How to upload a Response Policy file to Address Manager.
To add a Response Policy file:
- Select the My IPAM tab. Tabs remember the page you last worked on, so select the tab again to ensure you're on the User Home Page.
- From the configuration drop-down menu, select a configuration.
- Select the DNS tab. Tabs remember the page you last worked on, so select the tab again to ensure you're on the Configuration information page.
- Under Response Policies, click the Response Policy object from the list.
- Under Policy Items, click Action and select Upload Policy Items.
- Under File Selection, click Browse... beside the Response Policy File field.
- Locate the file on your system and click Open.
Click Apply to upload.
Attention: Uploading a response policy file will replace the entire contents of this Response Policy with items from the file.
- The Response Policy file should be a normal text (.txt) file.
- IP address-based matches are placed into a reverse format. For example, to block 192.0.2.2, you will need to add 18.104.22.168.192.rpz-ip to your Response Policy. This will block any host request that resolves to 192.0.2.2. To block an IPv6 address, you will need to add a similar entry. For example, to block any host that resolves to 2001:DB8:BC:0:FC00:0:0:53, you need to add 22.214.171.124.FC00.0.BC.DB8.2001.rpz-ip.
- IP address-based matches can be used to block entire networks. To block an entire network, add the netmask for the network in front. For example, to block the network 126.96.36.199/16, you will need to add 188.8.131.52.192.rpz-ip to your Response Policy. To block the entire 2001:DB8:BC:0/64 network, you need to add 184.108.40.206.0.0.BC.DB8.2001.rpz-ip.
To deploy Response Policies to a managed BlueCat DNS Server, Response Policy Zones and DNS deployment role must be defined.