No relevant resource is found in the selected language.
Enterprise
Worldwide
Search
Support Documentation
NetEngine AR V300R019 CLI-based Configuration Guide - IP Service
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Example for Configuring IPv6 DNS Proxy

Example for Configuring IPv6 DNS Proxy

Networking Requirements

As shown in Figure 10-4, Users access the DNS server to resolve domain names through RouterA enabled with DNS proxy. If the route from RouterA to the DNS server is unreachable, the IPv6 address configured for DNS spoofing is used to respond to the DNS query packets.

Figure 10-4 Network diagram for configuring IPv6 DNS proxy

Configuration Roadmap

The configuration roadmap is as follows:

  1. Configure the DNS server function on RouterA to forward DNS packets.

  2. Configure IPv6 DNS spoofing on RouterA.

Procedure

  1. Configure an IPv6 address for GE1/0/0.

    <Huawei> system-view
[Huawei] sysname RouterA
[RouterA] ipv6
[RouterA] interface gigabitethernet 1/0/0
[RouterA-GigabitEthernet1/0/0] ipv6 enable
[RouterA-GigabitEthernet1/0/0] ipv6 address fc00:1::1 64
[RouterA-GigabitEthernet1/0/0] quit

  2. Configure a DNS server.

    # Enable dynamic DNS.

    [RouterA] dns resolve

    # Configure a DNS server that the DNS proxy or relay connects to.

    [RouterA] dns server ipv6 fc00:2::2

    # Enable IPv6 DNS proxy.

    [RouterA] dns proxy ipv6 enable

  3. Configure DNS spoofing and specify the IPv6 address in response messages as fc00:3::3.

    [RouterA] dns spoofing ipv6 fc00:3::3

  4. Configure a static route.

    [RouterA] ipv6 route-static fc00:2:: 64 fc00:1::2

    You need to configure a static IPv6 route on the DNS server so that DNS packets can be sent and received properly.

  5. Verify the configuration.

    # Run the display current-configuration command to view the DNS proxy configuration on RouterA.

    <RouterA> display current-configuration | include dns 
 dns resolve
 dns server ipv6 FC00:2::2
 dns proxy ipv6 enable
 dns spoofing ipv6 FC00:3::3

Configuration File

  • Configuration file of RouterA

    #
 sysname RouterA
#
ipv6
#
interface GigabitEthernet1/0/0
 ipv6 enable                                     
 ipv6 address FC00:1::1/64                                 
#
dns resolve
dns server ipv6 FC00:2::2
dns proxy ipv6 enable
dns spoofing ipv6 FC00:3::3
#
ipv6 route-static FC00:2:: 64 FC00:1::2   
#
return

  • Configuration file of RouterB

    #
 sysname RouterB
#
ipv6
#
interface GigabitEthernet1/0/0
 ipv6 enable                                     
 ipv6 address FC00:1::2/64 
#
interface GigabitEthernet2/0/0
 ipv6 enable                                     
 ipv6 address FC00:2::1/64 
#
return
Translation
简体中文
Download
Updated: 2023-05-18

Document ID: EDOC1100112351

Views: 518901

Downloads: 755

Average rating:
This Document Applies to these Products

Related Version

Related Documents

Digital Signature File

Digital Signature Authentication Mode
Share
Previous Next

Copyright © 2023 Huawei Technologies Co., Ltd. All rights reserved.

You are going to visit :