Unotelly DNS Domain Override with unbound - IS IT POSSIBLE?
-
Thx!
Sorry for the follow up phil.davis, but for some satanic reasons it is still not working. Unotelly support could not help me because they says pfSense is too complicated for them ;D.
Anyway with NetSetMan we can survive pretty well. I think there are some exoteric reasons that need some WireShark invetigation… If I will have the time I will follow up on this. It could be an interesting issue to analyze.Thanks a lot BTW...
Z
-
yeah you need to figure out where its going to actually get the stream, and place an over ride for that.
I would think, you could do a simple sniff on the client and see what exact dns queries its doing.
-
I have a similar problem with Netflix and Unblock-Us. If I use dnsmasq it works, if I use unbound, Netflix fails with an error that there is a network problem. DNS lookups in both cases resolve properly.
-
did anyone ever figure this out. …
-
Bringing this up again to see if anyone figured out a solution?
-
Same here, I also use UnoTelly with PFSense for about 2 years now.
I use DNS Forwarder with no problem with more than 40 domains overridden.
I like to switch to DNS Resolver (so I can use PFBLOCKER and EasyList :)), but the DOMAIN OVERRIDE section do NOT work.
I think is a problem with the Resolver.
Any ideas?
-
The domain over ride section works just fine in resolver… But overriding a domain like bbc.co.uk is not going to get iplayer working..
There are multiple multiple domain names in play in getting iplayer to work.. If you going to want to use the resolver you would have to override all of them..
If your plan is to use a dns server to circumvent regional restrictions, and use actual resolver for everything else then your going to have to know all the domains in question so you can send them to your dns you want to use to circumvent stuff and get the ips like your in that region.
Your best best in doing something like this use a forwarder, or use the specific dns you want on the client directly. A resolver is completely different than how a forwarder works... But the override works as it should.. That is not the problem here..
Attached is just a sample of the domains that got queried when I fired up iplayer..
-
Dear johnpoz,
Thanks for your answer.
I do know all the domains that I what to override (I have in the override list all 62 domains).
When using Forwarder, the query for any domain in the list is routed to Unotelly DNS service an effectively I have no problem unblocking my geo-restriction and I can see all the US and UK services from Chile.
When I switch to Resolver I have NO DNS resolution for any domain in the override list, but any other domain not in the list work OK.
I will be doing more testing tonight.
-
Where and what are you putting in your override.. And its in the RIGHT section? I have seen it multiple multiple times.. Using the resolver and placing the overrides in forwarder section, or placing in the resolver when using the forwarder.
Its simple enough to verify that domain overrides are working.. So for example I put a override for google.com in my resolver.. I then point it to a nameserver I have running 192.168.9.19 I have on my local network that created A record for www.google.com
When I query my resolver on 192.168.9.253, it goes and asks 192.168.9.19 for www.google.com, it gets an answer and then sends that answer to my machine 192.168.9.100
If its not working for you, then your doing something wrong. Or are missing an override you need? But it is very very simple to validate functionality of such a simple process.
-
Just tried to give this a go as well. I wanted to start with the simpler case, where i just see if I can make the www.unblock-us.com website realize that I use their DNS server. If I get a green "Configure your Device" on the front page, then it must be right. If its still white, then the domain override is not working.
Using wireshark and looking for DNS queries, I saw that www.unblock-us.com looked up four records:
check.unblock-us.com
realcheck.unblock-us.com
resources.unblock-us.com
x.checkx.unblock-us.comSo, I entered Domain overrides to 208.122.23.22 for the four as well as www.unblock-us.com and it works.
My guess would be that this will require some very extensive server lists - I wish we could have wildcards !
Just my 2 cents worth.
Br
Janus -
wildcard in what sense?
you could use 1 override for unblock-us.com in your above case. But where you run into a problem is delegation. or Cnames even.
Its quite possible that subdomain checkx.unblock-us.com is a different name server that unblock-us.com sends back, so now your resolver would go and check that nameserver via a completely different domain. I for example could setup a NS for checkx.unblock-us.com that is ns1.otherdomain.tld… Or maybe realcheck.unblock-us.com points to a cname that is realcheck.someotherdomain.tld, etc. etc..
If your goal is circumvention of restrictions based upon source of dns query then you much better off using a forwarder or just pointing a client directly to whatever circumvention dns you want to use vs overrides in your resolver setup to point all domains that might come into play to your circumvention dns.
-
Yes, it is possible with the “DNS Resolver” (unbound) service.
First, check this post out https://getflix.zendesk.com/hc/en-gb/articles/201056954-Can-I-selectively-use-Getflix-DNS-servers-for-specific-domains-
My config is as follows:
Enable: Checked
Listen port: Empty
Network Interfaces: LAN, Localhost
Outgoing Network Interfaces: WAN
DNSSEC: Unchecked
DNS Query Forwarding: Unchecked
DHCP Registration: Checked
Static DHCP: Unchecked
Advanced (this is a list I have composed from different online forum posts):forward-zone: name: "a.verdict.abc.go.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "a248.e.akamai.net" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "abc.go.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "activity.flux.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "adsatt.abc.go.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "android-api-us.crackle.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "android.nccp.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "api-global.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "api-us.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "api.au.mog.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "api.crackle.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "api.crunchyroll.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "api.mog.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "api.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "api.watchabc.go.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "api.watchdisneyxd.go.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "api.wipmania.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "appboot.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "appletv.crackle.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "bbc.co.uk" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "beta.abc.go.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "c.brightcove.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "cbp-us.nccp.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "cbp.nccp.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "cbs.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "cdn.abc.go.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "cdn.media.abc.go.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "cdn.wwtv.warnerbros.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "cdn2.mog.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "channel4.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "content-us-east-1.uplynk.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "content.uplynk.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "crackle.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "cwtv.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "ext.last.fm" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "fox.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "geo.yahoo.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "history.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "hls.video.query.yahoo.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "hulu.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "huluim.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "iheart.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "images0.mog.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "images1.mog.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "images2.mog.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "images3.mog.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "ios-api-us.crackle.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "ios-api.crackle.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "ios.nccp.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "itv.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "j.maxmind.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "last.fm" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "link.theplatform.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "ll.static.abc.go.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "logger.mog.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "media.cwtv.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "media.mtvnservices.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "mediaserver-sv5-rt-1.pandora.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "mog.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "moviecontrol.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "movies.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "movies1.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "mtv.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "mvid.yql.yahoo.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "mylifetime.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "nbc.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "nccp-nrdp-31.cloud.netflix.net" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "nintendo.nccp.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "nrdp.nccp.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "once.unicornmedia.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "pandora.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "pdl.warnerbros.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "play.hulu.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "playstation.nccp.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "ps3-api-us.crackle.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "release.theplatform.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "roku-api.crackle.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "s.hulu.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "sb.vevo.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "screen.yahoo.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "search.mog.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "secure.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "share.mog.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "signup.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "site.abc.go.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "static.discoverymedia.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "static.east.abc.go.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "support.mog.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "theview.abc.go.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "thewb.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "token.dramafever.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "tuner.pandora.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "turntable.fm" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "tv.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "udat.mtvnservices.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "uiboot.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "urs.pbs.org" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "vevo.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "video.dl.playstation.net" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "video.nbc.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "video.nbcuni.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "video.pbs.org" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "video.syfy.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "videoplayer.vevo.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "vudu.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "ws.audioscrobbler.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.crackle.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.crunchyroll.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.cwtv.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.dramafever.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.iheart.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.last.fm" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.logotv.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.mog.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.mtv.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.pandora.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.rdio.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.smithsonianchannel.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.spike.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.thewb.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.vevo.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "www.vh1.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "xbox.nccp.netflix.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "xboxone-api-us.crackle.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69 forward-zone: name: "zattoo.com" forward-addr: 54.93.173.153 forward-addr: 46.246.29.69
Host Overrides: Empty
Domain Overrides: EmptyThat did the trick for me.
-
Exactly what I was saying, that is a LONG list of domains your forwarding, ie overrides..