vobelic

Asked: 2020-08-17 08:33:17 +0800 CST2020-08-17 08:33:17 +0800 CST 2020-08-17 08:33:17 +0800 CST

How to block AAAA answers for certain domains using RPZ?

Is it possible to block AAAA answers being sent back to clients from a local dns server, but only for certain forward dns domains? I know I can do the filtering based on ipv6 subnet (working sample below), but i would like to filter out based on domain.

I.e. google services (1e100.net domain) are much faster over ipv4 transport, yet i'd still like to have ipv6 for everything else.

;this RPZ entry successfully blocks AAAA answers that match 2001:db8:aa::/48
48.zz.aa.db8.2001.rpz-ip       IN      CNAME   .

My local DNS server in question is running bind 9.9.5

How to block AAAA answers for certain domains using RPZ?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?

How to block AAAA answers for certain domains using RPZ?

0 Answers