Updated on 2024-01-24 GMT+08:00

Manually Creating a Domain Name Blacklist

Context

Huawei Qiankun delivers domain name blacklists to devices to block access from internal assets to specified domain names.

Typically, Huawei Qiankun automatically delivers domain name blacklists to devices after performing intelligent analysis on threat events. In addition, you can manually deliver domain name blacklists to a specified device based on the actual network environment or service requirements, improving the flexibility of security protection.

High-level tenant accounts have the permission to create, modify, and delete their own and lower-level tenant accounts' domain name blacklists.

Procedure

  1. Log in to the Huawei Qiankun console, and choose > My Services > Border Protection and Response.
  2. Click Blacklist and Whitelist in the menu bar.
  3. Choose Device IP Blacklist > Domain Name Blacklist, click Create, and set parameters.

    Domain names support regular expression match. For details about the rules, move the mouse cursor over the icon next to Domain Name.
    Figure 1 Creating a domain name blacklist

  4. Click Confirm to deliver the domain name blacklist to specified devices.

    Domain name blacklists are not immediately delivered to the DNS filtering profiles of the devices. Instead, Huawei Qiankun delivers domain name blacklists at an interval of 1 minute. By default, domain name blacklists are permanently valid.