Blocking DNS Sites?

[Scott McCarthy]

I would like to add fake DNS records to my DNS server so
when computers on my network go to resolve addresses to
instant messenger host names such as cs.yahoo.com, the
DNS server returns a bogus address.

I thought the answer was to create a new zone (yahoo.com)
and add a host of cs and point it to a bogus IP - this
does work, however, when someone tries to go to
yahoo.com, it returns a page not found because there is
no www in the forward zone for yahoo.com.

Is there a way to point my users to a bogus IP for a host
in a domain name?

 

[Kevin D. Goodknecht [MVP]]

In

I would like to add fake DNS records to my DNS server so
when computers on my network go to resolve addresses to
instant messenger host names such as cs.yahoo.com, the
DNS server returns a bogus address.

I thought the answer was to create a new zone (yahoo.com)
and add a host of cs and point it to a bogus IP - this
does work, however, when someone tries to go to
yahoo.com, it returns a page not found because there is
no www in the forward zone for yahoo.com.

Is there a way to point my users to a bogus IP for a host
in a domain name?

create the fake zone with the FQDN of the server you want to block i.e.
"cs.yahoo.com"

 

[Guest]

Thanks man! That worked great! I never thought of doing
that. Again, sincerely, thank you.

 

[Jeff Cochran]

I would like to add fake DNS records to my DNS server so
when computers on my network go to resolve addresses to
instant messenger host names such as cs.yahoo.com, the
DNS server returns a bogus address.

I thought the answer was to create a new zone (yahoo.com)
and add a host of cs and point it to a bogus IP - this
does work, however, when someone tries to go to
yahoo.com, it returns a page not found because there is
no www in the forward zone for yahoo.com.

Is there a way to point my users to a bogus IP for a host
in a domain name?

Only if you want to deny the entire domain.

Jeff