Adding a response policy item - BlueCat Integrity - 26.1.0

How to add a response policy item.

1. Select the DNS tab in the sidebar, then select Response policies.
2. Select the name of a response policy from the Response policies table.
3. Select New in the Response policy items tab.
4. In the Name field, enter the fully qualified domain name to be blocked or redirected. For the Allowlist option, the specified domain name will be an exception to a DNS query in the allowlist or black hole lists. The asterisk (*) wildcard character(s) can be used to block or redirect any hostname or all sub-domains. For example, if you specify *.example.com, any hostname in example.com will be blocked or redirected whereas www.example.com will block or redirect any attempt to access only www.example.com. If you specify **.example.com, any hostname or all sub-domains in example.com and example.com itself will be blocked or redirected.
   Note:

   • IP address-based matches are placed into a reverse format. For example, to block 192.0.2.2, you will need to add 32.2.2.0.192.rpz-ip to your response policy. This will block any host request that resolves to 192.0.2.2. To block an IPv6 address, you will need to add a similar entry. For example, to block any host that resolves to 2001:DB8:BC:0:FC00:0:0:53, you need to add 128.53.0.0.FC00.0.BC.DB8.2001.rpz-ip.
   • IP address-based matches can be used to block entire networks. To block an entire network, add the netmask for the network in front. For example, to block the network 192.1.0.0/16, you will need to add 16.0.0.1.192.rpz-ip to your response policy. To block the entire 2001:DB8:BC:0/64 network, you need to add 64.0.0.0.0.0.BC.DB8.2001.rpz-ip.
5. Select Create to create the response policy item and return to the Response policy items tab, or select Create and add another to create the response policy item and re-open the Create response policy item window.