The DNS Servers page is where you provide Security Validation with your DNS servers and configure your DNS Rules. 
DNS Servers page
To add a new DNS Server
NOTE: The list of servers is automatically updated when Actors are registered, but you can also add DNS Servers.
- Launch the Director.
- Go to Settings > Director Settings.
- Select DNS Servers.
- Click Add DNS Server.
- Enter the DNS server's IP address.
-
Enter a description, if desired.
Add DNS form
- Click Create DNS server; the DNS Server will be added to the table.
To add a Malicious DNS Query Settings
IMPORTANT: This must be set up for Security Validation to know if a Malicious DNS Query Job Action is blocked.
- Go to Settings > Director Settings. The Systems Settings page opens.
- Select DNS Servers.
-
Define if the Action should be blocked if a blackhole address returned where Yes means the Director will consider the Action was blocked when the response matches an address in the Blackhole IP addresses field.
- Enter the Blackhole IP addresses or CIDR blocks that you are defining. This is a comma-delimited list of individual IP addresses or CIDR Ranges.
- Define if the Action should be blocked if the NXDomain returned where Yes means the Director will consider the Action was blocked when the response is the NXDOMAIN.
- Enter responses in the DNS query Action blocked for these responses field if your DNS servers return a response other than NXDOMAIN when blocking domain lookups. This will be a comma-delimited list of responses.
- Define if the DNS Query Action should be blocked if the request timed out by selecting Yes or No. This allows you to mark DNS timeouts as a blocked event, to align your job results with the response from your network technology providing a timeout value.
- Click Update Network Settings.