record:rpz:cname:clientipaddress : DNS RPZ CNAMEClientIpAddress record object.

A DNS RPZ CNAMEClientIpAddress record represents different RPZ rules, depending on the value of the canonical name. This record represents Passthru IP Address Rule, Block IP Address (No Such Domain) Rule, Block IP Address (No Data) Rule.

This record represents the IP trigger policy. It matches IP addresses that would otherwise appear in A and AAAA records in the “answer” section of a DNS response.

If canonical name is empty, it is a Block IP Address (No Such Domain) Rule.

If canonical name is an asterisk, it is a Block IP Address (No Data) Rule.

If canonical name is equal to ‘rpz-passthru’, it is a Passthru IP Address Rule.

You cannot create Substitute (IPv4/IPv6 Address) Rule for this record see the record.rpz.a.ipaddress object or the record.rpz.aaaa.ipaddress object for details.

Object Reference

References to record:rpz:cname:clientipaddress are object references. The name part of a Response Policy Zone (RPZ) CNAMEClientIpAddress record object reference has the following components:

  • Name of the record
  • Name of the view

Example: record:rpz:cname:clientipaddress/ZG5zLmJpbmRfY25h :some.name.com/myview

Restrictions

The object does not support the following operations:

  • Permissions

The object cannot be managed on Cloud Platform members.

Fields

These fields are actual members of the object; thus, they can be requested by using _return_fields, if the fields are readable.

The basic version of the object contains the field(s): canonical, name, view.

The following fields are required to create this object:

Field Notes
canonical  
name  
rp_zone  

canonical

canonical

The canonical name in FQDN format. This value can be in unicode format.

Type

String.

Values with leading or trailing white space are not valid for this field.

Create

The field is required on creation.

Search

The field is available for search via

  • ‘:=’ (case insensitive search)
  • ‘=’ (exact equality)
  • ‘~=’ (regular expression)

Notes

The canonical is part of the base object.

comment

comment

The comment for the record; maximum 256 characters.

Type

String.

Values with leading or trailing white space are not valid for this field.

Create

The default value is empty.

Search

The field is available for search via

  • ‘:=’ (case insensitive search)
  • ‘=’ (exact equality)
  • ‘~=’ (regular expression)

disable

disable

Determines if the record is disabled or not. False means that the record is enabled.

Type

Bool.

Create

The default value is False.

Search

The field is not available for search.

extattrs

extattrs

Extensible attributes associated with the object.

For valid values for extensible attributes, see the following information.

Type

Extensible attributes.

This field allows +/- to be specified as part of the field name when updating the object, see the following information.

Create

The default value is empty.

Search

For how to search extensible attributes, see the following information.

is_ipv4

is_ipv4

Indicates whether the record is an IPv4 record. If the return value is “true”, it is an IPv4 record. Ohterwise, it is an IPv6 record.

Type

Bool.

Search

The field is not available for search.

Notes

The is_ipv4 cannot be updated.

is_ipv4 cannot be written.

name

name

The name for a record in FQDN format. This value cannot be in unicode format.

Type

String.

Values with leading or trailing white space are not valid for this field.

Create

The field is required on creation.

Search

The field is available for search via

  • ‘:=’ (case insensitive search)
  • ‘=’ (exact equality)
  • ‘~=’ (regular expression)

Notes

The name is part of the base object.

rp_zone

rp_zone

The name of a response policy zone in which the record resides.

Type

String.

Create

The field is required on creation.

Search

The field is not available for search.

ttl

ttl

The Time To Live (TTL) value for record. A 32-bit unsigned integer that represents the duration, in seconds, for which the record is valid (cached). Zero indicates that the record should not be cached.

Type

Unsigned integer.

Create

The default value is empty.

Search

The field is not available for search.

Notes

ttl is associated with the field use_ttl (see use flag).

use_ttl

use_ttl

Use flag for: ttl

Type

Bool.

Create

The default value is False.

Search

The field is not available for search.

view

view

The name of the DNS View in which the record resides. Example: “external”.

Type

String.

Values with leading or trailing white space are not valid for this field.

Create

The default value is The default DNS view.

Search

The field is available for search via

  • ‘=’ (exact equality)

Notes

The view is part of the base object.

zone

zone

The name of the zone in which the record resides. Example: “zone.com”. If a view is not specified when searching by zone, the default view is used.

Type

String.

Values with leading or trailing white space are not valid for this field.

Search

The field is available for search via

  • ‘=’ (exact equality)

Notes

The zone cannot be updated.

zone cannot be written.

Fields List

Field Type Req R/O Base Search
canonical String Y N Y : = ~
comment String N N N : = ~
disable Bool N N N N/A
extattrs Extattr N N N ext
is_ipv4 Bool N Y N N/A
name String Y N Y : = ~
rp_zone String Y N N N/A
ttl Unsigned int N N N N/A
use_ttl Bool N N N N/A
view String N N Y =
zone String N Y N =