@danielayer said in DNS Whitelist Project:
DNS Whitelist project
Easy answer : you can't.
Making a list with allowed DNS hosts is impossible as it will take unimaginable resources to store this file (or even creating it).
And the moment you have it, it's already outdated, as thousands of new hosts have been created, and some have expired.
"whitelisting" the Internet is like managing a list with all the phone numbers on planet earth.
The way doing things is using lists with sites you don't want to access 😊
( I know, I knew you meant to do that )
The good news is : these lists already exist.
That's one of the reasons why the pfBlockerng-devel pfSense project has been created.
Btw : small detail :
3fb52aa8-ffba-4b1c-b3a4-87e5f4a3ec92-image.png
Go for "Null blocking (logging).
Like this :
ca458a55-7caa-40b1-a421-1508be5a35c2-image.png
The idea of showing a web page that informs the user he wanted to visit a site that is blocked doesn't work for 99,99 % of all cases.
The 0,001 % are the sites that are still http (not https). The number tells you : they don't exist anymore.