Unotelly DNS Domain Override with unbound - IS IT POSSIBLE?



  • Hello,

    Another newbie here to destroy :-)

    I am just starting an adventure with pfSense. So far so good, I am learning a LOT by reading and getting the input from this awesome community.

    Now to the point, I am trying to do the following:

    https://gundersen.net/american-netflix-on-ipad-and-chromecast-without-vpn-using-pfsense/

    What we want is to divert only relevant lookups to the proxy provider’s DNS. This is accomplished in pfSense by adding a domain override in the DNS Forwarder. The web gui for the domain override adds wildcards, so an entry for netflix.com will also cover all subdomains. We accomplish our task by adding the following to Services | DNS Forwarder | Domain Overrides and making sure the box “Query DNS servers sequentially” is checked:

    netflix.com 208.122.23.23
    netflix.net 208.122.23.23
    rhapsody.com 208.122.23.23
    pandora.com 208.122.23.23
    hulu.com 208.122.23.23

    The IP address is for the DNS server of unblock-us. Only the first two lines are necessary for Netflix, the others are for Rhapsody, Pandora and Hulu.

    with DNS Resolver instead of DNS Forwarder and Unotelly instead of "unblock-us".
    After two days of monkeying around, it is time to pull the white flag and ask the dragons.

    Here the DNS Resolver configuration:


    and here the SYSTEM overview:

    If I put the Unotelly DNS 176.67.169.172 in the windows NIC IPv4 DNS Settings everything works (I can watch the BBC online streaming):

    
    C:\Users\User>nslookup bbc.co.uk
    Server:  exit17.torexit.info
    Address:  176.67.169.172
    
    Name:    www.bbc.co.uk
    Addresses:  31.3.246.202
              46.23.67.190
    Aliases:  bbc.co.uk
    
    

    Now I remove it from the windows NIC configuration and I got

    C:\Users\User>nslookup bbc.co.uk
    Server:  UnKnown
    Address:  172.27.38.1
    
    Non-authoritative answer:
    Name:    www.bbc.co.uk
    Addresses:  31.3.246.202
              46.23.67.190
    Aliases:  bbc.co.uk
    
    

    but no success (not able to watch the BBC online streaming as before)

    Here the unbound log (verbose level 4? I hope it is enough…. ???) after restarting it:

    Feb 20 19:23:10 	unbound: [62934:2] debug: cache memory msg=66072 rrset=66072 infra=2600 val=66280
    Feb 20 19:23:10 	unbound: [62934:2] debug: no config, using builtin root hints.
    Feb 20 19:23:10 	unbound: [62934:2] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:2] info: DelegationPoint<bbc.co.uk.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:2] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:2] info: DelegationPoint<netflix.com.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:2] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:2] info: DelegationPoint<skygo.sky.it.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:3] debug: cache memory msg=66072 rrset=66072 infra=2600 val=66280
    Feb 20 19:23:10 	unbound: [62934:3] debug: no config, using builtin root hints.
    Feb 20 19:23:10 	unbound: [62934:3] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:3] info: DelegationPoint<bbc.co.uk.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:3] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:3] info: DelegationPoint<netflix.com.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:3] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:3] info: DelegationPoint<skygo.sky.it.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:1] debug: cache memory msg=66072 rrset=66072 infra=2600 val=66280
    Feb 20 19:23:10 	unbound: [62934:1] debug: no config, using builtin root hints.
    Feb 20 19:23:10 	unbound: [62934:1] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:1] info: DelegationPoint<bbc.co.uk.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:1] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:1] info: DelegationPoint<netflix.com.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:1] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:1] info: DelegationPoint<skygo.sky.it.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:4] debug: cache memory msg=66072 rrset=66072 infra=2600 val=66280
    Feb 20 19:23:10 	unbound: [62934:4] debug: no config, using builtin root hints.
    Feb 20 19:23:10 	unbound: [62934:5] debug: cache memory msg=66072 rrset=66072 infra=2600 val=66280
    Feb 20 19:23:10 	unbound: [62934:5] debug: no config, using builtin root hints.
    Feb 20 19:23:10 	unbound: [62934:4] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:4] info: DelegationPoint<bbc.co.uk.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:4] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:4] info: DelegationPoint<netflix.com.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:4] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:5] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:5] info: DelegationPoint<bbc.co.uk.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:4] info: DelegationPoint<skygo.sky.it.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:5] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:5] info: DelegationPoint<netflix.com.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:5] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:5] info: DelegationPoint<skygo.sky.it.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:0] debug: autotrust probe timer callback
    Feb 20 19:23:10 	unbound: [62934:0] info: start of service (unbound 1.5.1).
    Feb 20 19:23:10 	unbound: [62934:0] debug: cache memory msg=66072 rrset=66072 infra=2600 val=66280
    Feb 20 19:23:10 	unbound: [62934:0] debug: no config, using builtin root hints.
    Feb 20 19:23:10 	unbound: [62934:0] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:0] info: DelegationPoint<bbc.co.uk.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:0] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:0] info: DelegationPoint<netflix.com.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS
    Feb 20 19:23:10 	unbound: [62934:0] debug: ip4 176.67.169.172 port 53 (len 16)
    Feb 20 19:23:10 	unbound: [62934:0] info: DelegationPoint<skygo.sky.it.>: 0 names (0 missing), 1 addrs (0 result, 1 avail) parentNS</skygo.sky.it.></netflix.com.></bbc.co.uk.></skygo.sky.it.></netflix.com.></skygo.sky.it.></bbc.co.uk.></netflix.com.></bbc.co.uk.></skygo.sky.it.></netflix.com.></bbc.co.uk.></skygo.sky.it.></netflix.com.></bbc.co.uk.></skygo.sky.it.></netflix.com.></bbc.co.uk.>
    

    and here after the```
    nslookup bbc.co.uk

    
    

    Feb 20 19:25:08 unbound: [62934:2] debug: close fd 36
    Feb 20 19:25:08 unbound: [62934:2] debug: close of port 14418
    Feb 20 19:25:08 unbound: [62934:2] debug: svcd callbacks end
    Feb 20 19:25:08 unbound: [62934:2] debug: cache memory msg=73925 rrset=92193 infra=15564 val=70979
    Feb 20 19:25:08 unbound: [62934:2] info: 1.000000 2.000000 1
    Feb 20 19:25:08 unbound: [62934:2] info: 0.065536 0.131072 2
    Feb 20 19:25:08 unbound: [62934:2] info: 0.032768 0.065536 1
    Feb 20 19:25:08 unbound: [62934:2] info: 0.016384 0.032768 1
    Feb 20 19:25:08 unbound: [62934:2] info: 0.002048 0.004096 1
    Feb 20 19:25:08 unbound: [62934:2] info: lower(secs) upper(secs) recursions
    Feb 20 19:25:08 unbound: [62934:2] info: [25%]=0.024576 median[50%]=0.065536 [75%]=0.114688
    Feb 20 19:25:08 unbound: [62934:2] info: histogram of recursion processing times
    Feb 20 19:25:08 unbound: [62934:2] info: average recursion processing time 0.218997 sec
    Feb 20 19:25:08 unbound: [62934:2] info: mesh_run: end 0 recursion states (0 with reply, 0 detached), 0 waiting replies, 6 recursion replies sent, 0 replies dropped, 0 states jostled out
    Feb 20 19:25:08 unbound: [62934:2] debug: query took 0.047729 sec
    Feb 20 19:25:08 unbound: [62934:2] info: send_udp over interface: 172.27.38.1
    Feb 20 19:25:08 unbound: [62934:2] debug: mesh_run: validator module exit state is module_finished
    Feb 20 19:25:08 unbound: [62934:2] debug: val handle processing q with state VAL_FINISHED_STATE
    Feb 20 19:25:08 unbound: [62934:2] info: chased extract ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 0 ;; flags: qr ra ; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: www.bbc.co.uk. IN AAAA ;; ANSWER SECTION: ;; AUTHORITY SECTION: ;; ADDITIONAL SECTION: ;; MSG SIZE rcvd: 31
    Feb 20 19:25:08 unbound: [62934:2] info: no signer, using www.bbc.co.uk. TYPE0 CLASS0
    Feb 20 19:25:08 unbound: [62934:2] debug: validator classification cnamenoanswer
    Feb 20 19:25:08 unbound: [62934:2] debug: val handle processing q with state VAL_INIT_STATE
    Feb 20 19:25:08 unbound: [62934:2] info: validator: chased to www.bbc.co.uk. AAAA IN
    Feb 20 19:25:08 unbound: [62934:2] debug: val handle processing q with state VAL_FINISHED_STATE
    Feb 20 19:25:08 unbound: [62934:2] info: chased extract ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 0 ;; flags: qr ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: bbc.co.uk. IN AAAA ;; ANSWER SECTION: bbc.co.uk. 300 IN CNAME www.bbc.co.uk. ;; AUTHORITY SECTION: ;; ADDITIONAL SECTION: ;; MSG SIZE rcvd: 45
    Feb 20 19:25:08 unbound: [62934:2] info: no signer, using bbc.co.uk. TYPE0 CLASS0
    Feb 20 19:25:08 unbound: [62934:2] debug: validator classification cname
    Feb 20 19:25:08 unbound: [62934:2] debug: val handle processing q with state VAL_INIT_STATE
    Feb 20 19:25:08 unbound: [62934:2] debug: validator: nextmodule returned
    Feb 20 19:25:08 unbound: [62934:2] info: validator operate: query bbc.co.uk. AAAA IN
    Feb 20 19:25:08 unbound: [62934:2] debug: validator[module 0] operate: extstate:module_wait_module event:module_event_moddone
    Feb 20 19:25:08 unbound: [62934:2] debug: mesh_run: iterator module exit state is module_finished
    Feb 20 19:25:08 unbound: [62934:2] debug: prepending 1 rrsets
    Feb 20 19:25:08 unbound: [62934:2] info: finishing processing for bbc.co.uk. AAAA IN
    Feb 20 19:25:08 unbound: [62934:2] debug: iter_handle processing q with state FINISHED RESPONSE STATE
    Feb 20 19:25:08 unbound: [62934:2] info: query response was nodata ANSWER
    Feb 20 19:25:08 unbound: [62934:2] debug: iter_handle processing q with state QUERY RESPONSE STATE
    Feb 20 19:25:08 unbound: [62934:2] info: incoming scrubbed packet: ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 0 ;; flags: qr aa ; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: www.bbc.co.uk. IN AAAA ;; ANSWER SECTION: ;; AUTHORITY SECTION: ;; ADDITIONAL SECTION: ;; MSG SIZE rcvd: 31
    Feb 20 19:25:08 unbound: [62934:2] info: reply from <bbc.co.uk.> 176.67.169.172#53
    Feb 20 19:25:08 unbound: [62934:2] info: response for bbc.co.uk. AAAA IN
    Feb 20 19:25:08 unbound: [62934:2] info: scrub for bbc.co.uk. NS IN
    Feb 20 19:25:08 unbound: [62934:2] debug: process_response: new external response event
    Feb 20 19:25:08 unbound: [62934:2] info: iterator operate: chased to www.bbc.co.uk. AAAA IN
    Feb 20 19:25:08 unbound: [62934:2] info: iterator operate: query bbc.co.uk. AAAA IN
    Feb 20 19:25:08 unbound: [62934:2] debug: iterator[module 1] operate: extstate:module_wait_reply event:module_event_reply
    Feb 20 19:25:08 unbound: [62934:2] debug: mesh_run: start
    Feb 20 19:25:08 unbound: [62934:2] debug: worker svcd callback for qstate 0x805235080
    Feb 20 19:25:08 unbound: [62934:2] debug: svcd callbacks start
    Feb 20 19:25:08 unbound: [62934:2] debug: measured roundtrip at 24 msec
    Feb 20 19:25:08 unbound: [62934:2] debug: outnet handle udp reply</bbc.co.uk.>

    
    Please don´t tell me it was just a simple click somewhere…
    
    This is my ipconfig:
    
    

    Windows IP Configuration

    Ethernet adapter Local Area Connection:

    Media State . . . . . . . . . . . : Media disconnected
      Connection-specific DNS Suffix  . : localdomain

    Wireless LAN adapter Wireless Network Connection:

    Connection-specific DNS Suffix  . : localdomain
      Link-local IPv6 Address . . . . . : fe80::48b8:8cb3:7e23:f536%12
      IPv4 Address. . . . . . . . . . . : 172.27.38.10
      Subnet Mask . . . . . . . . . . . : 255.255.255.0
      Default Gateway . . . . . . . . . : 172.27.38.1

    Ethernet adapter Bluetooth Network Connection:

    Media State . . . . . . . . . . . : Media disconnected
      Connection-specific DNS Suffix  . :

    Tunnel adapter isatap.localdomain:

    Media State . . . . . . . . . . . : Media disconnected
      Connection-specific DNS Suffix  . : localdomain

    Tunnel adapter isatap.{9043406D-2FEF-44F0-B65D-8E4BA096F1A4}:

    Media State . . . . . . . . . . . : Media disconnected
      Connection-specific DNS Suffix  . :

    Tunnel adapter Teredo Tunneling Pseudo-Interface:

    Connection-specific DNS Suffix  . :
      IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:30b5:3a66:53e4:d9f5
      Link-local IPv6 Address . . . . . : fe80::30b5:3a66:53e4:d9f5%16
      Default Gateway . . . . . . . . . : ::

    Thanks in advance!
    
    PS: Of course I tried the DNS Forwarder instead exactely as suggested in the link above, but still no joy.


  • Your settings look OK. You can try selecting "Enable forwarding mode" in the Unbound settings, but I do not think that will make any difference at all.
    My domain overrides work in Unbound with "Enable forwarding mode" on or off.

    Maybe when actually playing things, bbc.co.uk actually looks to some other name that does not end in bbc.co.uk to source the video stream, and thus the lookup of that name is not being sent to the override DNS server. Just for fun you could gradually override bigger things like "co.uk", "uk", "com"… to see if it comes good at some point.



  • Thx!

    Sorry for the follow up phil.davis, but for some satanic reasons it is still not working. Unotelly support could not help me because they says pfSense is too complicated for them  ;D.
    Anyway with NetSetMan we can survive pretty well. I think there are some exoteric reasons that need some WireShark invetigation… If I will have the time I will follow up on this. It could be an interesting issue to analyze.

    Thanks a lot BTW...

    Z


  • Rebel Alliance Global Moderator

    yeah you need to figure out where its going to actually get the stream, and place an over ride for that.

    I would think, you could do a simple sniff on the client and see what exact dns queries its doing.



  • I have a similar problem with Netflix and Unblock-Us.  If I use dnsmasq it works, if I use unbound, Netflix fails with an error that there is a network problem.  DNS lookups in both cases resolve properly.



  • did anyone ever figure this out. …



  • Bringing this up again to see if anyone figured out a solution?



  • Same here, I also use UnoTelly with PFSense for about 2 years now.

    I use DNS Forwarder with no problem with more than 40 domains overridden.

    I like to switch to DNS Resolver (so I can use PFBLOCKER and EasyList :)), but the DOMAIN OVERRIDE section do NOT work.

    I think is a problem with the Resolver.

    Any ideas?


  • Rebel Alliance Global Moderator

    The domain over ride section works just fine in resolver…  But overriding a domain like bbc.co.uk is not going to get iplayer working..

    There are multiple multiple domain names in play in getting iplayer to work.. If you going to want to use the resolver you would have to override all of them..

    If your plan is to use a dns server to circumvent regional restrictions, and use actual resolver for everything else then your going to have to know all the domains in question so you can send them to your dns you want to use to circumvent stuff and get the ips like your in that region.

    Your best best in doing something like this use a forwarder, or use the specific dns you want on the client directly.  A resolver is completely different than how a forwarder works... But the override works as it should.. That is not the problem here..

    Attached is just a sample of the domains that got queried when I fired up iplayer..




  • Dear johnpoz,

    Thanks for your answer.

    I do know all the domains that I what to override (I have in the override list all 62 domains).

    When using Forwarder, the query for any domain in the list is routed to Unotelly DNS service an effectively I have no problem unblocking my geo-restriction and I can see all the US and UK services from Chile.

    When I switch to Resolver I have NO DNS resolution for any domain in the override list, but any other domain not in the list work OK.

    I will be doing more testing tonight.


  • Rebel Alliance Global Moderator

    Where and what are you putting in your override.. And its in the RIGHT section?  I have seen it multiple multiple times.. Using the resolver and placing the overrides in forwarder section, or placing in the resolver when using the forwarder.

    Its simple enough to verify that domain overrides are working..  So for example I put a override for google.com in my resolver..  I then point it to a nameserver I have running 192.168.9.19 I have on my local network that created A record for www.google.com

    When I query my resolver on 192.168.9.253, it goes and asks 192.168.9.19 for www.google.com, it gets an answer and then sends that answer to my machine 192.168.9.100

    If its not working for you, then your doing something wrong.  Or are missing an override you need?  But it is very very simple to validate functionality of such a simple process.




  • Just tried to give this a go as well. I wanted to start with the simpler case, where i just see if I can make the www.unblock-us.com website realize that I use their DNS server. If I get a green "Configure your Device" on the front page, then it must be right. If its still white, then the domain override is not working.

    Using wireshark and looking for DNS queries, I saw that www.unblock-us.com looked up four records:

    check.unblock-us.com
    realcheck.unblock-us.com
    resources.unblock-us.com
    x.checkx.unblock-us.com

    So, I entered Domain overrides to 208.122.23.22 for the four as well as www.unblock-us.com and it works.

    My guess would be that this will require some very extensive server lists - I wish we could have wildcards !

    Just my 2 cents worth.

