Archive > 20.1 Legacy Series

Difference between Squid ACL vs DNSBL

(1/1)

ArminF:
Hello,
what is the difference between using Squid with ACL blocklists (URL, Malware, Suspicious Sources) and DNSBL through a DNS like Unbound or bind?
Does it make sense to run both parallel? As far i understood both strategies act the same.

thank you!
A

mimugmail:
Similar, yes, but in theory you could also use URIs with Squid

bartjsmit:
Unbound or bind only block DNS requests. If a client connects on an IP address (e.g. through a hosts file) they will bypass the block.

Allowing only outbound HTTP(S) from Squid plugs that hole.

You can use both to improve performance, since a lot of blacklisted DNS requests will be cached.

Bart...

ArminF:
Gentlemen,

thank you very mich for your kind help and explanation!

Will go configure and test further.
Also started to document my changes.

thank you
armin

Navigation

[0] Message Index