DNSSEC And Wildcarding Available In Pi-hole Core 2.12 / Web 2.4

DNSSEC And Wildcarding Available In Pi-hole Core 2.12 / Web 2.4

2017-01-28 Updates 18

We are happy to release another new version of Pi-hole (Core and Web). Your support and contributions have helped it become a reality. This release includes several fixes and tweaks, which you can read about on changes.pi-hole.net. We have also added some new features.

DNSSEC

You requested it and we implemented it. Once enabled, there is a link you can click that will check to see if it is working.

Wildcard Blacklisting

This has been an oft-requested feature, and may prove useful for blocking YouTube ads. You can use this new blacklisting feature with the pihole -wild option. So if you wanted to block all of bannerflow.com:

pihole -wild bannerflow.com
pihole -wild -d bannerflow.com

Related Feature

You can also now paste in space-delimited domains to be added to the white/black from the Web interface.

logrotate

We implemented a new flushing routine using the logrotate command for pihole.log with the following options:

  • daily (rotate the log once per day)
  • copytruncate (copy the existing file to the new place and truncate the original file afterwards)
  • rotate 5 (keep 5 days/manual flush cycles)
  • compress + delaycompress (compress files older than 1 day)
  • notifyempty (do not rotate the log if it is empty)
  • nomail (don’t mail old log files to any address)

If for some reason logrotate is not found, it will fallback to the old flushing routine.

Multiple Upstream DNS Servers

You can now specify multiple upstream servers to use via the Web interface.

Pi-hole Teleporter

This feature was called takeout for a while, but teleporter seemed more appropriate and didn’t make us as hungry. This feature came as a request from the community so you can now export your Pi-hole lists to a .zip file.

A Joke For The Networking Folks

Apple CIDR.

Notable Replies

  1. Goofy question and I know I read before the YouTube ads are difficult. But I ran both of the bannerflow commands above and, at first, it was blocking excellently.. But after a bit, it no longer blocks.. Is there any way to determine if there may be another bannerflow that has kicked in? It's minor, but just wanted to ask..

    Thanks..

  2. Check the query log in the web interface.

  3. This is a copy of the log when I searched YouTube.. Bear with me because I'm still learning about pihole and what can be done..

    ::: /etc/pihole/list.0.raw.githubusercontent.com.domains (7 results)

    0.0.0.0 www.youtube-nocookie.com #[affects various videos]

    0.0.0.0 static.2mdn.net #[affects Youtube]

    0.0.0.0 s2.youtube.com
    0.0.0.0 s.youtube.com
    0.0.0.0 youtube.112.2o7.net
    0.0.0.0 ads.youtube.com
    0.0.0.0 ehg-youtube.hitbox.com

    ::: /etc/pihole/list.1.mirror1.malwaredomains.com.domains (2 results)
    buatduityoutube.com
    youtubeclone.us

    ::: /etc/pihole/list.2.sysctl.org.domains (0 results)

    ::: /etc/pihole/list.3.zeustracker.abuse.ch.domains (0 results)

    ::: /etc/pihole/list.4.s3.amazonaws.com.domains (0 results)

    ::: /etc/pihole/list.5.s3.amazonaws.com.domains (1 results)
    ads.youtube.com

    ::: /etc/pihole/list.6.hosts-file.net.domains (2 results)
    127.0.0.1 ssl-youtube.2cnt.net
    127.0.0.1 youtube.2cnt.net

    ::: /etc/pihole/list.preEventHorizon (9 results)
    ads.youtube.com
    buatduityoutube.com
    ehg-youtube.hitbox.com
    s.youtube.com
    s2.youtube.com
    ssl-youtube.2cnt.net
    youtube.112.2o7.net
    youtube.2cnt.net
    youtubeclone.us

    ::: /etc/pihole/blacklist.txt (0 results)

  4. Can I wildcard entire TLDs? The .online TLD seems to me to be nothing but spam and misleading malware ads. Not sure how that would work.

Continue the discussion discourse.pi-hole.net

7 more replies

Participants

18 Responses

  1. Taertox says:

    Latest update broke local domain resolution. If you need it, dont update!!

  2. bob says:

    do I need to re-run the install script to update?

    • telekrmor says:

      Nope (unless you are on a very old version). Just run pihole -up from your Pi-hole.

  3. Itsme says:

    If i use it as forwarder on windows it bloks everything. not nice and the whitelist is also ot working. Put several sites in there but keeps blocking

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.