Comments (5)
Thanks for the post. How are you testing it? If you are testing on the same server then your source IP will be 127.0.0.1
which will match with the localEndPointGroupMap
entry and your query will be mapped to the bypass
group so nothing will be blocked.
from dnsserver.
Yes, I'm testing on the same server. I tried adding "example.com" to the "blocked" field in the bypass group, flushed the DNS cache on my computer and restarted my browser (Edge) but it is still not blocking. I have also tried to individually remove values inside of "localEndPointGroupMap", but this also has not fixed the issue.
from dnsserver.
Yes, I'm testing on the same server. I tried adding "example.com" to the "blocked" field in the bypass group, flushed the DNS cache on my computer and restarted my browser (Edge) but it is still not blocking. I have also tried to individually remove values inside of "localEndPointGroupMap", but this also has not fixed the issue.
The app responds based on client IP address. So you need to test it from the client side only. If you test it on the same server then you will get different results.
If you are testing on the same server then always use the DNS Client tool which will give you better output.
If you are testing from a client then use tools like nslookup
to test the domain name. Do not use web browser to test this since they will cache things and make it difficult to test.
The DNS server's cache is not used by the blocking app so do not flush the cache as it will cause the DNS server to do all the work again to fill up the cache which will cause performance degradation for some time.
The app comes with a example config and its is expected that you will edit the config as per your setup. So you need to remove/change things that are not required.
Share the final config you have in the app and the result of your tests.
from dnsserver.
Note that you should use the Advanced Blocking app only if you need to have different groups for different clients. If you do not want to setup groups then just use the DNS server's built-in blocking feature in Settings instead of using this app.
from dnsserver.
I'm not sure what exactly happened, but setting it to this configuration blocked example.com, even though an identical configuration did not previously. The final configuration is below. Will keep in mind your recommendations, but I needed to use regex. Thanks for the support!
{
"enableBlocking": true,
"blockListUrlUpdateIntervalHours": 24,
"localEndPointGroupMap": {
"127.0.0.1": "bypass",
"192.168.10.2:53": "bypass"
},
"networkGroupMap": {
"192.168.10.20": "kids",
"0.0.0.0/0": "everyone",
"[::]/0": "everyone"
},
"groups": [
{
"name": "everyone",
"enableBlocking": true,
"allowTxtBlockingReport": true,
"blockAsNxDomain": true,
"blockingAddresses": [
"0.0.0.0",
"::"
],
"allowed": [],
"blocked": [
"example.com"
],
"allowListUrls": [],
"blockListUrls": [
"https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts"
],
"allowedRegex": [],
"blockedRegex": [
"^ads\."
],
"regexAllowListUrls": [],
"regexBlockListUrls": [],
"adblockListUrls": []
},
{
"name": "kids",
"enableBlocking": true,
"allowTxtBlockingReport": true,
"blockAsNxDomain": true,
"blockingAddresses": [
"0.0.0.0",
"::"
],
"allowed": [],
"blocked": [],
"allowListUrls": [],
"blockListUrls": [
{
"url": "https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/social/hosts",
"blockAsNxDomain": false,
"blockingAddresses": [
"192.168.10.2"
]
}
],
"allowedRegex": [],
"blockedRegex": [],
"regexAllowListUrls": [],
"regexBlockListUrls": [],
"adblockListUrls": []
},
{
"name": "bypass",
"enableBlocking": true,
"allowTxtBlockingReport": true,
"blockAsNxDomain": true,
"blockingAddresses": [
"0.0.0.0",
"::"
],
"allowed": [],
"blocked": ["example.com"],
"allowListUrls": [],
"blockListUrls": [],
"allowedRegex": [],
"blockedRegex": [],
"regexAllowListUrls": [],
"regexBlockListUrls": [],
"adblockListUrls": []
}
]
}
from dnsserver.
Related Issues (20)
- [Feature Request] Add serve-expired option HOT 11
- Help, Looking for DHCP scope config file location HOT 2
- Mixed Forwarders HOT 2
- Proxy Seems to time out. HOT 2
- HTTP to HTTPS redirection using wrong hostname HOT 1
- how to support nslookup to another network HOT 1
- Failover App does not what I expect. HOT 1
- Allow / Block List URLs do not work as expected HOT 4
- [Feature Request] Allow specific domains/records to bypass cache HOT 3
- [QUESTION] What to do to run dns using podman? HOT 3
- malware warning HOT 8
- Feature Request: Emulating bind9 filter-aaaa HOT 1
- RFC 2136 Unable To Delete Entries on Conditional Forwarding Zone HOT 3
- Server fail due to incorrect DNSSEC failure HOT 2
- Can you provide doc for setting up Technitium DNS Server. Because I still cannot get the right DNS record even using DNS-over-TOR. HOT 2
- SOA Record Root HOT 4
- Request geosite support HOT 2
- How to setup DNS name resolver using Technitium first, if not find, then use 8.8.8.8 HOT 4
- HTTP to HTTPS redirection can brick the web interface HOT 2
- Feature request: ability to sort DNS entries by "last used" HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from dnsserver.