Overwrite SOA-Records in RPZ-Responses?
Tom
tomtux007 at gmail.com
Tue Sep 6 12:42:22 UTC 2016
Hi list,
From "https://kb.isc.org/getAttach/21/AA-00512/rpz.txt", Chapter 3 -
Subscriber Behavior:
...
...
If a policy trigger results in a modified answer, then that modified
answer will include in its "authority" section the SOA RR of the DNS RPZ
whose policy was used to generate the modified answer. This SOA RR will
tell both the fully qualified name of the DNS RPZ and the serial number
of the policy data which was connected to the DNS control plane at the
time the answer was modified.
...
....
Is there a way to overwrite the SOA-Record in a RPZ-Response
"on-the-fly", whose zone is configured as "slave"? Because we use
configured some third-party-rpz-zones, the soa-record is predefined...
Thank you.
Kind regards,
Tom
More information about the bind-users
mailing list