Custom DNS response

Firesphere · November 17, 2019, 1:21am

As a Security Analyst:
I would like to be able to add domains manually, and point them to a custom server.

So that:
When I add a blacklisted item to the Pi-Hole, I can say that instead of returning the Pi-Hole IP or 127.0.0.1, I can tell the Pi-Hole to return the IP of the custom server I have set up.

In order to:
Intercept malware requests to e.g. CnC servers, decrypt malware requests to external servers and analyse malware requests, to get a better understanding of the malware that infected a machine and take action.

jfb · November 17, 2019, 1:27am

You should be able to do this in the /etc/hosts file on the Pi or in a custom dnsmasq config file in /etc/dnsmasq.d

yubiuser · June 1, 2020, 7:30pm

Implemented in v5.0 with "Local DNS Records".