No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

CLI-based Configuration Guide - IP Service

AR500, AR510, AR531, AR550, AR1500, and AR2500 V200R010

This document describes the concepts and configuration procedures of IP Service features on the device, and provides the configuration examples.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
(Optional) Configuring DNS Spoofing

(Optional) Configuring DNS Spoofing

Context

If the device is enabled with DNS proxy or relay but is not configured with a DNS server address or has no route to the DNS server, the device does not forward or respond to DNS query messages from DNS clients. After DNS Spoofing is enabled, the device uses the configured IP address to respond to all DNS query messages.

In addition to enabling DNS proxy or relay, one of the following requirements must be met to make DNS Spoofing take effect:
  • No DNS server is configured.
  • A DNS server is configured, but dynamic DNS resolution is disabled.
  • No route is reachable to the DNS server.
  • No source IP address is available for the outbound interface connected to the DNS server.

If one of the preceding requirements is met, when receiving an address record query, the DNS proxy or relay return Spoofing reply messages using the configured IP address.

Procedure

  1. Run system-view

    The system view is displayed.

  2. Run dns spoofing ip-address

    DNS Spoofing is enabled and the IP address in response messages is specified.

    By default, DNS Spoofing is disabled.

Translation
Download
Updated: 2019-05-20

Document ID: EDOC1100034231

Views: 80324

Downloads: 51

Average rating:
This Document Applies to these Products
Related Version
Related Documents
Share
Previous Next