< Home

dns request-type check

Function

The dns request-type check command enables DNS request packet type detection.

The undo dns request-type check command disables DNS request packet type detection.

Format

dns request-type check { start-type [ to end-type ] action | default-action } { alert | allow | block }

undo dns request-type check { all | start-type [ to end-type ] }

Parameters

Parameter Description Value

start-type end-type

Indicates the query type of a DNS packet.

The value is an integer ranging from 0 to 65535. The value of end-type must be no smaller than that of start-type.

action

Indicates the action.

-

default-action

Indicates the default action.

-

allow

The packet is permitted.

-

alert

The packet is permitted, and a log is recorded.

-

block

The packet is blocked, and a log is recorded.

-

all

Indicates all query types.

-

Views

Intrusion prevention profile view

Default Level

2: Configuration level

Usage Guidelines

To detect all query types, set a default action (default-action).

You can also detect a specified query type. When the DNS packet query type is as specified, the corresponding processing action is implemented. The default processing action applies to other query types.

By default, this function is disabled.

Example

# In IPS profile profile1, enable DNS packet query type detection and set the default action to block.

<sysname> system-view
[sysname] profile type ips name profile1
[sysname-profile-ips-profile1] dns request-type check default-action block
Parent Topic: Intrusion Prevention Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >