RPZ - override TXT records
Wolfgang Riedel [CISCO]
wolfgang at cisco.com
Thu Oct 8 21:25:14 UTC 2015
Hi Folks,
I am currently struggling with using RPZ for inserting or overriding TXT
resource records.
This is my goal:
; do not rewrite www.cisco.com (so, PASSTHRU) and add or override
missing metadata
www.cisco.com CNAME rpz-passthru.
www.cisco.com TXT "CISCO-CLS=app-name:HTTP|app-class:TD"
What work's is that I can do one or the other but not both at the same
time if I need to use a CNAME.
This works:
wolfgang.dns-as.org A 193.34.28.108
wolfgang.dns-as.org TXT "CISCO-CLS=app-name:RPZ|app-class:TD"
but in reality this will not work for CDN or load-balanced sites which
don't have fixed IP address.
Any hint's what I am doing wrong?
Many thanks,
Wolfgang
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20151008/212d9f6f/attachment.html>
More information about the bind-users
mailing list