FQDN(Fully Qualified Domain Name) based route
06/14/2023 76 People found this article helpful 487,301 Views
Description
Creating static route for destination based on FQDN. The FQDN can be used as the source or destination of the PBR entry, and the PBR entry can be redistributed to advanced routing protocols. Policy‐based routing is a technique used to make routing decisions based on policies set by the network administrator. Policy‐based routing may be based on the size of the packet, the source address, the protocol of the payload, or other information available in a packet header or payload.The FQDN is added as an address object, which can then be used when configuring the policy. The FQDN object can contain both IPv4 and IPv6 hosts; the number of hosts in an FQDN object is variable. To configure an FQDN address object, select FQDN in the Type field and fill in the other fields.
Resolution
Resolution for SonicOS 7.X
This release includes significant user interface changes and many new features that are different from the SonicOS 6.5 and earlier firmware. The below resolution is for customers using SonicOS 7.X firmware.
- Create an address object with type as FQDN, navigate to Object - Match Objects - Addresses - Address Objects - Add
- Create a static route by navigating to Policy - Rules and Policies - Routing Rules
- You can make sure if FQDN is resolving to the right IP address by hovering mouse on the FQDN.
Resolution for SonicOS 6.5
This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.
- Create an address object with type as FQDN, navigate to Manage - Objects - Address Objects - Add
- Create a static route by navigating to Manage - Network - Routing - Route Policies - Add
- You can make sure if FQDN is resolving to the right IP address by hovering mouse on the FQDN.
Resolution for SonicOS 6.2 and Below
The below resolution is for customers using SonicOS 6.2 and earlier firmware. For firewalls that are generation 6 and newer we suggest to upgrade to the latest general release of SonicOS 6.5 firmware.
NOTE: SonicOS 6.2.7 introduces Fully Qualified Domain Name (FQDN) support in Policy‐based routing (PBR).
- Create an address object with type as FQDN, navigate to Network - Address Objects - Add
- Create a route by navigating to Network - Routing - Route Policies
- You can make sure if FQDN is resolving to the right IP address by hovering mouse on the FQDN.
For more information on DNS Resolution of FQDNs please refer to the following articles:
DNS Resolution of Wildcard FQDN Address Objects
https://www.sonicwall.com/en-us/support/knowledge-base/170505295458240
Impact of FQDN Address Objects on the CPU
https://www.sonicwall.com/en-us/support/knowledge-base/171004095251533
Related Articles
Categories
Was This Article Helpful?
YESNO