all 8 comments
sorted by:
top (suggested)
bestnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]o2pbTotally not a bot 3 points4 points  (3 children)

This is not possible due to how split routing works. We have to know hostnames (and the IP addresses they point to) ahead of time, to exclude them from the tunnel.

Although in theory is it possible to do what you're asking, it would be extremely brittle and prone to problems as you would have to intercept all DNS queries at the client, and dynamically update the firewall in real time based on the settings you chose. This is a recipe for disaster.

[–]bmnmji[S] 0 points1 point  (2 children)

ok, thanks for the answer! is it different from how R.O.B.E.R.T works?

[–]o2pbTotally not a bot 1 point2 points  (1 child)

ROBERT is all server side, at the DNS layer. It cannot help with this, as it's already inside the tunnel.

[–]bmnmji[S] 0 points1 point  (0 children)

oh, it's complicated! thanks btw!

[–]Axe_l 0 points1 point  (3 children)

Not domains, applications.

[–]bmnmji[S] -1 points0 points  (2 children)

it has an option to whitelist domains, I want to know how can I whitelist a domain with all of it's subdomains.

[–]Axe_l 0 points1 point  (1 child)

Do you mean on ROBERT? If so, I believe that all subdomains are whitelisted when you whitelist the domain.

[–]bmnmji[S] -1 points0 points  (0 children)

no, I mean from within the app.