Configuring the DNS trusted interface

About DNS trusted interface

This task enables the device to use only the DNS suffix and domain name server information obtained through the trusted interface. The device can then obtain the correct resolved IP address. This feature protects the device against attackers that act as the DHCP server to assign incorrect DNS suffix and domain name server address.

Restrictions and guidelines

You can configure a maximum of 128 DNS trusted interfaces.

Procedure

  1. Enter system view.

    system-view

  2. Specify the DNS trusted interface.

    dns trust-interface interface-type interface-number

    By default, no DNS trusted interface is specified.