Control traffic based on DNS and security zone
Control traffic flow by implementing DNS rules with security zone conditions to manage network access and security policies.
Zone conditions in DNS rules allow you to control traffic by its source security zone. A security zone is a grouping of one or more interfaces, which may be located across multiple devices.
Procedure
Step 1 | In the DNS rule editor, click Zones. |
Step 2 | Find and select the zones you want to add from the Available Zones. To search for zones to add, click the Search by name prompt above the Available Zones list, then type a zone name. The list updates as you type to display matching zones. |
Step 3 | Click to select a zone, or right-click and then select Select All. |
Step 4 | Click Add to Source, or drag and drop. |
Step 5 | Click the DNS tab and add the lists or feeds that include the DNS names you are controlling. For more information, see Control traffic based on DNS list or feed. |
Step 6 | Save or continue editing the rule. |
The DNS rule is configured with security zone conditions to control traffic based on source security zones and DNS names.
What to do next
-
Deploy configuration changes.