DnsInfo
DnsInfo with the following properties:
Property |
Type |
Description |
Example |
|---|---|---|---|
DnsQuery |
String |
The DNS query |
www.google.com |
DnsQueryLength |
Int |
The length of the DNS query |
100 |
DnsResponseIpAddressV4 |
Set of IP v4 addresses |
The A records in the DNS response |
216.58.201.67 |
DnsResponseIpAddressV6 |
Set of IP v6 addresses |
The AAAA records in the DNS response |
2001:db8:85a3:8131:4321:8a2e:370:7334 |
DnsResponseString |
Set of strings |
The NS, CNAME, PTR or TXT records in the DNS reponse |
mobile-google.com |
DnsResponseLength |
Int |
The total length of the DNS reponse |
100 |
DnsResponseType |
Set of strings |
The types of records present in the DNS response |
HINFO |
For property DnsResponseType, there is a pre-defined scope of values that can be used (case insensitive): A, NS, MD, MF, CNAME, SOA, MB, MG, MR, NULL, WKS, PTR, HINFO, MINFO, MX, TXT, RP, AFSDB, X25, ISDN, RT, NSAP, NSAPPTR, SIG, KEY, PX, GPOS, AAAA, LOC, NXT, EID, NIMLOC, SRV, ATMA, NAPTR, KX, CERT, A6, DNAME, SINK, PT, PL, DS, SSHFP, IPSECKEY, RRSIG, NSEC, DNSKEY, DHCID, NSEC3, NSEC3PARAM, TLSA, SMIMEA, HIP, NINFO, RKEY, TALINK, CDS, CDNSKEY, OPENPGPKEY, CSYNC, ZONEMD, SPF, UINFO, UID, GID, UNSPEC, NID, L32, L64, LP, EUI48, EUI64, TKEY, TSIG, IXFR, AXFR, MAILB, MAILA, ANY, URI, CAA, AVC, DOA, AMTRELAY, TA, DLV. For an explanation of these values, follow Resource Record (RR) TYPEs.
Conditions supported for set types (set of IP v4 addresses, set of IP v6 addresses, set of strings) are: contains, notcontains, isempty, isnotempty, isset, isnotset.
Example:
<rule> <definition> <operations> <operation type="DnsRequest"> <condition component="DnsInfo" condition="contains" property="DnsResponseType" value="CNAME" /> </operation> </operations> </definition> </rule> |
Supported Operations and their components:
|
DnsInfo |
|---|---|
DnsRequest |
X |