HP 6125XLG R2306-HP 6125XLG Blade Switch Layer 3 - IP Services Command Referen - Page 116
dns spoofing, Examples, Syntax, Default, Views, Predefined user roles, Parameters, Usage guidelines
View all HP 6125XLG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 116 highlights
You can specify source interfaces for the public network and a maximum of 1024 VPNs. You can specify only one source interface for the public network or each VPN. Make sure the specified interface is on the VPN specified by the vpn-instance vpn-instance-name option. Examples # Specify VLAN-interface 2 as the source interface for DNS packets on the public network. system-view [Sysname] dns source-interface vlan-interface 2 dns spoofing Use dns spoofing to enable DNS spoofing and specify the IPv4 address to spoof DNS query requests. Use undo dns spoofing to restore the default. Syntax dns spoofing ip-address [ vpn-instance vpn-instance-name ] undo dns spoofing ip-address [ vpn-instance vpn-instance-name ] Default DNS spoofing is disabled. Views System view Predefined user roles network-admin Parameters ip-address: Specifies the IPv4 address used to spoof name query requests. vpn-instance vpn-instance-name: Specifies the name of an MPLS L3VPN, a case-sensitive string of 1 to 31 characters. To enable DNS spoofing function on the public network, do not use this option. Usage guidelines Use the dns spoofing command together with the dns proxy enable command. DNS spoofing enables the DNS proxy to send a spoofed reply with a configured IP address even if it cannot reach the DNS server because no dial-up connection is available. Without DNS spoofing, the proxy does not answer or forward a DNS request if it cannot find a local matching DNS entry or reach the DNS server. You can configure DNS spoofing for the public network and a maximum of 1024 VPNs, and can specify only one replied IPv4 address on the DNS spoofing device for the public network or each VPN. If you use the command multiple times, the most recent configuration takes effect. Examples # Enable DNS spoofing on the public network and specify the IPv4 address 1.1.1.1 to spoof DNS requests. system-view [Sysname] dns proxy enable [Sysname] dns spoofing 1.1.1.1 108