-
Notifications
You must be signed in to change notification settings - Fork 8
4 : Black and White lists
Chris Buijs edited this page Jan 15, 2018
·
12 revisions
NEEDS TO BE UPDATED!!!
Lists are processed in the order of "Whitelist" first, and when not matched, blacklists are checked. When whitelisted it always go "passthru". E.g. you cannot blacklist a whitelisted entry.
There are two lists (text-files) to consider (this repo provides them, see disclaimer. They are updated at least once per 24 hours):
- Blacklist (default:
/etc/unbound/blacklist) - Whitelist (default:
/etc/unbound/whitelist)
Note: Use one entry (Domain, IP or Regex) per line. Examples:
A whole subnet: 10.1.1.0/22
An IP: 192.168.1.1
A Domain (and all its sub-domains): bad.company.com
A Regex (start and ends with forward-slash): /^(ad|banner)[s]*\./
Note: Subnet/IP's are only checked in RESPONSES (more processing, can be switched off by setting "checkresponse" to False).