Not sure if it necessarily has to be all of these because I haven't tested but had to whitelist the following for the TDBank app Zelle send money to work (part 1 of 2 because I'm getting an error saying new users can only post 5 links):
For those experiencing issues logging into teambeachbody.com (login box only shows the logo) white list the following and it will fix that
This domain needs to be white listed for "Your Phone Companion" app that connects mobiles to windows 10 to work.
pihole -w mobile.pipe.aria.microsoft.com
This is more for people that read this in the future, but if you do not see the Edit button on the bottom of the post and you're a new user, you will need to unlock the "Trust Level 1 - Basic" before you're able to edit any wiki posts.
For Apple users: I looked up what URLs need to be whitelisted in order to avoid issues with iCloud, iTunes, etc. and to make things easier, you can just copy & paste this two commands to add all the Apple Provided URLs.
Nothing shady here, all this URLs can be found on Apple's support website:
pihole --white-regex *.push.apple.com *.itunes.apple.com *.apps.apple.com *.mzstatic.com *.amazonaws.com *.cdn-apple.com *.digicert.com deimos3.apple.com *.symcb.com gg*.apple.com *.symcd.com mesu.apple.com
pihole -w albert.apple.com captive.apple.com gs.apple.com humb.apple.com static.ips.apple.com tbsc.apple.com time-ios.apple.com time.apple.com appldnld.apple.com gg.apple.com gnf-mdn.apple.com gnf-mr.apple.com gs.apple.com ig.apple.com mesu.apple.com ns.itunes.apple.com oscdn.apple.com osrecovery.apple.com skl.apple.com swcdn.apple.com swdist.apple.com swdownload.apple.com swpost.apple.com swscan.apple.com updates-http.cdn-apple.com updates.cdn-apple.com xp.apple.com itunes.apple.com ppq.apple.com lcdn-registration.apple.com crl.apple.com crl.entrust.net crl3.digicert.com crl4.digicert.com ocsp.apple.com ocsp.digicert.com ocsp.entrust.net ocsp.verisign.net gdmf.apple.com deviceenrollment.apple.com deviceservices-external.apple.com identity.apple.com iprofiles.apple.com mdmenrollment.apple.com setup.icloud.com vpp.itunes.apple.com
I added the domain l.facebook.com
to the Wiki Entry.
The domain is new and arrived with the Facebook UI Update. It seems to be used as (tracking-) redirect to external websites, just like t.co
does for Twitter as example.
Is there any easy way to copy all whitelist entries from one pihole v5.0 instance to another?
Use the teleporter feature.
Sweet! Thanks!
For people having issues with Windows Store Updates and Downloads
* ctldl.windowsupdate.com
* displaycatalog.mp.microsoft.com
* dl.delivery.mp.microsoft.com
* sls.update.microsoft.com
* geo-prod.do.dsp.mp.microsoft.com
Had to add them to whitelist in order to stop getting Windows 10 Store 0x8024402C Error codes
In order to use the ESPN watch website I had to update some of the domains (the ones listed were from 2017). These were the domains that allowed me to watch F1
fpdownload.adobe.com
entitlement.auth.adobe.com
livepassdl.conviva.com
www.espn.com
a1.espncdn.com
a2.espncdn.com
a.espncdn.com
streams.adobeprimetime.com
sp.auth.adobe.com
media.video-cdn.espn.com
cdn1.espn.net
Microsoft Quick Assist apparently requires
channelwebsdks.azureedge.net to be white listed. kept getting an error and whitelisting fixed for me.
I have updated the Whitelist Domains for bild.de
in this post, based on the experiences made by the community in this thread (german).
Using the opportunity, i have also added the Whitelist Domains for Windows 10 Update, that i recently had to whitelist. Previously mentioned domains such as from @hennix were not required for me. I was able to download Updates for different devices with them being part of the blacklist.
Edit (19.08.2020):
Grouped together some Google Whitelist Domains that were all over the place of the FAQ entry.
Also added the Firefox Tracking Protection CDN to the Whitelist as it can easily get blocked by regex and caused some issues in the past.
