Real-time DNS snooping for dynamic FQDN policy updates

Domain Name System (DNS) snooping inspects and caches DNS responses in real-time. When you enable DNS snooping, the system captures DNS response packets as traffic traverses the network, extracts relevant DNS records, and builds a local cache mapping of Fully Qualified Domain Names (FQDNs) to IP addresses. The system keeps these mappings accurate and current for IPv4 or IPv6 traffic. Use this feature to implement real-time DNS mapping updates in environments with frequently changing DNS entries. Configuration is possible with relevant settings under security policies.