You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Please answer the following questions for yourself before submitting an issue. YOU MAY DELETE THE PREREQUISITES SECTION.
I am running the latest version
I checked the documentation and found no answer
I checked to make sure that this issue has not already been filed
Problem Description
Since #1185 it has been possible to block domains that are disguised through CNAMEs. Currently when I see a blocked domain, I can see which list blocks that specific domain. This is also the case for domains matched through CNAME lists (the ones that show up as Blocked by CNAME or IP in response).
While the items that were blocked directly isn't an issue, as you can see in the block list the exact reason why it's blocked, for CNAME resolved matches it's not as straight forward. Specifically, all it shows is Blocked by CNAME or IP in response, the list that is blocking the domain, and lastly the answer's IPs. It's hard to figure out which item in the list blocked it.
Proposed Solution
It would be nice to say which exact domain in the list ended up blocking this request. E.g. if badguy.com is blocked, and the badguy.thirdparty.com is a CNAME to badguy.com, the message in the query list should show something like:
Domain name
Type
Response
badguy.thirdparty.com
A
Blocked by CNAME or IP in response A: 8.8.8.8 (ttl=251) Blocked because badguy.com was blocked
Alternatives Considered
N/A
Additional Information
N/A
The text was updated successfully, but these errors were encountered:
@hoshsadiq Hover mouse over (?) icon that display next to 'Blocked by CNAME or IP in response' then you can be see the matched rule. I dont know if that had changed after #993 however display exact rule better than the sentence.
Prerequisites
Please answer the following questions for yourself before submitting an issue. YOU MAY DELETE THE PREREQUISITES SECTION.
Problem Description
Since #1185 it has been possible to block domains that are disguised through CNAMEs. Currently when I see a blocked domain, I can see which list blocks that specific domain. This is also the case for domains matched through CNAME lists (the ones that show up as
Blocked by CNAME or IP in response
).While the items that were blocked directly isn't an issue, as you can see in the block list the exact reason why it's blocked, for CNAME resolved matches it's not as straight forward. Specifically, all it shows is
Blocked by CNAME or IP in response
, the list that is blocking the domain, and lastly the answer's IPs. It's hard to figure out which item in the list blocked it.Proposed Solution
It would be nice to say which exact domain in the list ended up blocking this request. E.g. if badguy.com is blocked, and the badguy.thirdparty.com is a CNAME to badguy.com, the message in the query list should show something like:
A: 8.8.8.8 (ttl=251)
Blocked because badguy.com was blocked
Alternatives Considered
N/A
Additional Information
N/A
The text was updated successfully, but these errors were encountered: