{"id":172,"date":"2020-10-15T07:33:09","date_gmt":"2020-10-15T06:33:09","guid":{"rendered":"https:\/\/www.rbit.at\/wordpress\/?p=172"},"modified":"2020-10-15T07:34:27","modified_gmt":"2020-10-15T06:34:27","slug":"externen-dns-request-verhindern","status":"publish","type":"post","link":"https:\/\/www.rbit.at\/wordpress\/internet\/externen-dns-request-verhindern\/","title":{"rendered":"Externen DNS Request Rule verhindern"},"content":{"rendered":"<p>Es geht hier darum, auf einem Router der mit openwrt l\u00e4uft, die dns Abfrage und in weiterer Folge das Laden gewisser domains zu verhindern.<\/p>\n<p>Die folgende rule mittels editor (vi) in \/etc\/config\/firewall einf\u00fcgen: (damit werden dns Abfragen ins WAN verhindert)<\/p>\n<p><code>#Disallow external DNS<br \/>\nconfig rule<br \/>\noption src&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; lan<br \/>\noption src_dport&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 53<br \/>\noption dest&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; wan<br \/>\noption proto&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; udp<br \/>\noption target&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; DROP<\/code><\/p>\n<p>Hiermit die Firewall neu starten:<\/p>\n<p><code>\/etc\/init.d\/firewall restart<\/code><\/p>\n<p>Gewisse Domains sperren:<\/p>\n<p>File \/etc\/dnsmasq.conf editieren:<\/p>\n<p>Beispieleintr\u00e4ge:<\/p>\n<p><code>address=\/doubleclick.net\/127.0.0.1<br \/>\naddress=\/example.org\/127.0.0.1<\/code><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Es geht hier darum, auf einem Router der mit openwrt l\u00e4uft, die dns Abfrage und in weiterer Folge das Laden gewisser domains zu verhindern. Die folgende rule mittels editor (vi) in \/etc\/config\/firewall einf\u00fcgen: (damit werden dns Abfragen ins WAN verhindert) #Disallow external DNS config rule option src&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; lan option src_dport&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 53 option dest&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; wan option&hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5,6],"tags":[],"class_list":["post-172","post","type-post","status-publish","format-standard","hentry","category-internet","category-modem-router"],"_links":{"self":[{"href":"https:\/\/www.rbit.at\/wordpress\/wp-json\/wp\/v2\/posts\/172","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.rbit.at\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.rbit.at\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.rbit.at\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.rbit.at\/wordpress\/wp-json\/wp\/v2\/comments?post=172"}],"version-history":[{"count":3,"href":"https:\/\/www.rbit.at\/wordpress\/wp-json\/wp\/v2\/posts\/172\/revisions"}],"predecessor-version":[{"id":176,"href":"https:\/\/www.rbit.at\/wordpress\/wp-json\/wp\/v2\/posts\/172\/revisions\/176"}],"wp:attachment":[{"href":"https:\/\/www.rbit.at\/wordpress\/wp-json\/wp\/v2\/media?parent=172"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.rbit.at\/wordpress\/wp-json\/wp\/v2\/categories?post=172"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.rbit.at\/wordpress\/wp-json\/wp\/v2\/tags?post=172"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}