#qid 0 will consume server a lot of resource. #check QID, if query ID is 0, that means it's a illegal request. #Addr: 200.100.4.10, you can modify your own IP address here The following iRule requires BIG-IP version 11 with a DNS profile attached to the virtual server. 2.2.Valid Signature A 'Valid Signature' is any signature on a message that correctly verifies using the procedure described in Section 6.1 of RFC4871. Note: Rewriting non-existent domain DNS responses can introduce serious security issues for any domain which is resolved in such a manner. RFC 5617 ADSP August 2009 o A 'Local-part' is the part of an address preceding the character, as defined in and used in. Or a friendly error page that indicate the type error. That the 200.100.4.10 may be portal of the service provider.
After apply this rules to the BIGIP that load balances the DNS cache servers, BIGIP will replace the Cache DNS’s error message and turn it to a specified IP address like "in the sample rule. Scroll down to DNS Client, right click on it, and select Restart. Simply open up Command Prompt by pressing the Windows logo key and R. if a client types "for when the request send to a load balanced DNS cache server, it will return an error message of non-exist domain (NXDOMAIN), then the plugin of browser will redirect it to an search engine or other site. If you’re running Windows you can try restarting the DNS client services which resolves and caches DNS domain names.
That will help if client type the wrong domain name (ie. With this rules, BIGIP can convert a “non-exist domain” DNS query result to a "normal" response to client.
0 kommentar(er)
