Forum Discussion

Nimbostratus

Jul 25, 2011

Return DNS replies to specific clients

I'm trying to return DNS replies to only a couple of different subnets. If the request comes in from anything else, I'd like to ignore it, or return a bogus response. Trying to get this to work, but...

Nimbostratus

Jul 26, 2011

Hi Craig,

If you look to provide a bogus response from the GTM based on it hitting a specific wide IP then you can do the following

when DNS_REQUEST {
  if { !([IP::addr [IP::client_addr]/24 equals 10.0.0.0/24]) or !([IP::addr [IP::client_addr]/24 equals 192.168.76.0/24]) } {
   cname www.blahblahblah.com
     }
}

I hope this helps

Bhattman

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Return DNS replies to specific clients

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

irule to Redirect client from specific Public IP to a specific node

no reply from big3d: timed out

Enhance your Application Security using Client-side signals

check the utilization on specific node

Load balancing method specific decision

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS