Url Whitelisting

i setup up a firewall rule

config rule
option name 'Block-All-Sites'
option src 'lan'
option dest 'wan'
option family 'ipv4'
option target 'REJECT'

then add this to a script and run every 3 mins

fw3 restart
iptables -I FORWARD -d time.windows.com -j ACCEPT
exot 0

but after some time i cannot access the website anymore because the website uses cdn so the ip address changes all the time, unless i run the script again i cannot access the website.

is there another option to whitelist the domains and make it more stable?

Yes, dnsmasq-full supports ipsets (or nft sets in the more recent builds of OpenWrt). Using dnsmasq's ipset support should solve your issue.

1 Like

Cron the script?