| CPC H04L 61/4511 (2022.05) [H04L 12/4633 (2013.01); H04L 63/0272 (2013.01)] | 20 Claims |
|
11. A method of split DNS tunnelling, comprising:
obtaining a plurality of Domain Name System (DNS) configuration policies, each DNS configuration policy of the plurality of DNS configuration policies indicating how to direct a DNS query according to one or more Internet Protocol (IP) addresses or Fully Qualified Domain Names (FQDNs);
obtaining a DNS query request on a first network interface adapter, the DNS query request being obtained from a DNS client and directed toward a particular FQDN;
determining whether the particular FQDN included with the DNS query request is included in the FQDNs or IP addresses associated with the plurality of DNS configuration policies;
responsive to a determination that the particular FQDN is not included in the FQDNs or IP addresses associated with the plurality of DNS configuration policies, directing the DNS query request to an alternative DNS destination;
generating, at the alternative DNS destination, a DNS response that includes an error code;
injecting the DNS response into a Transport Control Protocol (TCP)/IP stack;
sending the DNS response to the DNS client from which the DNS query request was obtained; and
obtaining an updated DNS query request on a second network interface adapter from the DNS client responsive to the DNS client receiving the DNS response.
|