Hi Mario, On 11/30/2017 11:52 AM, Mario Caruso wrote: > I am trying to write a lua rule to somehow filter/capture > the wpad like dq.qname (http://allievi.sssup.it/techblog/archives/81) > > in my test environment (debian stretch and recursor version > 4.1.0~rc3-1pdns.stretch) I have this rule : > > -- US-CERT TA16-144A. > if (dq.qname:isPartOf(newDN("wpad"))) > then > dq.rcode = 0 > dq:addAnswer(pdns.A, "127.0.0.1") > return true; > end > > but this doesn't seem to work, maybe I am misinterpreting > the isPartOf method , or maybe I should use :toString and > then use lua pattern matching.
isPartOf() returns true if the name is a sub-domain of the one passed in parameter, so here it would match any domain under the hypothetic .wpad TLD, which is not what you want. Lua pattern matching would be one of the various ways to do that, yes. Kind regards, -- Remi Gacogne PowerDNS.COM BV - https://www.powerdns.com/
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Pdns-users mailing list [email protected] https://mailman.powerdns.com/mailman/listinfo/pdns-users
