TagCreate Note or Tag
    • DownloadDownload
    • PrintPrint
    Share this Page URL
    Help

    Chapter 2. Active Directory and DNS > Secure Zone Transfers

    Secure Zone Transfers

    If you are using DNS servers running BIND 9 or higher, you can specify that zone transfers be digitally signed. This feature enables secondary DNS servers to verify that zone transfers are being received from a trusted source.

    As already discussed, you cannot limit the scope of zone transfer when using Active Directory–integrated zones. If you are concerned about zone data passing through an unsecured network segment, you can use a security mechanism such as IP Security (IPSec) to provide secure zone transfer.


      

    You are currently reading a PREVIEW of this book.

                                                                                            

    Get instant access to over
    $1 million worth of books and videos.

      

    Start a Free Trial