Knowledge Base ISC Main Website Ask a Question/Contact ISC
Quick Jump Menu
Categories
There are no subcategories in this category.
11 How can I synchronize DNS RPZ firewall policies across multiple DNS servers?

In DNS RPZ, the DNS firewall policy rule set is stored in a DNS zone which is maintained and synchronized using the same tools and methods as for any other DNS zone. See How do I create and maintain my DNS firewall policy rule set using DNS RPZ? for the procedures…

12 How do I create and maintain my DNS firewall policy rule set using DNS RPZ?

In a DNS RPZ firewall, the policy rule set is contained in a DNS "zone", which can be transferred using normal "zone transfer" mechanisms. The master copy of your DNS firewall policy can be a DNS "zone file" which you either edit by hand, or which you generate…

13 What are the features of the DNS RPZ firewall?

DNS RPZ (Response Policy Zones) is a form of DNS firewall in which the firewall rule sets are expressed within DNS itself in the form of specially constructed DNS zones. DNS RPZ is an open vendor-neutral format for DNS firewall policy which allows a DNS server…

14 What can a DNS firewall do?

Firewalls work by applying a set of rules to a traffic flow, where each rule consists of a trigger and an action. Triggers determine which messages within the traffic flow will be handled specially, and actions determine what that special handling will be.…

15 Why use a DNS firewall?

Crime and network abuse on the internet uses the Domain Name System (DNS), thus protection against these threats should include DNS firewalling. A DNS firewall can selectively intercept DNS queries for known network assets including domain names, IP addresses,…

16 DNS Response Policy Zones - Specification - Format 3

Abstract This memo describes a method for expressing DNS response policy inside a specially constructed DNS zone, and for processing the contents of such zones inside recursive name servers. These response policies are intended for use in fighting Internet…