Chapter 17 Reputation Filter
USG FLEX H Series User’s Guide
282
17.3.2 DNS Threat Filter Block List Screen
Use this screen to create block list entries. The Zyxel Device will reply with a DNS reply packet containing
a default or custom-defined IP address when a DNS query packet contains an FQDN in the block list. For
matched items in the block list, the action is always Redirect IP and log is always log alert.
Click Security Service > Reputation Filter > DNS Threat Filter > Block List to display the configuration
screen as shown next.
Figure 177 Security Service > Reputation Filter > DNS Threat Filter > Block List
The following table describes the labels in this screen.
Inactive To turn off an entry, select it and click Inactive.
Status The activate (light bulb) icon is lit when the entry is active and dimmed when the entry is
inactive.
Allow List This field displays the FQDN of this entry.
Apply Click Apply to save your changes back to the Zyxel Device.
Reset Click Reset to return the screen to its last-saved settings.
Table 141 Security Service > Reputation Filter > DNS Threat Filter > Allow List (continued)
LABEL DESCRIPTION
Table 142 Security Service > Reputation Filter > DNS Threat Filter > Block List
LABEL DESCRIPTION
Block List
Enable Select this check box and the Zyxel Device will reply with a DNS reply packet containing a
default or custom-defined IP address when a DNS query packet contains an FQDN in the
black list.
Add Click this to create a new entry. To add an FQDN, type a Fully-Qualified Domain Name
(FQDN) of a web site. An FQDN starts with a host name and continues all the way up to
the top-level domain name. For example, www.zyxel.com.tw is a fully qualified domain
name, where “www” is the host, “zyxel” is the third-level domain, “com” is the second-
level domain, and “tw” is the top level domain. Underscores are not allowed. Use "*." as a
prefix in the FQDN for a wildcard domain name (for example, *.example.com).
To Next Page
Loading...
