Zonerunner : creating an internal DNS view and need to limit source networks

Question

Hi All,&nbsp;
I have two DNS zones: one existing for external use and I need to create another named the same for internal use only.&nbsp;

When creating a new internal view via ZoneRunner, how do I populate the Options field when the new 'internal' view is only to be used by specific networks (eg. 1.1.0./24 and 2.2.0.0/24 etc).&nbsp;

Should this new 'internal' view be placed higher in the view order above the existing 'external' view since the external view has a 'match-clients any' statement?&nbsp;

Thanks for your assistance.&nbsp;

youssef1 · Answer

Hi Curious,
In fact, you have 2 views internal and external. As you said when you create a view, you have the avaibility to set:
match-clients {
    "zrd-acl-000-000";
    any;
};

it will determine how have the right to request this zone.
The important point is the view order, in your case you have to set-
First internal view (set view order to First)Then external view (set external view to Last or after)
https://support.f5.com/kb/en-us/products/big-ip_gtm/manuals/product/gtm-concepts-11-3-0/4.html
View order acting as a firewall rules first match if condition match...
Hope it's clear. let me now if you need addtional info
regards

Forum Discussion

Zonerunner : creating an internal DNS view and need to limit source networks

1 Reply

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Illegal Metacharacter in Parameter Name in Json Data

Cisco TACACS+ Config on ISE LTM Pair

Checking for X-Forwarded-For against an Address Data-Group

SSL Bridging and FQDN rewrite Policy

How can I get started with iCall

Related Content

Managing ZoneRunner Resource Records with Bigsuds

Create an internal HTTP Load-Balancer on Volterra with Terraform

Create isolated environment for internal and external networks

Create a DevCentral account

Create a virtual server on internal vlan

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS