Forum Discussion

Nimbostratus

Aug 16, 2017

Configure RPZ to walled-garden query to forbidden domain

Hi all,

I've implement "transparent DNS cache" and RPZ to walled-garden if user query to forbidden domain (example pron domain). We use bind server as zone master (list of forbidden domain) and f5 as secondary zone.

The problem, if we want to walled-garden xxx.com and we need add that two domain at list of forbidden domain. is any solution so we only list one domain (example xxx.com) and DNS cache can walled-garden query to xxx.com and domain?

Kind Regards,

arya

application delivery

BIG-IP DNS

Yann_Desmarest_
Aug 17, 2017
Hi,

you can do it by using an irule on DNS events ro catch xxx.com and all subdomains

Yann_Desmarest_
Nacreous
Aug 17, 2017
Hi,

you can do it by using an irule on DNS events ro catch xxx.com and all subdomains
- arya_wae_6493
  Nimbostratus
  Aug 18, 2017
  Hi,
  
  Thanks for answering. But I do not want to use iRules, because it will break HW acceleration. So, any solution without iRules?
Yann_Desmarest
Cirrus
Aug 17, 2017
Hi,

you can do it by using an irule on DNS events ro catch xxx.com and all subdomains
- arya_wae_6493
  Nimbostratus
  Aug 18, 2017
  Hi,
  
  Thanks for answering. But I do not want to use iRules, because it will break HW acceleration. So, any solution without iRules?

Forum Discussion

Configure RPZ to walled-garden query to forbidden domain

Recent Discussions

Help with Migrating Netscaler Rewrite Policy to F5 LTM

Need to change HTML tag in HTTP response

Rewriting Location Header in iRule

Outlook application issue

Why does WAF block HTTP OPTION method

Related Content

How to change ACL forbidden page?

iRules for 403 forbidden error

Multiple Ways to Configure Usage Reporting in NGINX

Configuring BIG-IP for Zone Transfer and DNSSEC

Certificate Expiry Email alert configuration