Step 1
Step 2
Step 3
Step 4 Save your configuration as described in the Saving Your Configuration chapter.Important: Commands used in the configuration examples in this section provide base functionality to the extent that the most common or likely commands and/or keyword options are presented. In many cases, other optional commands and/or keyword options are available. Refer to the Command Line Interface Reference for complete information regarding all commands.
• The ip dns-proxy source-address <ip_address> command must be entered in the destination context for the subscriber. If there are multiple destination contexts for different subscribers, the command must be entered in each context. This feature uses UDP port 53.
• <ip_address> must be the interface in the current context where all redirected DNS requests will be sent.
• <name> must be the name of the rules list for later association with a subscriber.
• Use the pass-thru command to set the DNS IP addresses that should be allowed through the intercept feature.
• Use the redirect command to set the DNS IP addresses that should be redirected by the intercept feature to the home DNS. Use the optional primary-dns and secondary-dns keywords to specify the IP addresses of primary and secondary home DNS servers. Refer to the Command Line Interface Reference for more information regarding these optional keywords.Important: If a packet does not match the pass-thru or redirect rule, the packet is dropped. If the optional keywords primary-dns or secondary-dns are not configured, DNS messages are redirected to the primary-dns-server (or the secondary-dns-server) configured for the subscriber OR inside the context.
![]() |
Cisco Systems Inc. |
Tel: 408-526-4000 |
Fax: 408-527-0883 |