ddos zone-template dns malformed-query-check¶
DNS Malform Query check options
malformed-query-check Specification¶
Parameter Value Type Configuration Resource Element Name malformed-query-check Element URI /axapi/v3/ddos/zone-template/dns/{name}/malformed-query-check Element Attributes malformed-query-check_attributes Partition Visibility shared Schema malformed-query-check schema
Operations Allowed:
Operation | Method | URI | Payload | |
---|---|---|---|---|
Create Object | POST | /axapi/v3/ddos/zone-template/dns/{name}/malformed-query-check | ||
Get Object | GET | /axapi/v3/ddos/zone-template/dns/{name}/malformed-query-check | ||
Modify Object | POST | /axapi/v3/ddos/zone-template/dns/{name}/malformed-query-check | ||
Replace Object | PUT | /axapi/v3/ddos/zone-template/dns/{name}/malformed-query-check | ||
Delete Object | DELETE | /axapi/v3/ddos/zone-template/dns/{name}/malformed-query-check | ||
malformed-query-check attributes¶
dns-malformed-query-action
Description ‘drop’: Drop packets (Default); ‘ignore’: Take no action; ‘blacklist-src’: Blacklist-src; ‘reset’: Reset client connection;
Type: string
Supported Values: drop, ignore, blacklist-src, reset
Mutual Exclusion: dns-malformed-query-action and dns-malformed-query-action-list-name are mutually exclusive
dns-malformed-query-action-list-name
Description Configure action-list to take
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Mutual Exclusion: dns-malformed-query-action-list-name and dns-malformed-query-action are mutually exclusive
Reference Object: /axapi/v3/ddos/action-list
non-query-opcode-check
Description ‘disable’: When malform check is enabled, TPS always drops DNS query with non query opcode, this option disables this opcode check;
Type: string
Supported Values: disable
skip-multi-packet-check
Description Bypass DNS fragmented and TCP segmented Queries(Default: dropped)
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
uuid
Description uuid of the object
Type: string
Maximum Length: 64 characters
Maximum Length: 1 characters
validation-type
Description ‘basic-header-check’: Basic header validation for DNS TCP/UDP queries; ‘extended-header-check’: Extended header/query validation for DNS TCP/UDP queries; ‘disable’: Disable Malform query validation for DNS TCP/UDP;
Type: string
Supported Values: basic-header-check, extended-header-check, disable