This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Can I use DNS policies to target a range of addresses in a reverse IPv6 zone?
I've read the documentation; there's mention of "from a subnet" but not "to a subnet", or since this is a reverse zone, I guess the appropriate equivalent would be something more along the lines of an FQDN (wildcard); but again, no confirmation of that anywhere nor documentation about it. At least not yet, I'm still looking.
Say, if I had a big /48 and I wanted to single out something like a /100 (or something longer than a /64) to only-allow or deny to be resolved externally (thus source subnet would need evaluation as well); would DNS policies work in this case? Or would I need to create a zone specific for that range?
I also learned that only 8 zones can be created. I noticed just now in the dialogs while creating some test zones. Avoiding to create more zones just became priority.
If this is possible, could you give an example, please?
This is Windows Server 2022, BTW. Thanks!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 68%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELT%3C/text%3E%3C/svg%3E)
Hi,
Thank you for posting your query.
Kindly follow the steps provided below to resolve your issue.
This article describes how to configure a subnetted reverse lookup zone.
Applies to: Windows Server 2012 R2
Original KB number: 174419
Summary
Note
Creating delegated subnetted reverse lookup zones is not a trivial task. It is important to understand how DNS zones work before attempting to create subnetted reverse lookup zones. There are numerous notes throughout this document to which you should pay close attention. It is recommended that you first attempt these procedures in a test environment before deploying them on a live network because of the ease with which mistakes can occur during configuration.
Go to this link for your reference and other troubleshooting procedures https://learn.microsoft.com/en-us/troubleshoot/windows-server/networking/configure-subnetted-reverse-lookup-zone
Do not hesitate to message us if you need further assistance.
If the answer is helpful kindly click "Accept as Answer" and up vote it
This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
Comments have been turned off. Learn more