[CentOS] Can one construct an IPTables rule to block on NS records?
Leon Fauster
leonfauster at googlemail.com
Tue Oct 6 13:34:28 UTC 2015
--On Monday, October 05, 2015 10:46 AM -0400 "James B. Byrne" <byrnejb at harte-lyne.ca> wrote:
> So, is there any convenient way to construct an IPTables rule to block
> all IPs associated with a given Domain Name server?
IPs have the reversed lookup "assosiated" with a NS.
What do you mean with "associated"?
Do mean all IPs that this DNS server resolves to
(A-Records in zone) (how do know for what zone
the NS gives authoritative answers)?
Or just the domain name server IPs of a given
domain name (NS records)?
What are you trying to solve?
--
LF
More information about the CentOS
mailing list