domain-object – a family of commands for configuring objects that are collections of domain names

domain-object <name>

Go to the configuration submenu of domain object with name <name>.

ngfw> domain-object=['name']> rename <name>

Set new name <name> for this domain object.

ngfw> domain-object=['name']> description <description>

Set description for domain object. If the description contains spaces, you need to enclose it in quotation marks.

ngfw> domain-object=['name']> vrf <vrf-name>

Specify the name of the virtual routing and forwarding table to be used for resolving domains in the current object.

Example: ngfw> domain-object=['name']> vrf Management

ngfw> domain-object=['name']> dns-server-type (global|custom)

Set the type of DNS server. This type determines which DNS servers are used when resolving domain names: system DNS servers (if set to global) or the DNS specified by the user using the dns-server command (if set to custom).

Example: ngfw> domain-object=['name']> dns-server-type custom

ngfw> domain-object=['name']> dns-server <host>

Set DNS server for resolving domain names in the current object.

Example: ngfw> domain-object=['name']> dns-server 1.1.1.1

ngfw> domain-object=['name']> domain <fqdn>

Add domain name to the current domain object. A rule that includes a domain object with an empty list of domains triggers on any source/destination.

Example: ngfw> domain-object=['name']> domain google.com

ngfw> domain-object=['name']> no (vrf|dns-server|domain <host>)

Delete one of the previously added parameters for this domain object.

ngfw> show domain-object <name>

Show configuration for domain object with name <name>. This command outputs data in JSON format.

ngfw> show domain-objects

Show configurations of all domain objects. This command outputs data in JSON format.

Example output:

ngfw> show domain-objects
{
  "ngfw-fqdn:fqdn": {
    "domain-object": [      {
        "id": "5ce5bcdd-6fb5-4c6d-94e5-260131e2c67a",
        "name": "xxx",
        "description": "hello world",
        "vrf": 0,
        "dns-server": "8.8.8.8",
        "domains": [
          "google.com",
          "ya.ru",
          "foo.bar"        ],
        "fallback-action": "any"      },      {
        "id": "64f991d2-604b-41d7-a64d-b61fc98491ef",
        "name": "yyy",
        "vrf": 1,
        "dns-server": "localhost",
        "domains": [
          "foo.bar"        ],
        "fallback-action": "empty"      }    ]  }
}

ngfw> show domain-cache

Show cached domain names and their IP addresses.

Example output:

ngfw> show domain-cache
{
  "ngfw-fqdn:fqdn": {
    "fqdn-cache": {
      "fqdn-objects": [        {
          "id": "002fbbc0-3ce6-4ff2-8ede-5f86e22054c4",
          "domains": [            {
              "name": "cloudflare.com",
              "ip": [
                "1.1.1.1"
              ]            },            {
              "name": "yandex.ru",
              "ip": [
                "3.3.3.3"
              ]            },            {
              "name": "google.com",
              "ip": [
                "8.8.8.8",
                "9.9.9.9"
              ]            }          ]        }      ]    }  }
}

| Prev | Home | Next |