New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Whitelist : xp.apple.com - this is used for apple device restore #562
Comments
I had suspected that this would lead to problems, the domains are not for nothing on the Apple support list of domains to be released in corporate networks. But I could not prove it. You won't find them on common blocklists either. |
That doesn't scare you a bit? |
Initially It did, but i believe every error has a solution. So i did some normal debugging until i found the solution. Also, I now work in tech and my new team also fixes issues with mac and other apple device issues. We work with the Apple Business Tech Team when we encounter issues. We originally had a very aggressive firewall in the company, but some of them we whitelisted. Hope it makes sense. |
Also, should we add this in 1host Extra instead? |
I'm afraid not! We currently don't have this feature, as can be seen here. |
@badmojr i will let you decide if you want to whitelist this or not in the Pro blocklist. For the time being, I will allowlist this domain in nextdns and also the *smooth.apple.com… to prevent device bricking. I really want yo share the documents from my Company about the apple whitlisted domains and their reason plus their IM number but I can’t as its confidential and i dont want to get into trouble. 😆✌🏻✌🏻 Please close if required. |
OK! Closing... |
https://oisd.nl/excludes.php?w=xp.apple.com - Required for installing, restoring, and updating macOS, iOS, iPadOS, watchOS, and tvOS. See https://support.apple.com/en-us/HT210060
https://oisd.nl/excludes.php?w=smoot.apple.com |
@badmojr Yes, thank you, I was completely wrong. |
I hope Apple disables this in the future. I have a lot of anti-tracking measures in place, up to breaking functionality of a few things. However, all the issues we've documented historically still occur (AFAIK) when blocking Update: nextdns/metadata#1132 |
@badmojr |
@hagezi Thanks, checked and removed. |
Submit Form
Lists in use:
Client:
Itunes, MacOS, nextdns
Domains:
Details:
xp.apple.com Is used for device updates and OS restore of macos and ios.
this is not a telemetry, but a common checker of the device.
i was restoring my personal MacBook pro and it keeps on failing with unable to connect to apple server. I then found the culprit that xp.apple.com is being blocked by 1host Pro. I change the blocklist and white list it. The restore went fine.
sorry. no screentshot of the failed macbook….
+++++
to verify this, i went to check my companies firewall allow list document ( my company uses apple products and we manages some blocklist as well), then wiki states the below:
XP.APPLE.COM - Allowed for device Restore and Update. Brick Device Possible if this is Blocked.
*SMOOT.APPLE.COM - Needs to be allowed. design team complains Spotlight Search not working.
Details verified with Apple Business and Tech Support. (IM8908765 and IM4326578)
both of these are blocked by 1host Pro. Can we unblock these? I cannot always use my companies DNS/VPN since they monitor it.
Thank you for supporting 1Hosts.
It’s people like you who make these lists great! ❤The text was updated successfully, but these errors were encountered: