Commonly Whitelisted Domains

aksm · March 27, 2020, 6:38pm

Not sure if it necessarily has to be all of these because I haven't tested but had to whitelist the following for the TDBank app Zelle send money to work (part 1 of 2 because I'm getting an error saying new users can only post 5 links):

Gravemore · May 11, 2020, 10:51am

For those experiencing issues logging into teambeachbody.com (login box only shows the logo) white list the following and it will fix that

widget-cdn.rpxnow.com

yedoost · May 20, 2020, 6:37am

This domain needs to be white listed for "Your Phone Companion" app that connects mobiles to windows 10 to work.

pihole -w mobile.pipe.aria.microsoft.com

rockstarjames · May 20, 2020, 4:13pm

This is more for people that read this in the future, but if you do not see the Edit button on the bottom of the post and you're a new user, you will need to unlock the "Trust Level 1 - Basic" before you're able to edit any wiki posts.

makias · May 23, 2020, 9:52am

For Apple users: I looked up what URLs need to be whitelisted in order to avoid issues with iCloud, iTunes, etc. and to make things easier, you can just copy & paste this two commands to add all the Apple Provided URLs.
Nothing shady here, all this URLs can be found on Apple's support website:

pihole --white-regex *.push.apple.com *.itunes.apple.com *.apps.apple.com *.mzstatic.com *.amazonaws.com *.cdn-apple.com *.digicert.com deimos3.apple.com *.symcb.com gg*.apple.com *.symcd.com mesu.apple.com

pihole -w albert.apple.com captive.apple.com gs.apple.com humb.apple.com static.ips.apple.com tbsc.apple.com time-ios.apple.com time.apple.com appldnld.apple.com gg.apple.com gnf-mdn.apple.com gnf-mr.apple.com gs.apple.com ig.apple.com mesu.apple.com ns.itunes.apple.com oscdn.apple.com osrecovery.apple.com skl.apple.com swcdn.apple.com swdist.apple.com swdownload.apple.com swpost.apple.com swscan.apple.com updates-http.cdn-apple.com updates.cdn-apple.com xp.apple.com itunes.apple.com ppq.apple.com lcdn-registration.apple.com crl.apple.com crl.entrust.net crl3.digicert.com crl4.digicert.com ocsp.apple.com ocsp.digicert.com ocsp.entrust.net ocsp.verisign.net gdmf.apple.com deviceenrollment.apple.com deviceservices-external.apple.com identity.apple.com iprofiles.apple.com mdmenrollment.apple.com setup.icloud.com vpp.itunes.apple.com

PureFallen · May 24, 2020, 2:53pm

I added the domain l.facebook.com to the Wiki Entry.
The domain is new and arrived with the Facebook UI Update. It seems to be used as (tracking-) redirect to external websites, just like t.co does for Twitter as example.

kevindd992002 · May 26, 2020, 3:48pm

Is there any easy way to copy all whitelist entries from one pihole v5.0 instance to another?

jfb · May 26, 2020, 3:53pm

Use the teleporter feature.

kevindd992002 · May 27, 2020, 2:13am

Sweet! Thanks!

solidus1983 · July 8, 2020, 4:28pm

For people having issues with Windows Store Updates and Downloads

* ctldl.windowsupdate.com
* displaycatalog.mp.microsoft.com
* dl.delivery.mp.microsoft.com
* sls.update.microsoft.com
* geo-prod.do.dsp.mp.microsoft.com

Had to add them to whitelist in order to stop getting Windows 10 Store 0x8024402C Error codes

lazz45 · July 13, 2020, 9:56pm

In order to use the ESPN watch website I had to update some of the domains (the ones listed were from 2017). These were the domains that allowed me to watch F1

fpdownload.adobe.com 
entitlement.auth.adobe.com 
livepassdl.conviva.com
www.espn.com
a1.espncdn.com
a2.espncdn.com
a.espncdn.com
streams.adobeprimetime.com
sp.auth.adobe.com
media.video-cdn.espn.com
cdn1.espn.net

Derrick_McFall · July 31, 2020, 4:40pm

Microsoft Quick Assist apparently requires
channelwebsdks.azureedge.net to be white listed. kept getting an error and whitelisting fixed for me.

