Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

HowTo: Respond directly to DNS requests using libDNS.rts

 This article uses the libDNS.rts Trafficscript library as described in libDNS.rts: Interrogating and managing DNS traffic in Traffic Manager.

 

In this example, we intercept DNS requests. If the client is seeking to resolve www.site.com and they are based in the UK, then we respond directly with a CNAME response, directing them to resolve www.site.co.uk instead.

 

Request rule

 

import libDNS.rts as dns;

$request = request.get();
$packet = dns.convertRawDataToObject($request, "udp");

# Ignore unparsable packets and query responses to avoid
# attacks like the one described in CVE-2004-0789.

if( hash.count( $packet ) == 0 || $packet["qr"] == "1" ) {
   break;
}

$host = dns.getQuestion( $packet )["host"];
$country = geo.getCountry( request.getRemoteIP() );

if( $host == "www.site.com." && $country == "GB" ) {
   $packet = dns.addResponse($packet, "answer",
      "www.site.com", "www.site.co.uk.", "CNAME", "IN", "60", []);

   $packet["qr"] = 1;

   request.sendResponse( dns.convertObjectToRawData($packet, "udp"));
}
Version history
Revision #:
2 of 2
Last update:
‎12-21-2020 07:42:AM
Updated by:
Community Manager
 
View Article History
Labels (1)
Labels:
Contributors
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.