Руководство По Устранению Ошибки для Cisco Cisco Packet Data Gateway (PDG)
HA Proxy DNS Configuration Mode Commands
▀ pass-thru
▄ Cisco ASR 5000 Series Command Line Interface Reference
OL-22947-02
pass-thru
Sets IP addresses that should be allowed through the proxy DNS intercept feature.
Product
HA
Privilege
Security Administrator, Administrator
Syntax
Removes the DNS IP address from the pass-thru rule.
Specifies an DNS IP address that is allowed through the intercept feature.
[ /
]: Specifies the IP address and network mask bits.
[ /
]
is specified using the standard IPv4 or IPv6 dotted decimal notation and the mask bits are a numeric value
which is the number of bits in the subnet mask (x.x.x.x/x).
which is the number of bits in the subnet mask (x.x.x.x/x).
Usage
Use this command to identify DNS IP addresses that should be allowed through the intercept feature. For a
more detailed explanation of the proxy DNS intercept feature, see the
more detailed explanation of the proxy DNS intercept feature, see the
command in the Context Configuration Mode Commands chapter. A maximum of 16 intercept rules (either
or
) are allow for each intercept list.
Important:
To allow packets through that do not match either the
or
rules, set a
rule address as: 0.0.0.0/0. If a packet does not match either the
or
rule, the
packet is dropped.
Example
The following command allows a foreign network‘s DNS with an IP address of 12.3.456.789 to avoid being redirected:
The following command allows a foreign network‘s DNS with an IP address of 12.3.456.789 to avoid being redirected: