- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
Question about DNS Views
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
11-18-2014 05:18 PM
Hello all,
Appologize for the basicness of this question, but I've just inherited an Infoblox deployment that appears to not be working 100%
In the admin guide, it states that if a DNS query matches a client match list, then it will match that view. What happens if the client match is set to none?
In my situation I have
View 1 - match none
View 2 - match none
View 3 - match none
View 3 - Match 172.25.0.0/24
Default View - Match none
The order is manually set on some of the members, so I can see which view is checked first, but my question is: does match none mean the same as match any ip? If so, am I correct to think that the first view would be the view used, or does it fall through to the next view?
Thanks!
hello Ed,
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
11-27-2014 01:31 PM
hello Ed,
you are correct - match none will allow any client so first view will be used (assuming it is not View3 of course)
Hope this helps
Stephane
Hi Ed,
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
12-04-2014 09:57 AM
Hi Ed,
Wanted to check in and see if you were able to resolve your issue? Let me know as I'm happy to reach out to the internal team.
Eric
Re: Question about DNS Views
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
07-22-2016 05:12 AM
For just a bit of clarity, DNS Views will Match from Top to bottom in your list, and within a given view read left to right.
This becomes important if you plan to include a given network, but not individual addresses within a network.
In that case, deny the individual addresses first, then allow the networks.