PureFallen · August 15, 2020, 5:07am

I have updated the Whitelist Domains for bild.de in this post, based on the experiences made by the community in this thread (german).

Using the opportunity, i have also added the Whitelist Domains for Windows 10 Update, that i recently had to whitelist. Previously mentioned domains such as from @hennix were not required for me. I was able to download Updates for different devices with them being part of the blacklist.

Edit (19.08.2020):
Grouped together some Google Whitelist Domains that were all over the place of the FAQ entry.
Also added the Firefox Tracking Protection CDN to the Whitelist as it can easily get blocked by regex and caused some issues in the past.

Phaiz · September 7, 2020, 4:38pm

Easy copy/paste for all the above:

sfdataservice.microsoft.com 
fpdownload.adobe.com 
entitlement.auth.adobe.com 
livepassdl.conviva.com 
www.espn.com 
a1.espncdn.com 
a2.espncdn.com 
a.espncdn.com 
streams.adobeprimetime.com 
sp.auth.adobe.com 
media.video-cdn.espn.com 
cdn1.espn.net 
ctldl.windowsupdate.com 
displaycatalog.mp.microsoft.com 
dl.delivery.mp.microsoft.com 
sls.update.microsoft.com 
geo-prod.do.dsp.mp.microsoft.com 
clients4.google.com 
clients2.google.com 
s.youtube.com 
video-stats.l.google.com 
android.clients.google.com 
reminders-pa.googleapis.com 
firestore.googleapis.com 
googleapis.l.google.com 
dl.google.com 
www.msftncsi.com 
outlook.office365.com 
products.office.com 
c.s-microsoft.com 
i.s-microsoft.com 
login.live.com 
login.microsoftonline.com 
dl.delivery.mp.microsoft.com 
geo-prod.do.dsp.mp.microsoft.com 
displaycatalog.mp.microsoft.com 
sls.update.microsoft.com.akadns.net 
fe3.delivery.dsp.mp.microsoft.com.nsatc.net 
clientconfig.passport.net 
v10.events.data.microsoft.com 
v20.events.data.microsoft.com 
client-s.gateway.messenger.live.com 
xbox.ipv6.microsoft.com 
device.auth.xboxlive.com 
www.msftncsi.com 
title.mgt.xboxlive.com 
xsts.auth.xboxlive.com 
title.auth.xboxlive.com 
ctldl.windowsupdate.com 
attestation.xboxlive.com 
xboxexperiencesprod.experimentation.xboxlive.com 
xflight.xboxlive.com 
cert.mgt.xboxlive.com 
xkms.xboxlive.com 
def-vef.xboxlive.com 
notify.xboxlive.com  
help.ui.xboxlive.com 
licensing.xboxlive.com 
eds.xboxlive.com 
www.xboxlive.com 
v10.vortex-win.data.microsoft.com 
settings-win.data.microsoft.com 
s.gateway.messenger.live.com 
client-s.gateway.messenger.live.com 
ui.skype.com 
pricelist.skype.com 
apps.skype.com 
m.hotmail.com 
sa.symcb.com 
s{1..5}.symcb.com 
officeclient.microsoft.com 
www.google-analytics.com 
ssl.google-analytics.com 
spclient.wg.spotify.com 
apresolve.spotify.com 
weeklyad.target.com 
m.weeklyad.target.com 
upload.facebook.com 
creative.ak.fbcdn.net 
external-lhr0-1.xx.fbcdn.net 
external-lhr1-1.xx.fbcdn.net 
external-lhr10-1.xx.fbcdn.net 
external-lhr2-1.xx.fbcdn.net 
external-lhr3-1.xx.fbcdn.net 
external-lhr4-1.xx.fbcdn.net 
