You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I understand that this project was created to intercept the https traffic using SNI..
But my requirement is to drop the packets right at the DNS level itself.
something like :
iptables -t raw -I PREROUTING -p udp --dport 53 -m string --hex-string "${domain}" --algo bm -j DROP
Now for multiple domains, this would be very inefficient.. I like the concept of hostset.. Is it possible to use the same concept here to drop multiple domains. May be such a module already exists but I am not aware about it..
sorry if its a foolish request.. but was just wondering
The text was updated successfully, but these errors were encountered:
I understand that this project was created to intercept the https traffic using SNI..
But my requirement is to drop the packets right at the DNS level itself.
something like :
iptables -t raw -I PREROUTING -p udp --dport 53 -m string --hex-string "${domain}" --algo bm -j DROP
Now for multiple domains, this would be very inefficient.. I like the concept of hostset.. Is it possible to use the same concept here to drop multiple domains. May be such a module already exists but I am not aware about it..
sorry if its a foolish request.. but was just wondering
The text was updated successfully, but these errors were encountered: