Whitelisting guidance
-
Hi all,
adding .domain_name.tld to the DNSBL whitelist does not successfully whitelist certain domains. I'm guessing this is because there is still an IP block or because there are other domains called from the initial browser GET that are still blacklisted.
Can someone help me figure out how can I identify these domains and how I can successfully gain access to critical sites?
I understand that this could be a huge undertaking depending on the site I need to whitelist, but I'd like to understand the mechanism for doing it. Once I have that, I will do the leg work and figure out if I'm willing to follow-through with it.
-
@thewismit said in Whitelisting guidance:
adding .domain_name.tld to the DNSBL whitelist does not successfully whitelist certain domains.
Hi,
yes it is a form of behavior
(since everything can be broken down lower and lower = DNS)first, consider what BLKs are have
- as a colleague here recently said on the forum, pfBlockerNG- devel starts at the first moment without blocking, /I quote: @Gertjan
Careful feed selection is the first way
Cats bury it so they can't see it!
(You know what I mean if you have a cat) -
@daddygo I think I understand. I need to curate the feeds? Is there a way to identify which feed I should be working with or is that a manual process?
-
@thewismit said in Whitelisting guidance:
I need to curate the feeds?
definitely
the pfBlockerNG installation (app) includes predefined lists, but this is everyone's individual taste and goal oriented...
Like:
+++edit:
of course you can use multiple lists, but like I said, define your goal (in addition to what is specified in the DEV or not pre-installed)
always be careful with these, as it can be annoying to install a senseless lists
+++edit2:
one more thought, if you have to do too many things on a whitelist, think about whether you choose a good BLK list(s)?
