2 Replies Latest reply on Aug 16, 2010 1:34 AM by Alas2708

    Fully Qualified Domain Name firewall rule and akamai

      Hi,

       

      In a restrictive environment, where PCs do not have internet access, i need to authorize access to one specific fqdn (www.something.com) that is hosted on akamai (meaning the IP address that resolves can change very often)

       

      I have noticed that in this case, the 1st time the rule is matched, a name lookup is performed and the traffic is allowed. Once the akamai IP address has been updated, the traffic is no longer allowed, since a new name lookup is not performed and hIPS caches the old IP.

      This basically renders the FQDN functionality in the hIPS FW rules useless, unless there is a way to force it to perform a dns lookup with every connection to see if the IP changed.

       

      Any ideas?