AFM DNS Lookup Process

Question

Hi, &nbsp;
I'm looking for an answer to what I assume is a fairly simple question, however I can't seem to find the answer. &nbsp;
We are using the AFM module and would like to use DNS names in the rules that we create. &nbsp;
What I want to know is, what is the retry timer on failed DNS lookups, for example. If I create a rule using a DNS hostname that does not resolve, how long will it take for the F5 to retry that DNS name to see if there is a valid entry. &nbsp;
The reasoning behind this is we are migrating servers behind the F5 and I would like to add the firewalling before the IP allocation for the servers has been complete, and I want to know that the firewall rules will start working once the server has been given it's new name/ip address. &nbsp;
Thanks&nbsp;

richard_karon · Answer

https://support.f5.com/csp/article/K47726919&nbsp;

Forum Discussion

AFM DNS Lookup Process

Recent Discussions

LTM Rule, iRule, or Brute Force Configuration to Limit URL Access

F5 LTM listening on 3306

SNI Sites not taking correct certificate.

How to implement LTM forward proxy client to determine the diversion pool based on the domain name

irule to enable http/2 acceleration

Related Content

SNI Routing with DNS Lookup

Protecting the F5 BIG-IP AFM system with AFM Protocol Inspection System Checks

Enriching AFM with public domain Threat Intelligence

Traffic Intelligence in AFM through Categories

Traffic Intelligence in AFM

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS