Messages

I wondered if the rule I created for the purpose in Subject made a few years ago, is still set correctly following migration to 26.1 (Firewall > Rules [new]).
I have realised the settings I followed originally (I'm sure from here https://homenetworkguy.com/how-to/redirect-all-dns-requests-to-local-dns-resolver/ ), some no longer exist. More specifically, "Destination port range - DNS". DNS no longer exists, it is now "Single port or range - 53". The setting NAT > Port Forward has gone too.
Is anyone able to confirm what needs applying for this purpose if doing from scratch please?

Using 25.7.2.
Dot in Unbound pointing to cloudflare 1.1.1.1.
Hagezi Multi Pro and OISD (Big) blocklists enabled.
Since signing back into Netflix 24hrs ago, logs.netflix.com has started spamming the network due to it being blocked by OISD. It needs a connection to pass the logs over, which in turn reduces the amount of times it tries to connect, but with it blocked, it keeps on continuously spamming the network. This in itself is not unusual, has been reported multiple times around the world already. So to reduce the quantity of these connections, it actually helps to whitelist this particular site.
However, whitelisting logs.netflix.com doesn't make any difference. In Reporting  >  Unbound DNS  >  Details, it shows as still being blocked, but bizarrely, the Type changes from AAAA to CNAME, and the Command column shows it as whitelisted!