How to prohibit access to a specified domain through IPv4, and only allow IPv6?

According to this topic, I can put address=/example.com/:: in dnsmasq.conf to ban the AAAA records of example.com.
But how should I do if I want to keep IPv6 address and drop IPv4? I tried address=/example.com/0.0.0.0 but it completely blocked the domain, together with IPv6.

I think OpenWrt is still prioritising IPv4 over IPv6, try changing that (I'm not sure if that's possible at all at runtime).

uci add_list dhcp.@dnsmasq[0].address="/example.com/0.0.0.0"
uci add_list dhcp.@dnsmasq[0].server="/example.com/8.8.8.8"
uci commit dhcp
/etc/init.d/dnsmasq restart

Modern OS including OpenWrt should prefer IPv6 when provided the proper connectivity.
Although it still depends on a specific client application which protocol version to utilize.

1 Like

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.