The Allow Zone Transfer deployment option can be set at the following levels:
- Configuration
- Server group
- Server
- View
- Zone
- IP block
- IP network
To configure the Allow zone transfer option:
- Navigate to the appropriate level at which you want to allow zone transfers.
- Select the Deployment Options tab.
- Select New > DNS option.
-
Under General, configure the following parameters:
- Name—select Allow Zone Transfer.
- Type—select one of the following options:
- IP address/Network—allows zone transfer based on IPv4 or IPv6 blocks or individual IP addresses. When you select this option, the Data field is displayed, where you must enter the IPv4 or IPv6 address or block, then select the add (+) icon..
- TSIG key—allows zone transfer based on a TSIG key. When you select this option, the TSIG key drop-down menu is displayed, where you must select one or more TSIG keys, then select the add (+) icon..
- ACL—allows zone transfer to configured ACLs. When you select this option, the ACL drop-down menu is displayed, where you must select one or more ACLs, then select the add (+) icon..
- Exclude—select this checkbox to add an exclusion to an IP address/Network, DNS ACL, or TSIG key.
-
(Not applicable to server and server group levels) Under Servers,
select the servers to which the option will apply:
- All servers—applies the deployment option to all servers in the configuration.
- Server group—applies the deployment option to a specific server group in the configuration. Select a server group from the drop-down menu.
- Server—applies the deployment option to a specific server in the configuration. Select a server from the drop-down menu.
Note: The Allow Zone Transfers deployment option should be set on the Primary. - Under Change control, add comments, if required.
- Select Create to configure the Allow zone transfer option and return to the Deployment options tab, or select Create and add another to configure the Allow zone transfer option and re-open the Create DNS option window.