On 02/20/2019 01:19 PM, King, Harold Clyde (Hal) wrote:
Can I create a root zone to define a wildcard pointing to our warning page with one hostname defined going to a forward’ed DNS source? I could just give it an IP, but can I forward that one domain to outside DNS (Google or their NS repository)?
Are you using Response Policy Zone? Or are you trying to do a DNS hijack?If you're using RPZ, you should be able to make example.com. / *.example.com. redirect while still allowing needs.example.com. to pass thru unmodified.
example.com IN CNAME url-blocking.ourdns.com *.example.com IN CNAME url-blocking.ourdns.com needs.example.com IN rpz-passthru. I prefer RPZ for this type of filtering over DNS hijacking if I can do so. -- Grant. . . . unix || die
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list [email protected] https://lists.isc.org/mailman/listinfo/bind-users
