Hello,I recently broke my Nest Protects and I have tracked down the issue to the DNSBLs that I have setup. I see a bunch of lookups to czfe65.front01.iad01.production.nest.com for instance being blocked. I do I find which list is causing this? Love to turn that one off if possible. I know I can whitelist, but I would prefer to find the offending list.
Thanks so much!
Sadly you have to try one by one as the script in the end puts all together.
Ugh, that's not my favorite answer. :)
Just to clarify, all of the rules are loaded and then dumped into one master set at the end by a script and that is the list that is used to block against?
Where in the filesystem might I find this master list at least?
Thanks!
You can find the links of the individual lists - depending where you're blocking - at
https://raw.githubusercontent.com/opnsense/plugins/master/dns/unbound-plus/src/opnsense/scripts/OPNsense/Unboundplus/dnsbl.py
https://raw.githubusercontent.com/opnsense/plugins/master/dns/dnscrypt-proxy/src/opnsense/scripts/OPNsense/Dnscryptproxy/dnsbl.sh
https://raw.githubusercontent.com/opnsense/plugins/master/dns/bind/src/opnsense/scripts/OPNsense/Bind/dnsbl.sh
E.g. the resulting BIND-blocklist can be found at/usr/local/etc/namedb/dnsbl.inc