    Br
    Janus


  • Rebel Alliance Global Moderator

    wildcard in what sense?

    you could use 1 override for unblock-us.com in your above case.  But where you run into a problem is delegation. or Cnames even.

    Its quite possible that subdomain checkx.unblock-us.com is a different name server that unblock-us.com sends back, so now your resolver would go and check that nameserver via a completely different domain.  I for example could setup a NS for checkx.unblock-us.com that is ns1.otherdomain.tld… Or maybe realcheck.unblock-us.com points to a cname that is realcheck.someotherdomain.tld, etc. etc..

    If your goal is circumvention of restrictions based upon source of dns query then you much better off using a forwarder or just pointing a client directly to whatever circumvention dns you want to use vs overrides in your resolver setup to point all domains that might come into play to your circumvention dns.



  • Yes, it is possible with the “DNS Resolver” (unbound) service.

    First, check this post out https://getflix.zendesk.com/hc/en-gb/articles/201056954-Can-I-selectively-use-Getflix-DNS-servers-for-specific-domains-

    My config is as follows:
    Enable: Checked
    Listen port: Empty
    Network Interfaces: LAN, Localhost
    Outgoing Network Interfaces: WAN
    DNSSEC: Unchecked
    DNS Query Forwarding: Unchecked
    DHCP Registration: Checked
    Static DHCP: Unchecked
    Advanced (this is a list I have composed from different online forum posts):

    
    forward-zone:
    name: "a.verdict.abc.go.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "a248.e.akamai.net"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "abc.go.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "activity.flux.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "adsatt.abc.go.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "android-api-us.crackle.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "android.nccp.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "api-global.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "api-us.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "api.au.mog.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "api.crackle.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "api.crunchyroll.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "api.mog.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "api.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "api.watchabc.go.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "api.watchdisneyxd.go.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "api.wipmania.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "appboot.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "appletv.crackle.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "bbc.co.uk"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "beta.abc.go.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "c.brightcove.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "cbp-us.nccp.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "cbp.nccp.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "cbs.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "cdn.abc.go.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "cdn.media.abc.go.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "cdn.wwtv.warnerbros.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "cdn2.mog.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "channel4.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "content-us-east-1.uplynk.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "content.uplynk.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "crackle.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "cwtv.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "ext.last.fm"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "fox.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "geo.yahoo.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "history.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "hls.video.query.yahoo.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "hulu.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "huluim.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "iheart.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "images0.mog.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "images1.mog.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "images2.mog.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "images3.mog.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "ios-api-us.crackle.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "ios-api.crackle.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "ios.nccp.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "itv.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "j.maxmind.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "last.fm"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "link.theplatform.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "ll.static.abc.go.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "logger.mog.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "media.cwtv.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "media.mtvnservices.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "mediaserver-sv5-rt-1.pandora.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "mog.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "moviecontrol.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "movies.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "movies1.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "mtv.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "mvid.yql.yahoo.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "mylifetime.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "nbc.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "nccp-nrdp-31.cloud.netflix.net"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "nintendo.nccp.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "nrdp.nccp.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "once.unicornmedia.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "pandora.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "pdl.warnerbros.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "play.hulu.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "playstation.nccp.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "ps3-api-us.crackle.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "release.theplatform.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "roku-api.crackle.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "s.hulu.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "sb.vevo.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "screen.yahoo.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "search.mog.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "secure.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "share.mog.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "signup.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "site.abc.go.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "static.discoverymedia.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "static.east.abc.go.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "support.mog.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "theview.abc.go.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "thewb.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "token.dramafever.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "tuner.pandora.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "turntable.fm"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "tv.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "udat.mtvnservices.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "uiboot.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "urs.pbs.org"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "vevo.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "video.dl.playstation.net"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "video.nbc.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "video.nbcuni.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "video.pbs.org"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "video.syfy.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "videoplayer.vevo.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "vudu.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "ws.audioscrobbler.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.crackle.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.crunchyroll.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.cwtv.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.dramafever.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.iheart.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.last.fm"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.logotv.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.mog.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.mtv.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.pandora.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.rdio.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.smithsonianchannel.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.spike.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.thewb.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.vevo.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "www.vh1.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "xbox.nccp.netflix.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "xboxone-api-us.crackle.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    forward-zone:
    name: "zattoo.com"
    forward-addr: 54.93.173.153
    forward-addr: 46.246.29.69
    
    

    Host Overrides: Empty
    Domain Overrides: Empty

    That did the trick for me.


  • Rebel Alliance Global Moderator

    Exactly what I was saying, that is a LONG list of domains your forwarding, ie overrides..