Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
351
Views
0
Helpful
1
Replies

GSS domain-lists

cisco_moderator
Level 1
Level 1

‎11-03-2009 10:43 AM

Hi everyone,

I have a query about GSS devices and domain-lists.

At the moment we have individual domain-lists configured, for example:

domain-list DOMAIN1

domain DOMAIN1.EXAMPLE.COM

domain-list DOMAIN2

domain DOMAIN2.EXAMPLE.COM

domain-list DOMAIN3

domain DOMAIN3.EXAMPLE.COM

We also have a global forward rule to send for any unknown requests to an upstream name-server.

We are seeing an unwanted effect when internal hosts try to resolve unknown domains within *.EXAMPLE.COM. We would like to avoid these requests from being forwarded upstream.

Essentially we need the GSS to return a NXDOMAIN message for anything unknown with *.EXAMPLE.COM.

Thanks,

Paul

Labels:
0 Helpful
1 Reply 1

litrenta
Level 3
Level 3

‎11-03-2009 02:29 PM

you could set up another domain list with .*\.example\.com the use a dns rule without an answer.This woiuld give you a serverfail rather than nxdomain but will keep you from forwarding.

0 Helpful
Customers Also Viewed These Support Documents