HP 6125XLG R2306-HP 6125XLG Blade Switch Layer 3 - IP Services Configuration G - Page 92
Configuring DNS spoofing, Specifying the source interface for DNS packets
View all HP 6125XLG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 92 highlights
A DNS proxy forwards an IPv4 name query first to IPv4 DNS servers, and if no reply is received, it forwards the request to IPv6 DNS servers. The DNS proxy forwards an IPv6 name query first to IPv6 DNS servers, and if no reply is received, it forwards the request to IPv4 DNS servers. To configure the DNS proxy: Step 1. Enter system view. Command system-view 2. Enable DNS proxy. dns proxy enable • Specify a DNS server IPv4 address: dns server ip-address [ vpn-instance vpn-instance-name ] 3. Specify a DNS server IP address. • Specify a DNS server IPv6 address: ipv6 dns server ipv6-address [ interface-type interface-number ] [ vpn-instance vpn-instance-name ] Remarks N/A By default, DNS proxy is disabled. Use at least one command. By default, no DNS server IP address is specified. Configuring DNS spoofing DNS spoofing is effective only when: • The DNS proxy is enabled on the device. • No DNS server or route to any DNS server is specified on the device. Follow these guidelines when you configure DNS spoofing: • You can configure only one replied IPv4 address and one replied IPv6 address for the public network or a VPN. If you use the command multiple times, the most recent configuration takes effect. • You can configure DNS spoofing for the public network and a maximum of 1024 VPNs. To configure DNS spoofing: Step 1. Enter system view. 2. Enable DNS proxy. 3. Enable DNS spoofing and specify the translated IP address. Command system-view dns proxy enable • Specify a translated IPv4 address: dns spoofing ip-address [ vpn-instance vpn-instance-name ] • Specify a translated IPv6 address: ipv6 dns spoofing ipv6-address [ vpn-instance vpn-instance-name ] Remarks N/A By default, DNS proxy is disabled. Use at least one command. By default, no translated IP address is specified. Specifying the source interface for DNS packets By default, the device uses the primary IP address of the output interface of the matching route as the source IP address of a DNS request. Therefore, the source IP address of the DNS packets may vary with 83