unbound-dns-firewall
unbound-dns-firewall copied to clipboard
DNS-Firewall Python script for UNBOUND
See subject. Generate records based up and off the query. Might want to do a regex version like this: ``` ^(.*)\.company.com$ IN CNAME $1.oblivian.com ^([0-9]+)\.([0-9]+)\.([0-9]+)\.([0-9]+)\.in-addr\.arpa$ IN PTR $1\.$2\.$3\.$4\.clients\.company\.com ```
For logging purposes, categorize domains (automatically or configurable) and log if a site is blocked/passed due to "Advertisement" or "Porn" etc.
I did some work already (see `uncomplicate` def), but disabled it by default due to being to slow and way to CPU/Time hogging. But in short: - Remove all blacklist...
For now, when adding a domain to a list, it implicitly means "this domains and all subdomains". There are some corner-cases where we maybe just want to add a "host"...
To fix some sites, we need to allow some of third-party domains for that particular site. Actually to allow ads for example to see news-videos (ABC, NBC, etc). As we...
Move all variables/settings from python file to a (python or else) config-file.
Need to start writing some documentation including examples of usage.
Besides just the domain-name, having the ability to block a domain and which record-types makes sense in some situations. Designate with '+' for "allow" and '-' for disallow. Asteriks (*)...