Important: The commands or keywords/variables that are available are dependent on platform type, product version, and installed license(s).
ip_address [ /
ip_mask ]: Specifies the IP address and network mask bits.
ip_address [ /
ip_mask ] is specified using the standard IPv4 or IPv6 dotted decimal notation and the mask bits are a numeric value which is the number of bits in the subnet mask (x.x.x.x/x).
Use this command to identify DNS IP addresses that should be allowed through the intercept feature. For a more detailed explanation of the proxy DNS intercept feature, see the proxy-dns intercept-list command in the
Context Configuration Mode Commands chapter. A maximum of 16 intercept rules (either
redirect or
pass-thru) are allow for each intercept list.
Important: To allow packets through that do not match either the
pass-thru or
redirect rules, set a
pass-thru rule address as: 0.0.0.0/0. If a packet does not match either the
pass-thru or
redirect rule, the packet is dropped.
ip_address is specified using the standard IPv4 or IPv6 dotted decimal notation.
ip_address is specified using the standard IPv4 or IPv6 dotted decimal notation.
Important: If a packet does not match the
pass-thru or
redirect rule, the packet is dropped. If
primary-dns or
secondary-dns is not configured, DNS messages are redirected to the primary-dns-server (or the secondary-dns-server) configured for the subscriber OR inside the context.