DNS Resolver
-
Hello, is it advisable that the Domain override function can use to blocked sites?
-
@antgalla sure but not really optimal way to do it - because its going to cause queries to whatever you put in there as the override.. And it will just comeback fail..
If you don't want say anything.blahblah.tld to resolve it would be better to either block that in pfblocker or just create a block like this.
This would return that record doesn't exist, ie NX
You could also do a redirect that hands it a bad IP say 0.0.0.0 or 127.0.0.1 but no a domain override wouldn't be how I would do it.
-
S SteveITS referenced this topic on
-
Is this under DNSBL function or IP?
-
@antgalla I do believe pfblocker can be set to return NX, but you can also just do it in unbound under custom options like posted.
I am not up to speed on all the features of pfblocker, I just use it for its fancy lists that I use in my own rules.
