Allow some DNS queries and block the rest

Question

Hello,&nbsp;
I want and irule to just allow some DNS queries and block the rest.&nbsp;
I was trying with this that blocks some dns request and permit the rest&nbsp;
when DNS_REQUEST {
    switch -glob [string tolower [DNS::question name]] {
        "*.google.com" -
        "google.com"  {
            DNS::header rcode NXDOMAIN
            DNS::return
       } 
     } 
}&nbsp;
But I can not negate it and make it works in the other way.&nbsp;
Any idea how I could do this?&nbsp;
Thanks in advanced&nbsp;

surgeon · Answer

what do you mean by saying "make it works in the other way"?&nbsp;

stanislas_piro2 · Answer

In switch command, do nothing in conditions you want to allow and block in default condition
when DNS_REQUEST {
    switch -glob [string tolower [DNS::question name]]  {         
        "*.google.com" -        
        "google.com" {        
              do nothing       
        }        
        default {        
            DNS::header rcode NXDOMAIN             
            DNS::return             
        }            
    } 
}

Forum Discussion

Allow some DNS queries and block the rest

Recent Discussions

APM RDP custom parameters

Reporting Help Needed

Switch ssl profile based on weak cipher detection via IRULE

F5 looses the token for the first call

iRule for public IP access to specific section of my URL

Related Content

iRule - Block part of a query

Pool downtime query

iRuleLX Solution for OAUTH JWT authenticated Salesforce Query

iRule Processing query

Block IP after a number of ASM Blocks

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS