What's new

Diversion apparently blocks domains not included in any list

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Aziron5

Occasional Visitor
Hello

I believe I there's a case of a domain being blocked that's not on any lists, there's no difference in what's reported, same as other blocks, just says it's "NXDOMAIN" in this case.

Domain: learn.microsoft.com

I now remember this also happened before on an older Asuswrt-Merlin FW, and on an older pre-NXDOMAIN dnsmasq/diversion, on a completely different router and installation.

My current list is still sort of a WIP combination of a lot of different stuff from over the years so I have a bunch of stuff in there I probably don't need but I don't have a whole day (organizing/formatting can be very time consuming) to go through the whole list in one go, though I should.

This are all the strings with "learn" in them:
Code:
Line  2143: local=/adjustlearned.com/
    Line 14605: local=/edutechlearners.com/
    Line 15407: local=/evasiondemandedlearning.com/
    Line 20341: local=/ihavelearnat.xyz/
    Line 21504: local=/jelllearnedhungry.com/
    Line 22965: local=/learningproportion.com/
    Line 22966: local=/learntinga.com/
    Line 23140: local=/libelloushopedlearned.com/
    Line 24688: local=/mautic-learn.teky.edu.vn/
    Line 24900: local=/medicationlearneddensity.com/
    Line 25705: local=/moose.cloverlearning.com/
    Line 39482: local=/trustlearningclearly.com/
    Line 39956: local=/uglylearnt.com/

    Line 2862: assessment.learning.microsoft.com
    Line 3002: betalearningservices.microsoft.com
    Line 3796: cert.learningservices.microsoft.com
    Line 4764: learning.microsoft.com
    Line 4765: learningadmin.microsoft.com
    Line 4766: learningbeta.microsoft.com
    Line 4767: learningcenter.partners.extranet.microsoft.com
    Line 4768: learningcentral.microsoft.com
    Line 5094: microsoftelearning.com
    Line 5244: mslearning.com
    Line 5303: mylearning.microsoft.com
    Line 5602: preview.learning.microsoft.com
    Line 5972: services.learningbeta.microsoft.com
    Line 6660: vlabs.betalearningservices.microsoft.com
    Line 6661: vlabs.learningservices.microsoft.com
    Line 7001: www.microsoftelearning.com
 
Heads up: I'm running Diversion and I can access that site no problems. uBlock Origin blocks a couple of tracking components on the site, but there's nothing that seems to prevent the site from running here. What do you see in the DNS logs (do you have them turned on)?
 

This site can’t be reached
learn.microsoft.com’s DNS address could not be found. Diagnosing the problem.
DNS_PROBE_POSSIBLE

NGINX:
Mar 21 14:00:17 dnsmasq[5602]: 23295 192.168.1.11/64224 query[A] learn.microsoft.com from 192.168.1.11
Mar 21 14:00:17 dnsmasq[5602]: 23295 192.168.1.11/64224 config learn.microsoft.com is NXDOMAIN
Mar 21 14:00:17 dnsmasq[5602]: 23296 192.168.1.11/50417 query[HTTPS] learn.microsoft.com from 192.168.1.11
Mar 21 14:00:17 dnsmasq[5602]: 23296 192.168.1.11/50417 config learn.microsoft.com is NXDOMAIN
 
See if microsoft.com is somewhere in your custom lists.
 
I removed the lines starting with "learn" and it didn't help. Also my DNS is Cloudflare currently, but I checked with one of the dns/domain checker sites and it worked fine there supposably.

EDIT:

Code:
mgslivetiles.cloudapp.net
mi.si.adcenter.msn.com
micronewsads.com
microsfot.com
microsft.com.br
microsoft-antipiracy.com
microsoft-appstore.com
microsoft-b.com
microsoft-careers.com
microsoft-chat.com
microsoft-com.mail.protection.outlook.com
microsoft-int.com
microsoft-jdp.net
microsoft-online-sales.com
microsoft-press.com
microsoft-questions.com
microsoft-store-careers.com
microsoft-store-promo-code.com
microsoft.ae
microsoft.af
microsoft.ag
microsoft.ai
microsoft.al
microsoft.am
microsoft.as
microsoft.at
microsoft.az
microsoft.ba
microsoft.be
microsoft.bi
microsoft.biz
microsoft.bs
microsoft.by
microsoft.bz
microsoft.ca
microsoft.cc
microsoft.cd
microsoft.ch
microsoft.cl
microsoft.cm
microsoft.cn
microsoft.co
microsoft.co.uk
microsoft.com
microsoft.com.ar
microsoft.com.br
microsoft.com.edgesuite.net
microsoft.com.mk
microsoft.cr
microsoft.cx
microsoft.cz
microsoft.de
microsoft.de.msn.com
microsoft.discoverbing.com
microsoft.dj
microsoft.dk
microsoft.dm
microsoft.do
microsoft.download.com
microsoft.dynssl.com
microsoft.ec
microsoft.ee
microsoft.entelechargement.com
microsoft.es
microsoft.fi
microsoft.fm
microsoft.fr
microsoft.ge
microsoft.gg
microsoft.gl
microsoft.gm
microsoft.gp
microsoft.gr
microsoft.gs
microsoft.gt
microsoft.gy
microsoft.hn
microsoft.hr
microsoft.hu
microsoft.ie
microsoft.im
microsoft.in
microsoft.info
microsoft.io
microsoft.is
microsoft.it
microsoft.je
microsoft.jo
microsoft.jp
microsoft.jp.msn.com
microsoft.kg
microsoft.kn
microsoft.kz
microsoft.la
microsoft.lc
microsoft.li
microsoft.licensestore.jp
microsoft.lk
microsoft.lt
microsoft.lu
microsoft.lv
microsoft.ly
microsoft.ma
microsoft.md
microsoft.microsoft.com
microsoft.mn
microsoft.mp
microsoft.ms
microsoft.msn.com
microsoft.mu
microsoft.mv
microsoft.mw
microsoft.mx
microsoft.my
microsoft.net
microsoft.nf
microsoft.nl
microsoft.no
microsoft.org
microsoft.pa
microsoft.pe
microsoft.ph
microsoft.pk
microsoft.pl
microsoft.pn
microsoft.pr
microsoft.pt
microsoft.pw
microsoft.re
microsoft.ro
microsoft.ru
microsoft.rw
microsoft.sc
microsoft.se
microsoft.si
microsoft.sk
microsoft.sl
microsoft.sm
microsoft.sn
microsoft.so
microsoft.software.net
microsoft.sr
microsoft.su
microsoft.sy
microsoft.tj
microsoft.tk
microsoft.tm
microsoft.tt
microsoft.tv
microsoft.tw
microsoft.ua
microsoft.ug
microsoft.uz
microsoft.vc
microsoft.vn
microsoft.ws
microsoft32.no-ip.biz
microsoftauto.com.br
microsoftbiconference.com
microsoftbicustomercouncil.com
microsoftc.com.br
microsoftcasualgames.msn.com
microsoftclassifiedads.com
microsoftconsumermarketing.112.2o7.net
microsoftcourseware.com
microsoftcourseware.net
microsoftcourseware.org
microsoftdynamicserp.biz
microsoftdynamicslive.com
microsoftdynamicslive.net
microsoftdynamicslive.org
microsofteai.com.br
microsoftelearning.com
microsoftencarta.net
microsoftencarta.org
microsofter.com.br
microsofteup.112.2o7.net
microsoftexpo.com
microsoftexpo.net
microsoftexpo.org
microsoftforefront.org
microsoftgamestudio.112.2o7.net
microsofthealthsolutions.com
microsofthotmail.com.br
microsofthyper-v.com.br
microsofthyper-vserver.com.br
microsoftinformatica.com.br
microsoftinternetexplorer.112.2o7.net
microsoftitacademy.com
microsoftlawportal.net
microsoftlicense.com
microsoftlicensereview.com
microsoftlicensestatement.com
microsoftlive.com.br
microsoftlivelabs.com.br
microsoftmachinetranslation.112.2o7.net
microsoftmediaroom.de
microsoftoffice.112.2o7.net
microsoftonline.com
microsoftphotosynth.com.br
microsoftplayfx.com.br
microsoftportal.net
microsoftsto.112.2o7.net
microsoftstore.btttag.com
microsoftstore.com
microsoftstore.it
microsoftstore.me
microsoftstoremea.widget.criteo.com
microsoftsupplychain.com
microsoftsurface.com.br
microsofttemplates.com
microsofttouch.fr
microsoftuk.122.2o7.net
microsoftup.dnset.com
microsoftupdate.com
microsoftupdate.microsoft.com
microsoftupdates.eu
microsoftvolumelicensing.com
microsoftwga.112.2o7.net
microsoftwildcat.com
microsoftwindows.112.2o7.net
microsoftwllivemkt.112.2o7.net
microsoftwlmailmkt.112.2o7.net
microsoftwlmessengermkt.112.2o7.net
microsoftwlmobilemkt.112.2o7.net
microsoftwlsearchcrm.112.2o7.net
microsoftword.com.br
microsoftxbox.112.2o7.net
micrsoftsmartcar.co.uk

Potentially could be any of those you guys think? Still this should be a bug and not intended, or at least if this is a function then should be toggleable, hopefully there's no some kind of software limitation in this regard.

I'll play with it more later.
 
Last edited:
Code:
config learn.microsoft.com is NXDOMAIN
This tells you that it comes from your configuration. So look for learn.microsoft.com, Microsoft.com, or com in your blocklists.
 
I removed the lines starting with "learn" and it didn't help. Also my DNS is Cloudflare currently, but I checked with one of the dns/domain checker sites and it worked fine there supposably.

EDIT:

Code:
mgslivetiles.cloudapp.net
mi.si.adcenter.msn.com
micronewsads.com
microsfot.com
microsft.com.br
microsoft-antipiracy.com
microsoft-appstore.com
microsoft-b.com
microsoft-careers.com
microsoft-chat.com
microsoft-com.mail.protection.outlook.com
microsoft-int.com
microsoft-jdp.net
microsoft-online-sales.com
microsoft-press.com
microsoft-questions.com
microsoft-store-careers.com
microsoft-store-promo-code.com
microsoft.ae
microsoft.af
microsoft.ag
microsoft.ai
microsoft.al
microsoft.am
microsoft.as
microsoft.at
microsoft.az
microsoft.ba
microsoft.be
microsoft.bi
microsoft.biz
microsoft.bs
microsoft.by
microsoft.bz
microsoft.ca
microsoft.cc
microsoft.cd
microsoft.ch
microsoft.cl
microsoft.cm
microsoft.cn
microsoft.co
microsoft.co.uk
microsoft.com
microsoft.com.ar
microsoft.com.br
microsoft.com.edgesuite.net
microsoft.com.mk
microsoft.cr
microsoft.cx
microsoft.cz
microsoft.de
microsoft.de.msn.com
microsoft.discoverbing.com
microsoft.dj
microsoft.dk
microsoft.dm
microsoft.do
microsoft.download.com
microsoft.dynssl.com
microsoft.ec
microsoft.ee
microsoft.entelechargement.com
microsoft.es
microsoft.fi
microsoft.fm
microsoft.fr
microsoft.ge
microsoft.gg
microsoft.gl
microsoft.gm
microsoft.gp
microsoft.gr
microsoft.gs
microsoft.gt
microsoft.gy
microsoft.hn
microsoft.hr
microsoft.hu
microsoft.ie
microsoft.im
microsoft.in
microsoft.info
microsoft.io
microsoft.is
microsoft.it
microsoft.je
microsoft.jo
microsoft.jp
microsoft.jp.msn.com
microsoft.kg
microsoft.kn
microsoft.kz
microsoft.la
microsoft.lc
microsoft.li
microsoft.licensestore.jp
microsoft.lk
microsoft.lt
microsoft.lu
microsoft.lv
microsoft.ly
microsoft.ma
microsoft.md
microsoft.microsoft.com
microsoft.mn
microsoft.mp
microsoft.ms
microsoft.msn.com
microsoft.mu
microsoft.mv
microsoft.mw
microsoft.mx
microsoft.my
microsoft.net
microsoft.nf
microsoft.nl
microsoft.no
microsoft.org
microsoft.pa
microsoft.pe
microsoft.ph
microsoft.pk
microsoft.pl
microsoft.pn
microsoft.pr
microsoft.pt
microsoft.pw
microsoft.re
microsoft.ro
microsoft.ru
microsoft.rw
microsoft.sc
microsoft.se
microsoft.si
microsoft.sk
microsoft.sl
microsoft.sm
microsoft.sn
microsoft.so
microsoft.software.net
microsoft.sr
microsoft.su
microsoft.sy
microsoft.tj
microsoft.tk
microsoft.tm
microsoft.tt
microsoft.tv
microsoft.tw
microsoft.ua
microsoft.ug
microsoft.uz
microsoft.vc
microsoft.vn
microsoft.ws
microsoft32.no-ip.biz
microsoftauto.com.br
microsoftbiconference.com
microsoftbicustomercouncil.com
microsoftc.com.br
microsoftcasualgames.msn.com
microsoftclassifiedads.com
microsoftconsumermarketing.112.2o7.net
microsoftcourseware.com
microsoftcourseware.net
microsoftcourseware.org
microsoftdynamicserp.biz
microsoftdynamicslive.com
microsoftdynamicslive.net
microsoftdynamicslive.org
microsofteai.com.br
microsoftelearning.com
microsoftencarta.net
microsoftencarta.org
microsofter.com.br
microsofteup.112.2o7.net
microsoftexpo.com
microsoftexpo.net
microsoftexpo.org
microsoftforefront.org
microsoftgamestudio.112.2o7.net
microsofthealthsolutions.com
microsofthotmail.com.br
microsofthyper-v.com.br
microsofthyper-vserver.com.br
microsoftinformatica.com.br
microsoftinternetexplorer.112.2o7.net
microsoftitacademy.com
microsoftlawportal.net
microsoftlicense.com
microsoftlicensereview.com
microsoftlicensestatement.com
microsoftlive.com.br
microsoftlivelabs.com.br
microsoftmachinetranslation.112.2o7.net
microsoftmediaroom.de
microsoftoffice.112.2o7.net
microsoftonline.com
microsoftphotosynth.com.br
microsoftplayfx.com.br
microsoftportal.net
microsoftsto.112.2o7.net
microsoftstore.btttag.com
microsoftstore.com
microsoftstore.it
microsoftstore.me
microsoftstoremea.widget.criteo.com
microsoftsupplychain.com
microsoftsurface.com.br
microsofttemplates.com
microsofttouch.fr
microsoftuk.122.2o7.net
microsoftup.dnset.com
microsoftupdate.com
microsoftupdate.microsoft.com
microsoftupdates.eu
microsoftvolumelicensing.com
microsoftwga.112.2o7.net
microsoftwildcat.com
microsoftwindows.112.2o7.net
microsoftwllivemkt.112.2o7.net
microsoftwlmailmkt.112.2o7.net
microsoftwlmessengermkt.112.2o7.net
microsoftwlmobilemkt.112.2o7.net
microsoftwlsearchcrm.112.2o7.net
microsoftword.com.br
microsoftxbox.112.2o7.net
micrsoftsmartcar.co.uk

Potentially could be any of those you guys think? Still this should be a bug and not intended, or at least if this is a function then should be toggleable, hopefully there's no some kind of software limitation in this regard.

I'll play with it more later.
I'm not sure what these lists are that you're quoting. Are they whitelists or blocklists? If they're blocklists it doesn't seem to make sense to me that you appear to be blocking huge swathes of valid Microsoft domains. If the list above is a blocklist then that is the reason why learn.microsoft.com is not working as it is encompassed by the more global microsoft.com. If you want to retain a global block on all microsoft.com subdomains but still have access to learn.microsoft.com you'll need to add it to a whitelist.

N.B. I suspect your old lists are not appropriate anymore because Diversion has moved from being a hosts based blocker to using dnsmasq domain blocking. link
 
Last edited:
So it's a wildcard thing going on, why would it be the default behavior and an option to turn it off isn't more obvious, or don't tell me it doesn't exist?

I have nothing custom in whitelists.

N.B. I suspect your old lists are not appropriate anymore because Diversion has moved from being a hosts based blocker to using dnsmasq domain blocking. link

Interesting, perhaps it didn't caught my attention because it wasn't mentioned in Diversion changelog ...
Removes wildcard-blacklist, it is no longer needed, entries are moved to the blacklist.
Sort of, but not really. But it's my lack of general familiarity at fault here and perhaps a bit easy on my homework of reading docs.
I had to setup this quick because businesses rely on this connection/setup too and they're breathing down my neck.

Actually it's a good feature in general ofcourse, just not sure why they would default to have this enabled without explicitly stating a wildcard function.

A more interesting feature could be to specify how many levels of sub-subdomains could a rule go ... double, tripple, quadrupple.
So if I'd specify autoupdate.microsoft.com and have it double level, it would block win10.x64.autoupdate.microsoft.com - maybe that's a thing already?


Code:
config learn.microsoft.com is NXDOMAIN
This tells you that it comes from your configuration. So look for learn.microsoft.com, Microsoft.com, or com in your blocklists.

Everything starting on "learn" is mentioned in the OP, there's nothing more.

If they're blocklists it doesn't seem to make sense to me that you appear to be blocking huge swathes of valid Microsoft domains.

Well, Microsoft isn't exactly people's favourite partner for serious workstation or sysadmin stuff. I haven't checked all of the domains I'm using for a long time, just kept building it up, it's from a popular domain list found on web that is shared around OS tweakers forums/social media and other resources, it's for blocking intrusive microsoft windows pre-installed bloatware, auto app downloads & installs, windows store stuff, auto driver downloads, automatic updates, and telemetry stuff.

But yeah, there's probably no need to block all kinds of other stuff for that.
 
Last edited:
Everything starting on "learn" is mentioned in the OP, there's nothing more.
Since it’s wildcard-based now, it also matters what it ends with, not only what it starts with.
microsoft.co
microsoft.co.uk
microsoft.com
microsoft.com.ar
microsoft.com.br
These types of entries will also block all subdomains. Remove microsoft.com.
 
So it's like *domain* ...? Interesting ... oh by the way excuse me I've updated the previous post with more information but a bit later than I intended.

----

Also one other thing: I think I see a small shortcoming with the dnsmasq logs now, it doesn't report which of the block/deny list an entry is coming from, it just says "config" ... I have extra logging enabled.

This is actually that small of an issue, I relied on this quite a bit, to quickly figure out when something doesn't work or has unintended/unfavorable side-effects, whether it's a rule from my personal domains list or the popular 3rd-party ones built-in or added to diversion that are community organized and maintained.
 

Similar threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top