How to upload a response policy file to Address Manager.
To add a response policy file:
- Select the DNS tab in the sidebar, then select Response policies.
- Select the name of a response policy from the Response policies table.
- Select the checkbox for one or more response policy items, then select Actions > Upload policy items.
- Use the upload box to select, or drag and drop the response policy file from your local machine or workstation.
-
Select Upload.
Attention: Uploading a response policy file will replace the entire contents of this response policy with items from the file.
- The response policy file should be a normal text (.txt) file.
- IP address-based matches are placed into a reverse format. For example, to block 192.0.2.2, you will need to add 32.2.2.0.192.rpz-ip to your response policy. This will block any host request that resolves to 192.0.2.2. To block an IPv6 address, you will need to add a similar entry. For example, to block any host that resolves to 2001:DB8:BC:0:FC00:0:0:53, you need to add 128.53.0.0.FC00.0.BC.DB8.2001.rpz-ip.
- IP address-based matches can be used to block entire networks. To block an entire network, add the netmask for the network in front. For example, to block the network 192.1.0.0/16, you will need to add 16.0.0.1.192.rpz-ip to your response policy. To block the entire 2001:DB8:BC:0/64 network, you need to add 64.0.0.0.0.0.BC.DB8.2001.rpz-ip.
To deploy response policies to a managed BlueCat DNS Server, response policy zones and DNS deployment role must be defined.