From 8c5b664a03983edf168b89477ed498bbddfee34c Mon Sep 17 00:00:00 2001
From: Kevin Fenzi <kevin@scrye.com>
Date: Tue, 27 May 2025 17:20:31 -0700
Subject: [PATCH] dns: do not match all of 10.x.x.x or first one wins

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
---
 roles/dns/files/named.conf | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/roles/dns/files/named.conf b/roles/dns/files/named.conf
index 0a42ed371e..8fd6d9f112 100644
--- a/roles/dns/files/named.conf
+++ b/roles/dns/files/named.conf
@@ -95,8 +95,8 @@ controls {
 };
 
 view "IAD2" {
-     match-clients { iad2net; rh-slaves; 192.168.0.0/16; rh; };
-     allow-recursion { localhost; iad2net; rh-slaves; rh; };
+     match-clients { iad2net; rh-slaves; 192.168.0.0/16; };
+     allow-recursion { localhost; iad2net; rh-slaves; };
      recursion yes;
      // no rate-limit on internal requests
      rate-limit {
@@ -549,8 +549,8 @@ view "RDU2" {
 };
 
 view "RDU3" {
-     match-clients { rdu3net; rh-slaves; 192.168.0.0/16; rh; };
-     allow-recursion { localhost; rdu3net; rh-slaves; rh; };
+     match-clients { rdu3net; rh-slaves; 192.168.0.0/16; };
+     allow-recursion { localhost; rdu3net; rh-slaves; };
      recursion yes;
      // no rate-limit on internal requests
      rate-limit {