Easy copy/paste for all the above:
sfdataservice.microsoft.com
fpdownload.adobe.com
entitlement.auth.adobe.com
livepassdl.conviva.com
www.espn.com
a1.espncdn.com
a2.espncdn.com
a.espncdn.com
streams.adobeprimetime.com
sp.auth.adobe.com
media.video-cdn.espn.com
cdn1.espn.net
ctldl.windowsupdate.com
displaycatalog.mp.microsoft.com
dl.delivery.mp.microsoft.com
sls.update.microsoft.com
geo-prod.do.dsp.mp.microsoft.com
clients4.google.com
clients2.google.com
s.youtube.com
video-stats.l.google.com
android.clients.google.com
reminders-pa.googleapis.com
firestore.googleapis.com
googleapis.l.google.com
dl.google.com
www.msftncsi.com
outlook.office365.com
products.office.com
c.s-microsoft.com
i.s-microsoft.com
login.live.com
login.microsoftonline.com
dl.delivery.mp.microsoft.com
geo-prod.do.dsp.mp.microsoft.com
displaycatalog.mp.microsoft.com
sls.update.microsoft.com.akadns.net
fe3.delivery.dsp.mp.microsoft.com.nsatc.net
clientconfig.passport.net
v10.events.data.microsoft.com
v20.events.data.microsoft.com
client-s.gateway.messenger.live.com
xbox.ipv6.microsoft.com
device.auth.xboxlive.com
www.msftncsi.com
title.mgt.xboxlive.com
xsts.auth.xboxlive.com
title.auth.xboxlive.com
ctldl.windowsupdate.com
attestation.xboxlive.com
xboxexperiencesprod.experimentation.xboxlive.com
xflight.xboxlive.com
cert.mgt.xboxlive.com
xkms.xboxlive.com
def-vef.xboxlive.com
notify.xboxlive.com
help.ui.xboxlive.com
licensing.xboxlive.com
eds.xboxlive.com
www.xboxlive.com
v10.vortex-win.data.microsoft.com
settings-win.data.microsoft.com
s.gateway.messenger.live.com
client-s.gateway.messenger.live.com
ui.skype.com
pricelist.skype.com
apps.skype.com
m.hotmail.com
sa.symcb.com
s{1..5}.symcb.com
officeclient.microsoft.com
www.google-analytics.com
ssl.google-analytics.com
spclient.wg.spotify.com
apresolve.spotify.com
weeklyad.target.com
m.weeklyad.target.com
upload.facebook.com
creative.ak.fbcdn.net
external-lhr0-1.xx.fbcdn.net
external-lhr1-1.xx.fbcdn.net
external-lhr10-1.xx.fbcdn.net
external-lhr2-1.xx.fbcdn.net
external-lhr3-1.xx.fbcdn.net
external-lhr4-1.xx.fbcdn.net
external-lhr5-1.xx.fbcdn.net
external-lhr6-1.xx.fbcdn.net
external-lhr7-1.xx.fbcdn.net
external-lhr8-1.xx.fbcdn.net
external-lhr9-1.xx.fbcdn.net
fbcdn-creative-a.akamaihd.net
scontent-lhr3-1.xx.fbcdn.net
scontent.xx.fbcdn.net
scontent.fgdl5-1.fna.fbcdn.net
graph.facebook.com
b-graph.facebook.com
connect.facebook.com
cdn.fbsbx.com
api.facebook.com
edge-mqtt.facebook.com
mqtt.c10r.facebook.com
portal.fb.com
star.c10r.facebook.com
star-mini.c10r.facebook.com
b-api.facebook.com
fb.me bigzipfiles.facebook.com
l.facebook.com
plex.tv
tvdb2.plex.tv
pubsub.plex.bz
proxy.plex.bz
proxy02.pop.ord.plex.bz
cpms.spop10.ams.plex.bz
meta-db-worker02.pop.ric.plex.bz
meta.plex.bz
tvthemes.plexapp.com.cdn.cloudflare.net
tvthemes.plexapp.com
106c06cd218b007d-b1e8a1331f68446599e96a4b46a050f5.ams.plex.services
meta.plex.tv
cpms35.spop10.ams.plex.bz
proxy.plex.tv
metrics.plex.tv
pubsub.plex.tv
status.plex.tv
www.plex.tv
node.plexapp.com
nine.plugins.plexapp.com
staging.plex.tv
app.plex.tv
o1.email.plex.tv
o2.sg0.plex.tv
dashboard.plex.tv
gravatar.com
thetvdb.com
themoviedb.com
services.sonarr.tv
skyhook.sonarr.tv
download.sonarr.tv
apt.sonarr.tv
forums.sonarr.tv
placehold.it
placeholdit.imgix.net
dl.dropboxusercontent.com
ns1.dropbox.com
ns2.dropbox.com
itunes.apple.com
s.mzstatic.com
appleid.apple.com
fpdownload.adobe.com
entitlement.auth.adobe.com
livepassdl.conviva.com
gfwsl.geforce.com
delivery.vidible.tv
img.vidible.tv
videos.vidible.tv
edge.api.brightcove.com
cdn.vidible.tv
dev.virtualearth.net
ecn.dev.virtualearth.net
t0.ssl.ak.dynamic.tiles.virtualearth.net
t0.ssl.ak.tiles.virtualearth.net
android.clients.google.com
appspot-preview.l.google.com
connectivitycheck.android.com
android.clients.google.com
clients3.google.com
connectivitycheck.gstatic.com
msftncsi.com
www.msftncsi.com
ipv6.msftncsi.com
captive.apple.com
gsp1.apple.com
www.apple.com
www.appleiphonecell.com
prod.telemetry.ros.rockstargames.com
chevrolet.com
tracking.epicgames.com
79423.analytics.edgekey.net
assets.adobedtm.com
nexus.ensighten.com
tracking-protection.cdn.mozilla.net
v10.vortex-win.data.microsoft.com
Hopefully this can be included in the OP and updated regularly too
From the OP:
You no longer have to whitelist google-analytics
for jackbox.tv- jackbox no longer requires this to function.
To unsubscribe from the OUI SNCF (French railroad reseller) newsletter, this domain needs to be whitelisted :
v.oui.sncf