Problem with Beta 5.0: some DNS names are blocked without being in a blocklist or blacklisted www.spiegel.de api.onedrive.com ocsp.digicert.com Whitelisting directly from query log was also not possible, only manually

[image] MaDa: aacfb9d106f4.link11.de With the new CNAME blocking in beta 5.0, blocked domains are checked all along the CNAME path. In your case, the CNAME is blocked, so the request is blocked. dig www.spiegel.de ;; ANSWER SECTION: www.spiegel.de. 3579 IN CNAME aacfb9d106f4.link11.de. aa…

False blocked DNS-Names

General Beta 5.0

DL6ER January 29, 2020, 10:56pm 22

Over the days, I got convinced that knowing the domain that was the actual blocking reason is meaningful. See, e.g.,

2 Likes