Forum Discussion

Jon_Ole_Nome_46's avatar
Jon_Ole_Nome_46
Icon for Nimbostratus rankNimbostratus
Aug 19, 2013

Multi-homed GTM, how to restrict internal/external DNS queries

I have a set of GTMs with 2 active interfaces - 1 DMZ, 1 internal. I also have 2 subdomains allocated to the GTMs, one for internal Wide IPs and one for external Wide IPs. I want to set it up to only...
application delivery
cloud
deployment
design
devops
iRules
security
Chad_83686's avatar
Chad_83686
Icon for Nimbostratus rankNimbostratus
Oct 04, 2013

OTS02,

 

I like the simplicity of your irule. I added this irule and added to my internal WIPs, but for whatever reason, I still get the resolution for the internal WIPs (Having your irule) when queried from an external IP.

 

Any idea what I might be missing?

 

Thanks...

 

NOTE: I rule I am using:

 

when DNS_REQUEST { if { ([IP::addr [IP::client_addr]/8 equals 10.0.0.0])} { } elseif { ([IP::addr [IP::client_addr]/12 equals 172.16.0.0])} { } elseif { ([IP::addr [IP::client_addr]/16 equals 192.168.0.0])} { } else {log "[IP::client_addr] attempting to query internal dns zone!!!!!" discard } }