external-lhr5-1.xx.fbcdn.net 
external-lhr6-1.xx.fbcdn.net 
external-lhr7-1.xx.fbcdn.net 
external-lhr8-1.xx.fbcdn.net 
external-lhr9-1.xx.fbcdn.net 
fbcdn-creative-a.akamaihd.net 
scontent-lhr3-1.xx.fbcdn.net 
scontent.xx.fbcdn.net 
scontent.fgdl5-1.fna.fbcdn.net 
graph.facebook.com 
b-graph.facebook.com 
connect.facebook.com 
cdn.fbsbx.com 
api.facebook.com 
edge-mqtt.facebook.com 
mqtt.c10r.facebook.com 
portal.fb.com 
star.c10r.facebook.com 
star-mini.c10r.facebook.com 
b-api.facebook.com 
fb.me bigzipfiles.facebook.com 
l.facebook.com 
plex.tv 
tvdb2.plex.tv 
pubsub.plex.bz 
proxy.plex.bz 
proxy02.pop.ord.plex.bz 
cpms.spop10.ams.plex.bz 
meta-db-worker02.pop.ric.plex.bz 
meta.plex.bz 
tvthemes.plexapp.com.cdn.cloudflare.net 
tvthemes.plexapp.com 
106c06cd218b007d-b1e8a1331f68446599e96a4b46a050f5.ams.plex.services 
meta.plex.tv 
cpms35.spop10.ams.plex.bz 
proxy.plex.tv 
metrics.plex.tv 
pubsub.plex.tv 
status.plex.tv 
www.plex.tv 
node.plexapp.com 
nine.plugins.plexapp.com 
staging.plex.tv 
app.plex.tv 
o1.email.plex.tv  
o2.sg0.plex.tv 
dashboard.plex.tv 
gravatar.com 
thetvdb.com 
themoviedb.com 
services.sonarr.tv 
skyhook.sonarr.tv 
download.sonarr.tv 
apt.sonarr.tv 
forums.sonarr.tv 
placehold.it 
placeholdit.imgix.net 
dl.dropboxusercontent.com 
ns1.dropbox.com 
ns2.dropbox.com 
itunes.apple.com 
s.mzstatic.com 
appleid.apple.com 
fpdownload.adobe.com 
entitlement.auth.adobe.com 
livepassdl.conviva.com 
gfwsl.geforce.com 
delivery.vidible.tv 
img.vidible.tv 
videos.vidible.tv 
edge.api.brightcove.com 
cdn.vidible.tv 
dev.virtualearth.net 
ecn.dev.virtualearth.net 
t0.ssl.ak.dynamic.tiles.virtualearth.net 
t0.ssl.ak.tiles.virtualearth.net 
android.clients.google.com 
appspot-preview.l.google.com 
connectivitycheck.android.com 
android.clients.google.com 
clients3.google.com 
connectivitycheck.gstatic.com 
msftncsi.com 
www.msftncsi.com 
ipv6.msftncsi.com 
captive.apple.com 
gsp1.apple.com 
www.apple.com 
www.appleiphonecell.com 
prod.telemetry.ros.rockstargames.com 
chevrolet.com 
tracking.epicgames.com 
79423.analytics.edgekey.net 
assets.adobedtm.com 
nexus.ensighten.com 
tracking-protection.cdn.mozilla.net 
v10.vortex-win.data.microsoft.com

kevindd992002 · September 8, 2020, 2:33am

Hopefully this can be included in the OP and updated regularly too

PromoFaux · September 8, 2020, 8:31am

From the OP:

brodly · September 11, 2020, 4:52pm

EA Play wouldn't connect on Xbox without whitelisting:
activity.windows.com

karx1 · October 13, 2020, 7:08pm

You no longer have to whitelist google-analytics for jackbox.tv- jackbox no longer requires this to function.

vincent · October 16, 2020, 7:32pm

To unsubscribe from the OUI SNCF (French railroad reseller) newsletter, this domain needs to be whitelisted :
v.oui.sncf

rfmodeler · October 21, 2020, 10:53pm

Colorado Public Radio (CPR) Streaming requires the following domain:
delivery-cdn-cf.adswizz.com