Zywall 110 - Declare a wildcard FQDN in object?

drouboyboy
drouboyboy Posts: 5
First Comment
edited April 2021 in Security
Hi,

Is there a way to authorize or drop output traffic based on a wildcard FQDN?

My goal is to be able to reject all output traffic per default and authorize only output traffic that I want.

Example: I'd like to authorize all traffic to *.outlook.office.com

I've tried using Object ==> Address/Geo IP ==> wildcard FQDN but objects don't accept wildcard syntax.

Thanks.

Best Answers

All Replies

  • PeterUK
    PeterUK Posts: 2,705  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer

    I can't see how like *.outlook.com would work for the FQDN type address object because how would it know what to lookup the IP for like test1.outlook.com or test2.outlook.com and so on?


  • Hi,

    It works also fine for me with several wildcard.

    zyman2008, thanks a lot for your answer!

    Seb.
  • PeterUK
    PeterUK Posts: 2,705  Guru Member
    First Anniversary 10 Comments Friend Collector First Answer
    edited February 2019

    Still don't get how it works unless you do the request to ZyWALL? Since I have a bind server requests are done by it unless the ZyWALL transparently ever on a bridge listens for DNS queries and then maps for "*.outlook.com" FQDN address object?

    Currently my understanding of FQDN address object is it pre looks up the address like for outlook.com without you doing a lookup.

    Edit I think I just answered my own question! really cool how it works!  


Security Highlight