2 Replies Latest reply on Aug 16, 2010 1:34 AM by Alas2708

    Fully Qualified Domain Name firewall rule and akamai



      In a restrictive environment, where PCs do not have internet access, i need to authorize access to one specific fqdn (www.something.com) that is hosted on akamai (meaning the IP address that resolves can change very often)


      I have noticed that in this case, the 1st time the rule is matched, a name lookup is performed and the traffic is allowed. Once the akamai IP address has been updated, the traffic is no longer allowed, since a new name lookup is not performed and hIPS caches the old IP.

      This basically renders the FQDN functionality in the hIPS FW rules useless, unless there is a way to force it to perform a dns lookup with every connection to see if the IP changed.


      Any ideas?