moproxy icon indicating copy to clipboard operation
moproxy copied to clipboard

Published 20 hours ago verified publisher icon sorz

setup blacklist and whitelist

Open AkramiPro opened this issue 2 years ago • 1 comments

i want all traffic pass through direct connection expect some domains (like Privoxy program) Example:

*     direct
*.test.com   proxy
*.test2.org   proxy
cdn.test2.org direct

AkramiPro avatar Oct 14 '22 12:10 AkramiPro

I'm doing this on iptables/nftables level: let DNS resolver add IP addresses to ipset (or nft set), then match them on the firewall. I was using dnsmasq (w/ ipset feature) + iptables, then switched to unbound + dnsnfset + nftables solution.

But this only works on transparent proxy mode, not the SOCKS5 frontend, and it's way too complicated. I agree that the black/whitelist is a nice-to-have feature.

sorz avatar Oct 17 '22 04:10 sorz