Re: RPZ configuration examples

2011-11-21 Thread Paul Vixie
noting, first: there is documentation online for DNS RPZ, see the following: https://deepthought.isc.org/article/AA-00525/0/Building-DNS-Firewalls-with-Response-Policy-Zones-RPZ.html second, as to the particulars: babu dheen writes: > We are new to BIND and would like to implement RPZ in B

Re: RPZ configuration examples

2011-11-21 Thread Barry Greene
Hello Papdheen, ISC now has a knowledge base where more information is systematically being written and published. There is a whole section on DNSRPZ: https://kb.isc.org/category/110/0/10/Software-Products/BIND9/Features/DNSRPZ/ Each article allows for comments to improve the materials. We welc

Re: RPZ configuration examples

2011-11-21 Thread Jan-Piet Mens
It seems as though you haven't followed some of the advice given you on this list -- you'll have to do a bit more reading. Nevertheless: > 1. How frequently DNS server will download the malware domain database That depends on how frequently the RPZ provider publishes updates to the zone. RPZ zone

Re: RPZ configuration examples

2011-11-21 Thread babu dheen
te? 3. How to whitelist list of official/customer domains from RPZ query so that in case customer domain is listed in RPZ , business will not be affected?   Regards Babu     --- On Sun, 20/11/11, Stephane Bortzmeyer wrote: From: Stephane Bortzmeyer Subject: Re: RPZ configuration examples

Re: RPZ configuration examples

2011-11-20 Thread Stephane Bortzmeyer
On Sat, Nov 19, 2011 at 10:53:27AM +0530, babu dheen wrote a message of 105 lines which said: > If I use RPZ, recursive DNS will contact remote RBL database for > every DNS query? It seems you need to read about RPZ first because one critical point of RPZ is precisely that the database is ne

Re: RPZ configuration examples

2011-11-20 Thread Stephane Bortzmeyer
On Sat, Nov 19, 2011 at 03:24:14PM +0100, Issam Harrathi wrote a message of 139 lines which said: > this is an example: If the OP reads french, I suggest that is much more detailed. If, however, he prefers english, I would point

RE: RPZ configuration examples

2011-11-19 Thread Spain, Dr. Jeffry A.
> 1. Do you have basic example/steps to configure RPZ in Bind? ( I need couple > of examples like /etc/named.conf file and zone files for rpz > 2. If I use RPZ, recursive DNS will contact remote RBL database for every DNS > query? > 3. Is it possible to download DNS RBLs locally on the DNS serve

Re: RPZ configuration examples

2011-11-19 Thread Issam Harrathi
Hi, this is an example: http://dns.blog4ever.com/blog/lire-article-491870-2332506-rpz_et_dns__exemple_de_configuration.html 2011/11/19 babu dheen > > >Hi, > > > > We are new to BIND and would like to implement RPZ in BIND. I have a > following queries with respect to RPZ in BIND. > > > > Ple

RPZ configuration examples

2011-11-18 Thread babu dheen
Hi,   We are new to BIND and would like to implement RPZ in BIND. I have a following queries with respect to RPZ in BIND.   Please help me on this.   1. Do you have  basic example/steps to configure RPZ in Bind? ( I need couple of examples like /etc/named.conf file and zone files