Cisco Systems ASA 5580 Manual De Usuario

The following example creates entries for the blacklist and whitelist:

ciscoasa(config)# dynamic-filter blacklist

ciscoasa(config-llist)# name bad1.example.com

ciscoasa(config-llist)# name bad2.example.com

ciscoasa(config-llist)# address 10.1.1.1 255.255.255.0

ciscoasa(config-llist)# dynamic-filter whitelist

ciscoasa(config-llist)# name good.example.com

ciscoasa(config-llist)# name great.example.com

ciscoasa(config-llist)# name awesome.example.com

ciscoasa(config-llist)# address 10.1.1.2 255.255.255.255

See the 

This procedure enables inspection of DNS packets and enables Botnet Traffic Filter snooping, which 
compares the domain name with those on the dynamic database or static database, and adds the name 
and IP address to the Botnet Traffic Filter DNS reverse lookup cache. This cache is then used by the 
Botnet Traffic Filter when connections are made to the suspicious address.

The following procedure creates an interface-specific service policy for DNS inspection. See the 

 and 

 for detailed information about configuring advanced DNS inspection options using 

the Modular Policy Framework.

In multiple context mode, perform this procedure in the context execution space.

TCP DNS traffic is not supported.

 domain_name

ciscoasa(config-llist)# name good.example.com

Adds a name to the whitelist. You can enter this 
command multiple times for multiple entries. You can 
add up to 1000 whitelist entries.

 ip_address mask

ciscoasa(config-llist)# address 10.1.1.2 

255.255.255.255

Adds an IP address to the whitelist. You can enter this 
command multiple times for multiple entries. The 
mask can be for a single host or for a subnet.