[Pdns-users] dp.variable when changing RPZ policy action?
MRob
mrobti at insiberia.net
Tue Apr 17 05:42:46 UTC 2018
PowerDNS blog recommends setting dq.variable when a domain response is
part of the loaded block list.
https://blog.powerdns.com/2016/01/19/efficient-optional-filtering-of-domains-in-recursor-4-0-0/
But this example for modifying policy actions does not set dq.variable:
https://doc.powerdns.com/md/recursor/scripting/#modifying-policy-decisions
Is that oversight, should I set dq.variable if the policy action is
liable to changing? After all, it does affect the returned result.
Though in testing, I find the correct response for both cases of client
requested blocking or not blocking (how does it respond correct with the
wrong value in cache?)
By the way, this example has typo, Lua uses ~= but the example uses !=
PS, when dq.variable is set is this forcing referral to authoritative
name server on every query? Is there performance implications to
consider?
More information about the Pdns-users
mailing list