Manage conditional forwarding rules
Conditional forwarding allows you to set up rules where you specify an internal or external resolver and the DNS traffic you want forwarded to that resolver. To add a conditional forwarding rule, see Configure conditional forwarding.
After you add a conditional forwarding rule, you can do the following:
- Modify or delete a rule. For instructions, see Edit a rule or Delete a rule.
- View conditional forwarding statistics in Security Connector. For more information, see View conditional forwarding statistics.
Conditional forwarding is currently in beta. It's supported on DNS Forwarder only and requires Security Connector 3.9 or later. To try this feature, contact your Akamai representative.
Edit a rule
Complete this procedure to edit a conditional forwarding rule. To configure conditional forwarding, see Configure conditional forwarding.
To edit a conditional forwarding rule:
- In the Threat Protection menu of Enterprise Center, select Clients & Connectors > Security Connectors.
- Go to the Security Connector that has the rule and conditions you want to modify.
- Click the icon for managing bypass rules.
- Hover over the rule you want to modify and click the edit icon.
- To modify a resolver IP address, in the Forward queries to resolver field, delete or enter a new IP address.
- To modify a condition:
- In the Query domain field for any condition you want to modify, delete or enter new domains.
- For the Source IP menu, select Any source IP or Specific source IP. If you select Specific source IP, enter a source IP address in the provided field.
- To delete a condition, click the minus icon for a condition.
- Click Apply.
Next Step:
Deploy this Security Connector update to the SIA network. For instructions, see Deploy configuration changes.
Delete a rule
Complete this procedure to delete a conditional forwarding rule. This operation deletes the resolver configuration and all the conditions associated with the rule. If you want to only remove a condition in a rule, see Edit a rule.
To delete a conditional forwarding rule:
- In the Threat Protection menu of Enterprise Center, select Clients & Connectors > Security Connectors.
- Go to the Security Connector that has the rule you want to delete.
- Click the icon for managing bypass rules.
- Click the minus icon. A confirmation window appears.
- Click Delete.
Next Step:
Deploy this Security Connector update to the SIA network. For instructions, see Deploy configuration changes.
View conditional forwarding statistics
If you configured conditional forwarding, you can view how queries and responses are handled by the resolvers you identified in the rule. Stats are reported every five minutes on the Traffic Stats page of Security Connector.
To view conditional forwarding statistics:
- In the Security Connector main menu, press 6 or use the arrow keys to select Manage DNS Forwarder and press Enter.
- Press 1 or use the arrow keys to select Check Traffic Stats. Press Enter.
- Go to the Conditional Forwarding Stats area to view conditional forwarding statistics.
Updated 30 days ago