With the addition of "Deep CNAME inspection" in Pi-hole Version 5, the Pi-hole recently started blocking DNS requests cloaked behind CNAME, but does not show which domain caused the block in
pihole -t or
For example, trying to query the german satire website "Der Postillon" using
pihole -q der-postillon.com returns, that the domain has not been found within the block lists. When looking into the query using
pihole -t, the query returns:
16:15:52: query[A] www.der-postillon.com from 192.168.178.1 16:15:52: forwarded www.der-postillon.com to 127.0.0.1 16:15:52: validation result is INSECURE 16:15:52: reply www.der-postillon.com is <CNAME>
In order to determine what caused the block of the domain, it was required to visit the query log of the WebUI.
I was trying to check if something similar was requested in advance within the period of the Beta v5 period or in the last couple of hours. I want to apologize if there is a duplicae topic for that.