-
Notifications
You must be signed in to change notification settings - Fork 8
1 : How to use
At start, it reads the following files (included in this repo, updated every 24 hours):
NEEDS TO BE UPDATED, THIS IS OUTDATED See Black/Whitelist section and the source-code comments for more info.
For every query sent and response received to unbound, the extension checks if name/ip is in the lists and matches. If it is in the whitelist, processing continues as usual (i.e. unbound will resolve it). If it is in the blacklist, unbound stops resolution and returns the IP address configured in intercept_address (or REFUSED if left empty).
Note: The whitelist has precedence over blacklist (you cannot blacklist a whitelisted entry).
The whitelist and blacklist domain/ip matching is done with every requested domain
and includes it subdomains (so "doubleclick.net" will block that domain and all it's subs).
The regex versions will match whatever is defined. It will match sequentially and stops processing after the first hit.