How does the domain-name session acl work?Do I need to configure a DNS server for the controller?
You do not. A dns server is required to resolve fqdns of radius servers, for example.
If you have a domain name acl, the controller looks to see if a user receives a dns resolution for that domain name and puts the ip address in the table at "show firewall dns-names". It then would allow or block any traffic to or from those ip addresses based on your ACL.
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2021 Hewlett Packard Enterprise Development LPAll Rights Reserved.