Check the logs to see what is being blocked and why.
You probably need to enable the finance categories. Though you might need to whitelist some domains yourself if the list you're using isn't current or simply doesn't include whatever sites you're seeing blocked.
@ghostshell Amazons Prime changed yesterday for me it was the same for 3 years now it has .am in the domain. I can see them resolve in logs under DNS resolver it will show them pull and resolve every 5 mins.
@ageekhere you would need a list of approved bypass urls. Apple, some android, Windows updates. . . Etc
If(list.contains) something like that? You as an administrator must have granular control. As well as approve trusted sources. A GUI would work better with just a button that says Apple, Android, Windows, to help create lists for bypass traffic.
Why is items flagged as viruses coming from Google? I also checked some at Virus total and they have been flagged by other users of that site. Keylogger, and other items are marked found in links. It's amazing what the Netgate can find, and its also eye opening that they are coming from the cloud and not a random website.
FYI - if anyone else has this issue, the package is not supported by Netgate and there doesn't seem to be any obvious answer as to why this happens. I've given up now and gone with a DNS filtering solution instead of using Squid Guard.
It ignores the first one for multilevel subdomains and automatically applies the second one core.demo99.stage.domain1.icu
Yeah, multiple subdomains at the level of the star, which is the third: *.domain1.icu
So you can use it for any domain, which you can replace the star with any proper string in.
So it may work with stage.domain1.icu, but not with core.devph.stage.domain1.icu. This domain has five levels.
@mamema I hadn't seen this until after I posted my issue, but it's very similar.
I had added health checks for the backends to test them on a few things. Applying the checks worked, but disabling them afterwards held the previous health states and wouldn't release them (blocking all traffic) until a reboot.
It seems to be fairly random, but once it starts, new settings are saved but not applied until after a reboot.