
Here are the patches to bind-4.9.3-REL to support 
the 'noforward' directive and instructions for
building and using a modified bind.

1.  You must '#define NOFORWARD' for the modifications 
to be enabled.  The best way to do this is to add it to 
conf/options.h, but you have to do that yourself, by hand.

2.  Apply the patches to the files in the 'named' sub-
directory.  The syntax should probably be:

  patch -i xxx.patch

3.  Move to the top level directory and run make.  After
it builds correctly, do a 'make install' or whatever
you need to do to get the modified 'named' executable
activated.

4.  Add one or more 'noforward' directives to named.boot
as required.  For instance, if you wanted to prevent
forwarding for domain 'nutsnbolts.com' (and everything
under it), add the following line to named.boot:

	noforward	nutsnbolts.com

You might also want to exclude address->name maps.  For
example, if nutsnbolts.com corresponds to network 
192.168.0.0, you might add the following:

	noforward	168.192.in-addr.arpa

Note that you can list multiple domains in a single
'noforward' directive:

	noforward	nutsnbolts.com 168.192.in-addr.arpa

5.  Restart your server to load the new config.

That's all there is to it (in a perfect world)!

Todd.Aven@BankersTrust.Com
8 January 1996
