Filter dnstype HTTPS based on response #7430
Labels
Comments
vs or Change your dnstype from SOA to HTTPS.. does it work for you? (NOERROR vs BLOCKED..) NOTE: If a rule contains a modifier not listed in this document, the whole rule must be ignored. This way we avoid false-positives when people are trying to use unmodified browser ad blockers' filter lists like EasyList or EasyPrivacy. |
It works for request not for the answer. I need to block only response with particular ech. Also the answer is base64 encoded |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Prerequisites
I have checked the Wiki and Discussions and found no answer
I have searched other issues and found no duplicates
I want to request a feature or enhancement and not ask a question
The problem
In Russia I've got an issue with Cloudflare CDN HTTPS records. Cloudflare ECH is blocked.
https://developers.cloudflare.com/ssl/edge-certificates/ech/
I would like to filter dnstype=HTTPS response not a request for 'cloudflare-ech.com'. For the moment I should to completely block HTTPS request with filter
||*^$dnstype=HTTPS,dnsrewrite=NOERROR;;Proposed solution
Add ability to overwrite or filter response for HTTPS dnstype.
Alternatives considered and additional information
No response
The text was updated successfully, but these errors were encountered: