[dnsdist] SuffixMatchNode() is not dynamic for rules...
gregc at olypensupport.com
gregc at olypensupport.com
Sat Feb 20 00:46:17 UTC 2016
When creating a SuffixMatchNode such as:
BlockedDomains = newSuffixMatchNode();
BlockedDomains:add(newDNSName("somebaddomain.com."));
BlockedDomains:add(newDNSName("example.com."));
And then a rule to match on that, for example well just use:
addAction(SuffixMatchNodeRule(BlockedDomains), DropAction());
Everything behaves as expected.
If you add/delete something to the SuffixMatchNode the rule will not match the changes.
BlockedDomains:add(newDNSName("test.com."));
You must delete the rule, and re-add it.
rmRule(<rule number>);
addAction(SuffixMatchNodeRule(BlockedDomains), DropAction());
Is this expected behavior?
Also it appears we are missing “NetmaskGroupRule()” function.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/dnsdist/attachments/20160219/abcd4385/attachment.html>
More information about the dnsdist
mailing list