Raymond_Feng_97
Sep 08, 2011Historic F5 Account
How to block DNS request according to one special domain list ?
Hi,
I am using LTM to LB cache DNS for one SP. By now , customer ask whether we can block the DNS request according to one special list? For example, they want to block :
block list {
*.youtube.com <----- one domain
www.a.com <--- one exactly hostname
*.tudou.com.cn
*.cn <---- one country
....
}
and , this type list may reach nearly 2000-3000 lines
so, I have two questions :
1> do we support dns request function in iRule on LTM now?
2> how to improve performance of the irule , if we need use matchclass to compare 2000 more lines ?
3> is there any good idea to compare this type mixed domain/hostname and even multi-level domain datagroup ?
Thanks.
Raymond