DNS Response Policy Zones - Specification - Format 3



This memo describes a method for expressing DNS response policy inside a specially constructed DNS zone, and for processing the contents of such zones inside recursive name servers. These response policies are intended for use in fighting Internet crime and abuse. Almost all Internet crime relies on DNS, and many new and existing domains at the time of this writing are malicious.

[see attached text or PDF files]

See also: Building DNS Firewalls with Response Policy Zones (RPZ)