Building DNS Firewalls with Response Policy Zones (RPZ)
  • 13 Aug 2021
  • 1 Minute to read
  • Contributors
  • Dark
    Light
  • PDF

Building DNS Firewalls with Response Policy Zones (RPZ)

  • Dark
    Light
  • PDF

A DNS firewall can help you control what domain names, IP addresses and subnets, and name servers are allowed to function on your network. You can build such a firewall using DNS Response Policy Zones (RPZ), which is an open and vendor-neutral standard for the interchange of DNS firewall configuration information. DNS RPZ is a standard feature of BIND 9, and is expected to be supported by other (non-BIND) name servers.

Some useful pages: