linux

Requests in bind9 for a specific network and records for a domain in zones?

How to allow recursive requests only for the /24 network, if ip 10.0.1.234 appears everywhere in the zones? It is also necessary to add a TXT record with the SPF policy, according to which the only server specified in MX is the trusted sender of mail for the test.locanet domain, the policy type is strict. Tried to do something like test.localnet IN TXT "v=spf1 +mx -all"". but after making the entry and checking it with the host -t txt command, it did not appear. And for cname.test.locanet there must be a CNAME record leading to test.locanet.

;
; BIND data file for test.localnet.
;
$TTL 3h
@ IN SOA ns1.test.localnet. test.localnet. (
1 ; serial number
3h ; update every 3 hours
1h ; try again in one hour
1w; expiration date - 1 week
1h ) ; bounce cache storage 1 hour;
@ IN NS ns1.test.localnet.
@ IN NS ns2.test.localnet.

test.localnet. IN MX 10 mail.test.localnet.
test.localnet. IN A 10.0.1.234
ns1 IN A 10.0.1.234
ns2 IN A 10.0.1.234
www IN CNAME test.localnet.
cname IN CNAME test.localnet.
mail IN A 10.0.1.234